SecurityBrief Australia logo
Story image

New cloud tech helps businesses avoid data breaches

05 Dec 2017

Today, security teams are under more pressure than ever before to protect their organisations - as cyber threats continue to increase in complexity, intelligence and volume.

On top of this, enterprises are faced with a major challenge – finding enough qualified security people to do the job.

Additionally, security teams just can’t afford to spend time on extensive manual threat-hunting exercises or sourcing and managing additional security product.

So, what do they do?

Introducing CloudAI – an exciting new piece of technology from LogRhythm.

CloudAI is an advanced cloud-based security analytics offering that uses artificial intelligence (AI) to detect advanced threats that employ unknown attacks and unknown methods.

The tech can automate an extensive range of tasks – including incident response, platform administration and, of course, threat detection.

This provides security teams with instant visibility into emerging and active under-based threats.

What’s particularly exciting is that CloudAI is powered by self-evolving analytics – which means the platform actually learns and evolves as it works to continuously improve the accuracy of threat detection and minimise response time.

When combined with artificial intelligence techniques, such as unsupervised machine-learning, Cloud AI detects emerging and advanced threats based on the deep analysis of observed activities and behavioral shifts.

Ultimately, CloudAI’s high-accuracy threat detection is designed to reduce false positives and associated alarm fatigue, enabling security personnel to focus on prioritised risks and high-value tasks, driving greater efficiency in the security operations center (SOC).

CloudAI expands the company’s existing user and entity behavior analytics (UEBA) offerings and works in conjunction with LogRhythm’s existing scenario-based analytics solutions as well as an extensive library of field-proven threat models.

As a result, CloudAI can detect the known tactics, techniques and procedures of threat actors, providing customers with increased protection from threats that use both known and unknown methods.

Simply put, CloudAI helps security teams do their jobs better. 

As Tyler Warren, the senior security architect from Prologis, a real estate investment company, puts it, “My team simply can’t afford to waste time pursuing false positives. CloudAI does the time-consuming work for us, allowing us to focus on the things that really matter.”

Warren says, “CloudAI has allowed us to become more successful in detecting user-based threats that would have previously eluded us without the benefit of blind luck or manually sifting through an avalanche of forensic data.”

So, what are you waiting for?

Click here to get started with LogRhythm today. 
Story image
Why the rise of containers has created a vulnerability crisis
A rise in the use of Kubernetes and Docker services — and increased adoption of DevOps methodologies — have all contributed to the rise in popularity of containers. But as with all emerging technologies, there are risks.More
Story image
Attivo Networks announces SentinelOne integration to increase threat protection
The integrated solution creates a defence against sophisticated attackers and provides comprehensive coverage across a broad set of attack techniques, as documented in the MITRE ATT&CK matrix.More
Story image
Encrypted chat apps doubling as illegal marketplaces
Encrypted chat apps are doubling as illegal marketplaces as criminals utilise them to sell illegal goods without fear of content moderation.More
Story image
CISOs uphold security defences throughout COVID-19, study finds
The findings from the eighth annual Information Security Maturity Report reveals the current view of security issues facing businesses across the globe, indicating that years of innovation and hard work from CISOs has upheld security defences throughout COVID-19.More
Story image
Imperva advances API security solution with CloudVector acquisition
"Combined with an expanding surface area and novel exploits, all organisations need stronger API visibility and advanced protection."More
Story image
CrowdStrike and Google Cloud announce product integrations to boost security
CrowdStrike and Google Cloud have announced a series of product integrations to deliver customers better security, visibility and workload protection.More