Although we have made progress in the use of analytics and intelligence, the latest SANS Security Analytics survey shows 26 percent of respondents feel they still can't understand and baseline normal behavior in their IT environments, with a majority citing a lack of people and dedicated resources as an impediment.
Security teams also said they can't find people with the right skill sets to manage SIEM and analytics tools. In light of these findings, the SANS Analyst Program's team recently reviewed LogRhythm 7, with an eye toward ease of use, rapid analysis and incident correlation, as well as strong case management tools that can help security operations teams operate more effectively.
Download this report to explore:
- Features of the LogRhythm user interface
- Two use cases focused on data exfiltrating and insider threat