LogRhythm NextGen SIEM Platform

摘要

LogRhythm's next-generation SIEM platform integrates log management, security analytics, and SOAR with network foren-sics and endpoint monitoring to give organizations the ability detect and mitigate threats. An extensive range of early indicators and risk scores trigger rapid alarm triage, threat qualification, response and mitigation. Risk-based prioritization helps automatically corroborate evidence of higher risks with their scoring to recognize incident progression across the attack lifecycle to simplify the daily duties of an analyst. The LogRhythm NextGen SIEM Platform offers many features, including several graphs, precision searches, a phishing intelligence engine, a threat activity map, case management reports and a collaborative platform. The console itself is reminiscent of Microsoft's Windows XP GUI, consisting of straight-to-the-point visuals and graphical icons. These icons are, however, on the small side and difficult to make out by default. This is where you first assign the licenses to the data processors, which determine how many can operate, and how many messages per second (MPS) can be processed. After verifying the licensing, we ran into a few technical issues, but the support team was extremely helpful, and we were able to get things up and running with their assistance.