Cybersecurity intelligence firm LogRhythm Inc. said today it’s partnering with the extended detection and response platform provider SentinelOne Inc. on a combined offering aimed at helping companies streamline their security operations and cut through the noise to gain more precise insights into the threats they face.
LogRhythm sells tools around security information and event management, log management, network and endpoint monitoring and forensics, plus security analytics. Its tools are used by security teams to unify these metrics to better understand the security threats they face and reduce their exposure.
The company’s software should pair nicely with SentinelOne, which sells an XDR platform that’s used by enterprises to spot malware lingering within their computer systems. SentineOne’s platform relies on machine learning algorithms that are able to identify security breaches that occur across cloud environments, employee endpoints and connected devices. Security teams can use it to revert compromised systems to an earlier, more secure state and prevent such intrusions.
LogRhythm said that by partnering with SentinelOne, it can offer a combined enterprise security tool that can prevent, detect and respond to threats in any computing environment. The combined offering is said to help improve threat response workflows while giving security teams more precise insights into the nature of the threats they face.
The company explained that legacy security systems lack the context and visibility that’s required to keep up with the speed, sophistication and scope of today’s cybersecurity threats. To keep on top of things, it’s necessary for enterprises to understand what’s happening within their network and across all of its endpoints. That requires a centralized platform for collecting log data and taking action upon it, LogRhythm explained.
According to the company, its security analytics now incorporates rich endpoint telemetry from SentinelOne, thereby enabling protection against threats in real time. LogRhythm said its SmartResponse capability now leverages SentinelOne’s application programming interface to effect an automated response to malicious activity. For instance, it can automatically blacklist hash values and disconnect compromised machines from the network whenever it stumbles upon certain triggers that suggest a breach has occurred.
For users, the main benefits are expanded visibility across their networks and systems, automated mitigation of threats and reduced complexity, LogRhythm said. “This partnership brings together two remarkable platforms that will provide our customers with incomparable visibility for analysts, allowing them to cut through the noise, and recognize and respond to incidents more quickly and effectively,” said LogRhythm Chief Information Security Officer Andrew Hollister.
“LogRhythm offers extensive support for, and integration across, the Singularity XDR platform, helping our customers from around the globe protect against modern cyberattacks and reduce risk,” added Yonnia Shelmerdine, SentinelOne’s vice president of XDR product management.