Sumo Logic ahead of the packRead article
Complete visibility for DevSecOps
Reduce downtime and move from reactive to proactive monitoring.
We enable our customers to monitor, troubleshoot and resolve operational issues and security threats to their cloud or hybrid environments with our machine data analytics suite. Our users already know that Sumo Logic can help them dramatically improve the security and economy of their organization.
We wanted to give credible proof to those who are not yet familiar with our tool, so we commissioned Forrester Consulting to conduct their Total Economic Impact (TEI) study, which examines the potential return-on-investment enterprises may realize by deploying our solution. TEI provides a framework to evaluate the potential financial impact of Sumo Logic’s solution for their organizations.
The research was based on interviews with enterprises organizations who have been using Sumo Logic for several years for their security operations for your modern application, multicloud, and hybrid architecture.
The report prepared by Forrester looks at a number of these companies in concert, examining their financial data over a period of three consecutive years.
The companies interviewed by Forrester provide a wide range of B2B and B2C services and are housed using either cloud or hybrid architecture. They represent the following industries such as ecommerce, supply chain, and technology sectors.
Forrester also looked at a number of use cases, which included:
It’s important to note that before deploying Sumo Logic Cloud SIEM, these companies used monitoring tools without log and machine data aggregation and analytics.
Looking specifically at security use cases, Forrester found the following:
Sumo Logic helped reduce the time of vulnerability to security threats by as much as 81%, thanks to faster identification and resolution. According to The Ponemon Institute, the average breach costs $7.35M in 2017. Our solution helps reduce the hours of vulnerability and avoid over $300k in financial risk!
This applies to detected threats that required manual intervention. As much as 25% of threats were resolved automatically, saving an average of two hours per threat! Overall, SecOps teams identified and resolved security threats significantly faster, enabling organizations to recapture almost $645k in productivity.
With Sumo Logic Cloud SIEM, 90% of minor issues were repaired in only five minutes! The other 10% were automatically identified and resolved. Our solution also helped save time and energy for security teams: critical issues that previously required four hours could be repaired in only 30 minutes by a six-person team. This means that the overall productivity of DevOps members allowed the recapture of some $1.4M for minor issues and a further $1.1M for critical issues.
Let’s take a closer look at six of the most pertinent security challenges and how Sumo Logic helped improve their overall security landscape within the organizations examined.
Almost a quarter of all the benefits that Sumo Logic brings to an organization are about reducing the number of hours required to resolve minor incidents. The companies examined took a phased approach to rolling out Sumo Logic, first deploying it within 20 applications in Year 1, followed by 50 in Year 2 and 100 in Year 3. Key highlights include:
This amounts to 18% of the total benefits stemming from the deployment of Sumo Logic. We’d like to highlight that:
The four organizations interviewed by Forrester were conservatively estimated to collectively face about 10,000 security threats per year. It took them an average of two hours to eliminate the threat.
Reducing the number of hours to resolve potential security threats constituted 10% of the total benefits of Sumo Logic Cloud SIEM. The following were observed:
Forrester estimates the likelihood for a US-based company to fall victim to a breach within a year is 6%, at a cost of $441k.
The four organizations examined by Forrester were conservatively estimated to face about 10,000 threats per year (collectively), or 20,000 hours of vulnerability, as the average incident response time was about two hours before Sumo Logic was deployed.
After companies acquired Sumo Logic, they observed:
“When we turned on Sumo Logic’s security application and loaded our network logs, firewall logs and beyond, we immediately saw data being sent to a geographic area that we would have never expected. We did an investigation and found that a product had been misconfigured for years.”
The four organizations under investigation conducted approximately one internal audit per month. With Sumo Logic, that number was reduced by 75% in the third year of operation, thanks to demonstrated improved monitoring capabilities as well as detection and incident response times. In addition:
“Sumo Logic is essential for PCI compliance. We are required to have a tool like it, but Sumo Logic additionally saves time and is much easier to use compared to alternative tools we have used.”
Site reliability manager, publisher/eCommerce
Every interviewed customer admitted they required alternative tools to undergo log analysis prior to the deployment of Sumo Logic. The alternative log aggregation solutions did perform all the required tasks, but they could not scale and required significant administration effort to keep them functioning. By adopting Sumo Logic, customers were able to eliminate their on-premises open source tool deployments along with their reallocated system administration tasks. What’s more:
Sumo Logic Cloud SIEM adds a number of security benefits to any organization that help dramatically improve operational efficiency.
Sumo Logic can help reduce threats by as much as 81% and enables critical issue response within 30 minutes.
Investing in our solution will bring significant financial benefits and quick payback, depending on the nature and scale of your business.
Reduce downtime and move from reactive to proactive monitoring.
Build, run, and secure modern applications and cloud infrastructures.Start free trial
Moving to the cloud offers more than economics; it comes with unique security challenges that on-premises solutions cannot address. In minutes, Cloud Infrastructure Security for AWS from Sumo Logic brings cloud-native security analytics to AWS cloud environments. Curated workflows, out-of-the-box dashboards and AI-driven anomaly detection help security personnel easily monitor cloud security posture and cloud configurations and manage cloud risk from a centralized platform.
The principles of data protection are the same whether your data sits in a traditional on-prem data center or in a cloud environment. The way you apply those principles, however, are quite different when it comes to cloud security vs. traditional security. Moving data to the cloud introduces new attack-surfaces, threats, and challenges, so you need to approach security in a new way.