Security intelligence firm LogRhythm Inc. today announced a number a new innovations designed to prioritize speed and efficiency for agile and high-performing security teams.

Dedicated to optimizing the efficiency of security operation center teams and analysts, the new innovations are focused on seamless integration and broad case management improvements. The latest additions to the LogRhythm platform provide a unified view of each case within the user interface, eliminating the need to switch to separate search functions when drilling down for additional investigation.

Leading the list is a new, interactive single-screen investigation designed to reduce the mean time to respond by highlighting contextual insights of cases with drill-down capabilities of log sources and security analytics. This is complemented by an improved assisted search feature that increases analysts’ productivity with suggestions of recent searches, search lists and search queries.

An additional collector for the Microsoft Office 365 Management API offers users expanding visibility by enabling monitoring, analysis and data visualizations about every user, admin and policy action via application programming interfaces in Office 365 and Microsoft Entra.

LogRhytms Axon Agent, a component of the company’s platform designed to collect and manage on-premises data, has also been enhanced for improved efficiency for on-premises data collection by making it easier to deploy and upgrade agents.

The platform has received improvements to Log Source Onboarding and Platform Experience within self-hosted LogRhythm security information and event management, including expanded support to onboard additional Beats and Open Collectors from a single location, cutting the workload of security teams in half. Windows Event log onboarding and improved analyst workflows when reviewing alarm notifications have also been simplified for ease of use.

LogRhythm has also expanded its library of supported log sources and parsing capabilities to enhance the SIEM’s ability to correlate and analyze data effectively. LogRhythm network detection and response has new features, including a toggle button to hide safe listed items and expanded IP geolocation contextualization to help security teams make quick decisions.

“As LogRhythm’s SIEM capabilities continue to expand, our primary goal remains delivering powerful security platforms that help customers quickly and confidently secure their environments,” Chris O’Malley, chief executive officer of LogRhythm, said ahead of the announcement. “Whether our customers prefer the control and customization of a self-hosted solution or the scalability and agility of the cloud, LogRhythm provides the tools and expertise to navigate the evolving threat landscape with confidence.”

Image: LogRhythm