Cloud SIEM | Resource Center

Microsoft 365 account compromise and credential theft can easily lead to data breaches. Learn how to tackle these threats with cloud-native technologies.

New legislation in Australia means that companies need to prioritize detection. Read what you need to know about the law and how to improve your security posture.

For the second year in a row, Sumo Logic is thrilled to be named a Visionary in the Gartner Magic Quadrant for SIEM. Read why we believe our cloud-native security platform is so well regarded.

While the CERT-In Directions 2022 are disputed and controversial, your organisation needs a plan to comply. Get started with Sumo Logic Cloud SIEM and Cloud SOAR to get compliant by the deadline.

Entity Groups for Sumo Logic Cloud SIEM CSE help security analysts simplify threat detection and investigation. Read more about how Entity Groups can improve your threat response today.

It's hard to secure applications across cloud services when developers release code fast. See how Sumo Logic secures apps in a serverless world.

Sumo Logic expanded Cloud SIEM coverage for Microsoft Azure, following the MITRE ATT&CK framework. See what's been added to further secure Azure.

Nowadays, it’s mostly a foregone conclusion that companies need a security program and centralized log aggregation and correlation platform. Unfortunately, the conversation all too often turns toward tactics for data collection and detection of specific threat actors or common vulnerabilities and exposures (CVEs).

Security professionals involved in the IT and cybersecurity industry for the last 10+ years have most likely come across the terms SIEM and recently SOAR, but there is still much confusion about what the specific use cases and purposes are.

The news that hacking group Lapsus$ gained unauthorized access to Single Sign-On (SSO) provider Okta through a third-party support account sent chills through information security professionals everywhere.

Modern security operations centers (SOCs) are changing and now require cloud native SIEM and SOAR solutions. Sumo Logic's Cloud SIEM and Cloud SOAR are here to help.

Enterprise SOCs are becoming a crucial part of most organizations’ management departments due to the increase in digitization and interconnectivity. SOCs play a major role in monitoring, managing, and responding to security alerts within a company's daily operations. Since cyber attacks have become more sophisticated, the requirements for SOCs have changed due to increased volumes of data, the complexity of security ecosystem tools, and increased data sources and attack vectors. When it comes to efficiency, SOCs need to expand their focus beyond log management and data analytics to include more advanced functionalities such as automation, leveraging big data and AI for intelligent decision support, and increasing visibility into their product through observability.