Exabeam Advances AI-Driven Security Operations Across Self-hosted, Cloud-native, and Hybrid Environments with its Latest Offering, LogRhythm Intelligence

The leading SIEM vendor strengthens security teams with enhanced capabilities, enabling faster and more accurate detection, investigation, and response to threats.

Singapore, October 2, 2024 – Exabeam, a global leader in AI-driven cybersecurity, has unveiled its first quarterly product update since its merger with LogRhythm. These latest advancements offer customers around the world greater flexibility, allowing them to select the security solutions that best fit their infrastructure, regulatory standards, and operational preferences. The release also introduces LogRhythm Intelligence, a new solution combining Exabeam’s state-of-the-art AI with LogRhythm’s renowned self-hosted SIEM platform. This fusion delivers cutting-edge behavioural analytics, improving the effectiveness of threat detection, investigation, and response (TDIR).

Steve Wilson, Chief Product Officer of Exabeam, remarked, “Our mission is to empower security teams by integrating AI to enhance their skills, expedite their workflows, and ultimately increase their efficiency in defending against increasingly complex threats. As the leading pure-play SIEM provider, we are committed to constantly pushing the limits of what is achievable in the industry. This ensures organisations remain ahead of ever-evolving threats within an increasingly intricate digital environment.”

Chris O’Malley, CEO of Exabeam, added, “Our innovation is driven by our unwavering dedication to our customers. Exabeam’s 10th consecutive quarterly release for the self-hosted LogRhythm SIEM, alongside the 24th monthly update for the cloud-native Exabeam Security Operations Platform, demonstrates our deep commitment to providing unrivalled flexibility and choice. Whether customers prefer self-hosted, cloud-native, or hybrid solutions, we equip them with the tools to scale their security operations with confidence and precision. Additionally, our world-class training, subscription services, and partner network ensure our customers not only meet their critical security goals but also continually improve their security posture. Wherever you are, Exabeam is always ready and eager to serve.”

Earlier this year, Exabeam was recognised as a Leader for the fifth time in the Gartner® Magic Quadrant™ for Security Information and Event Management (SIEM). By combining robust capabilities with a dependable innovation cycle and generative AI integration, Exabeam ensures security teams have access to the tools they need to perform more efficiently and effectively.

Introducing LogRhythm Intelligence

LogRhythm Intelligence is a new AI-powered add-on that introduces behavioural detections into the LogRhythm Machine Data Intelligence (MDI) Fabric, allowing it to flag unusual user and host activity within the LogRhythm SIEM platform. Powered by 795 behavioural models and 1,800 fact-based rules, this system enables analysts to create searches, dashboards, reports, and leverage security orchestration and automated response (SOAR) features. Each of the 795 models is uniquely applied to every user and device, measuring both normal and abnormal behaviour. This system complements pre-existing fact-based rules, reducing manual rule creation and lowering false positives. This results in faster, more accurate TDIR and improved visibility into sophisticated threats such as malicious insiders, credential theft, and lateral movements.

Enhancements to Cloud-native and Self-hosted Platforms

Cloud-native: Exabeam New-Scale Security Operations Platform

Exabeam continues to lead the sector with monthly updates to its cloud-native New-Scale Platform. Since July 2024, Exabeam has introduced various improvements to log ingestion, dashboard functionalities through Exabeam Copilot, and expanded regional support. Additionally, Exabeam has achieved AICPA SOC 2 Type II compliance, underscoring its commitment to security and privacy.

• Streamlined Data Collection: The new Cloud Collectors simplify log ingestion, saving time and resources for security teams while improving their ability to detect threats quickly and accurately.
• Enhanced Copilot Integration: The generative AI capabilities of Exabeam Copilot now include natural language support for creating dashboard visualisations, streamlining compliance reporting, IoC detection, and SOC performance without complex queries.
• Regional Support: Exabeam has expanded its cloud coverage to the Kingdom of Saudi Arabia, allowing for the New-Scale Platform deployment in this region.
• Compliance Achievement: Exabeam has completed the AICPA SOC 2 Type II audit without exceptions, reinforcing its commitment to the highest standards of security and privacy.

Self-hosted: LogRhythm SIEM Platform

Alongside the introduction of the new AI-powered LogRhythm Intelligence, the self-hosted LogRhythm SIEM platform offers improved log source management, configuration, and optimised analytics to meet the demand for scale-on-demand SOC operations.

• Enhanced Log Source Management: A new location for managing pending log sources in the Web Console allows analysts to edit sources efficiently via API.
• Optimised Analytics: Upgraded versions of Elasticsearch and the Advanced Intelligence Engine service boost detection pipeline throughput by up to 50%, reduce log source loading times by 87%, and improve pattern-matching rule processing by up to 10x.
• New and Enhanced Log Sources: Over 60 new and updated log sources, including Rubrik, Anomali, and Akamai, have been added to an already extensive library of over 1,000 out-of-the-box log sources, reinforcing Exabeam’s commitment to providing accurate, modern TDIR capabilities.

Partner and Customer Testimonials

Samet Uzun, Information Security Manager at iLab, commented, “In today’s digital landscape, protecting our customers’ data is more than a priority; it’s our responsibility. Exabeam’s SIEM solution aligns perfectly with our security goals, enhancing our ability to swiftly detect and respond to threats, enabling us to support Turkey’s digital transformation initiatives confidently.”

Ryan Kalember, Chief Strategy Officer at Proofpoint, stated, “The most effective security architectures are those that are tightly integrated, helping security teams safeguard key infrastructure, the applications it supports, and the data powering them. Our partnership with Exabeam allows joint customers to detect and respond to advanced email threats, data loss, account compromise, and other risks with confidence.”

Phil Swain, CISO of Extreme Networks, shared, “In today’s security environment, regular AI-driven updates are essential to maintaining strong defences. As a leading network technology provider to schools, hospitals, and governments, we rely on Exabeam as a key part of our security strategy to keep unpredictable threats at bay.”