Kaspersky upgrades SIEM with AI-driven risk detection amid Center East demand

Kaspersky has launched a brand new model of its SIEM with an AI-enabled mechanism for detecting potential account compromise. The up to date platform additionally offers enhanced information integrity and improved customization, empowering organizations with stronger, extra versatile safety.

In keeping with a latest international survey carried out by Kaspersky, Safety Data and Occasion Administration (SIEM) platforms rank among the many high three most in-demand cybersecurity options for firms planning to ascertain a Safety Operations Heart, with 40% of organizations contemplating it an important technological part for constructing a sophisticated cybersecurity division.

SIEM demand is even larger within the Center East, in line with Kaspersky analysis, with 42% of firms planning to construct a SOC saying they intend to incorporate SIEM techniques inside their SOC know-how stack.

In response to this market want, Kaspersky has commonly upgraded its SIEM with new, beneficial options designed to allow superior risk detection capabilities and higher compliance with trade requirements and regulation.

Within the newest replace the next new key capabilities have been added:

Versatile position mannequin for personalization

The brand new system permits customers to create, clone, and modify roles to raised align with inside workflows and organizational wants. This enhancement presents better flexibility, enabling firms to tailor the system to their distinctive constructions.

Correlator 2.0 Beta and AI-enabled account theft detection

The fault-tolerant, horizontally scalable Correlator 2.0 is now accessible in beta mode. This improve delivers vital enhancements in efficiency and reduces {hardware} necessities.

It additionally introduces superior options, comparable to AI-powered detection of account theft, which analyzes login exercise, establishes baseline patterns, and identifies irregular conduct to generate well timed alerts for potential account compromises. This function enhances a company’s safety and operational effectivity.

Backup and restore occasions for information integrity and compliance

The brand new performance helps exporting occasion information into safe, immutable archive information, safeguarding information throughout investigations, audits, and regulatory compliance processes — making certain information stays unaltered.

Background search queries for enhanced consumer expertise

Background search processing permits analysts to provoke low-priority queries that run quietly within the background. This enables customers to proceed their work with out interruption, with search outcomes accessible instantly upon completion, drastically bettering usability and operational effectivity.

“At Kaspersky, our ongoing dedication is to refine and increase the capabilities of our merchandise to remain forward of evolving cyber threats. By harnessing revolutionary AI applied sciences in Kaspersky SIEM, we are able to streamline complicated information evaluation and automate important processes, empowering cybersecurity professionals to focus on investigating subtle incidents and implementing proactive safety measures. These enhancements considerably bolster organizational resilience and guarantee sturdy safety towards rising threats,” states Ilya Markelov, Head of Unified Platform Product Line at Kaspersky.

Kaspersky SIEM collects, aggregates, analyzes and shops log information throughout the whole IT infrastructure, delivering contextual enrichment for cybersecurity groups. The platform leverages a devoted Consumer and Entity Conduct Analytics (UEBA) ruleset that helps establish deviations from established behavioral patterns, facilitating the well timed detection of APTs, focused assaults, and insider threats. Moreover, the rule mapping on the platform has been commonly up to date to align with the newest variations of MITRE ATT&CK.

To be taught extra about Kaspersky SIEM, please go to the web site.