Kill Your SIEM – It’s Time

Logo
Presented by

LogicHub’s Kumar Saurabh, CEO & Co-Founder and Willy Leichter, CMO

About this talk

When was the last time you said to yourself, “Damn, I love my SIEM! It’s so easy to set up, it catches everything, most of the alerts generated are really actionable, and the pricing is so reasonable that I can put all my security data in it for detection and response.” Never? You’re not alone. Kumar Saurabh, with 20 years of experience building SIEMs from his time at ArcSight and SumoLogic, has declared SIEM dead. “It has not worked well for over 20 years. It's time for a new approach” Saurabh exclaims. If you have a SIEM – no matter how great it may have been a decade ago, it is long past its prime, and it’s time to kill it. The fact is, your SIEM is never going to get any better – it will only get worse. SIEMs are cumbersome, notoriously ineffective in threat detection and response, inherently noisy and time-consuming – and if that’s not bad enough, the cost of storage alone will bleed any security budget dry. Set yourself up for success in the year ahead. Ditch your SIEM and learn how you can get effective Detection and Response without the hassles of a SIEM. Go from: • Analyst burnout and alert fatigue from excessive noise => to a 95% reduction in false alerts • Time-consuming and manual investigations => to custom playbooks and automation built to your unique requirements • Questionable threat detection capabilities => to hundreds of detections mapped to MITRE ATT&CK framework and AI bots that do continuous threat hunting day and night to find novel threats. • A money pit => to significant cost savings year over year

Related topics:

More from this channel

Upcoming talks (3)
On-demand talks (20)
Subscribers (1644)
LogicHub delivers intelligent automation-driven eXtended Detection and Response solutions that are flexible enough to fit any customer’s requirements. Our solutions include: SOAR/XDR as a platform or service, Managed Detection and Response (MDR), and Managed SIEM. LogicHub solutions adapt and grow with our customers as their needs change, delivering deeper detection, faster response, and lower dwell times.