Logo

Graylog ‘redefines’ SIEM

Graylog has unveiled significant security advancements to drive smarter, faster, and more cost-efficient security operations. The company’s latest capabilities include advanced data routing, asset-based risk scoring, and AI-generated investigation reports.

  • Monday, 28th October 2024 Posted 1 year ago in Vendor by Phil Alsop

These enhancements, and many others in the Fall 2024 release, help organizations realign their time and financial investment with security objectives, empowering security teams to confidently reduce risk. With a detailed understanding of the threat landscape at both user and system levels, Graylog enables organizations to make more informed decisions about their security posture and respond more effectively to potential threats.

Exclusive to Graylog is its native advanced data routing that enables practitioners to send lower-value “standby” data to inexpensive storage before it is indexed by Graylog. Standby data is available for retrieval into Graylog for future incident investigations. This classification shifts the typical SIEM license model to more accurately align with the overall value of the data. Security and IT operations teams can now invest time and money in the value of the data sent, processed, and stored while minimizing the number of technology solutions managed.

“A challenge with SIEMs has been the need to bring in all the data from log sources as if all the log messages are of equal value,” said Seth Goldhammer, vice president of product management at Graylog. “Of course, if a log message is dropped, it is gone forever. Our new data routing removes this compromise, allowing practitioners to bring in all the data and only pay for the log messages delivering value.”

Graylog's asset-based risk modeling finds related security events across attack surfaces and prioritizes what should be investigated with context such as vulnerability state, variance, and API risk. Instead of thousands of daily alerts requiring individual triage and investigation, Graylog prioritizes the high-risk users and systems for security analysts, grouping together multiple alerts and context to expedite the investigation.

Graylog’s Fall 2024 release includes a timeline visualization of events and leverages GenAI to summarize these details, including impact analysis, into an incident response report to further aid with those investigations and save analyst time.

Xplifi strengthens board with MSP veterans and secures additional funding

Posted 19 hours ago by Sophie Milburn
Xplifi strengthens its leadership team with industry experts and advances its AI-driven platform to support growth for Managed Service Providers.

UK & Ireland community welcomes new GTIA executive leaders

Posted 19 hours ago by Sophie Milburn
GTIA introduces elected leaders for the UK & Ireland Community, promoting new initiatives and advancing community goals.

Securonix strengthens leadership with appointment of new EMEA VP

Posted 20 hours ago by Sophie Milburn
Cyrille Badeau joins Securonix as VP of EMEA, strengthening its team post-ThreatQuotient acquisition, to drive growth across Europe and MEA.

Empowering SMEs: DSAF reveals new strategy for data space inclusion

Posted 21 hours ago by Sophie Milburn
DSAF announces a new initiative and tools to enable 10,000 SMEs to join data spaces, enhancing innovation and compliance.

Digital Space joins Fortinet Engage Tech Support Partner programme

Posted 21 hours ago by Sophie Milburn
Digital Space strengthens its service capabilities through Fortinet's Engage Partner programme, enhancing security solutions for diverse sectors.

Orange business and Cisco unite for quantum-safe networking solutions

Posted 21 hours ago by Sophie Milburn
Orange Business and Cisco launch Post-Quantum Cryptography solutions to fortify network security against future quantum threats.

Principle Network joins Wiz partner service alliance

Posted 21 hours ago by Sophie Milburn
Principle Networks strengthens its position in cloud security by joining the Wiz Partner Service Alliance.

Sophos strengthens cybersecurity strategy with Arco Cyber acquisition

Posted 1 day ago by Sophie Milburn
Sophos further enhances its cybersecurity offering by acquiring UK-based Arco Cyber, aiming to strengthen its CISO Advantage initiative.

© 2026 - Angel Business Communications Limited

Made with by Angels