Explore the benefits, features and differentiators of Sumo Logic's Cloud Infrastructure Security solution for threat detection and investigation. Learn how you can combat cyber attacks faster and easier.
Discover how Sumo Logic enhances MITRE ATT&CK with real-time detection, behavior-based threat hunting, and post-incident analysis to help you stay ahead of evolving threats. Blog Threat intelligence feeds: essential arsenal in cybersecurity
Two enhancements have been implemented for the MITRE ATT&CK® Threat Coverage Explorer: The current tactic, technique and sub-technique metrics for the (default) Theoretical and Historical views are now written to the sumologic_system_events audit logs daily. This data can be used in dash...
Learn how to integrate Cloud SIEM with a TAXII threat intelligence feed. Security Incident Response (SIR) Learn to install and configure the integration between Sumo Logic Cloud SIEM and ServiceNow's SIR. Enrichments and Threat Indicators
Sumo Logic Dashboard Dynamic in-dash maps powered by Mapbox GL JS allow users to easily monitor and identify threat intelligence and security geolocation data in real time. Meaning they don’t have to wait, and can quickly determine when and where there is a serious threat penetrating their ...
The Sumo Logic Continuous Intelligence Platform™ automates the collection, ingestion, and analysis of application, infrastructure, security, and IoT to derive actionable insights in seconds. More than 2,100 customers around the world rely on Sumo Logic to build, run, and secure their modern appl...
Umbrella: Sumo Logic Cloud SOAR integrates with Cisco Umbrella for DNS-based threat intelligence. Secure Malware Analytics: Sumo Logic Cloud SOAR is integrated with Secure Malware Analytics for malware analysis. Cisco Identity Services Engine: Sumo Logic Cloud SOAR integrates with Cisco ISE to utilize...
Structured Threat Information eXpression (STIX) is a language and serialization format that organizations use to exchange cyberthreat intelligence.The connector usesSTIXpatterning to querySumoLogicdata and returns results asSTIXobjects. For more information about how theSumoLogicdata schema maps toSTIX, se...
Sumo Logic is developed as a SaaS solution, it processes and analyzes large quantities of IT infrastructure data, spotting patterns and anomalies that can indicate a potential threat or significant event. The platform is designed to help IT, security, and business operations teams develop, manage,...
processes from the beginning, autonomous SOC to reduce alert fatigue, improve efficiency, secure cloud migration for AWS & Azure, focused on DevSecOps, enforce security configuration & monitor drifts on a multi-cloud and hybrid environments, integrated threat intelligence for full-stack threat ...