Logpoint’s Converged SIEM Platform Adds New Case Management Interface and Other New Features

Security

Cybersecurity vendor Logpoint detailed this week a new update for Converged SIEM, the company’s new platform that combines SIEM (Security information and event management), SOAR (Security orchestration, automation and response), User Entity and Behavior Analytics (UEBA), and business-critical security in a single offering. 

Logpoint Converged SIEM became generally available back in March 2022 as a SaaS-delivered service or on-premises. The cloud-based solution offers organizations an all-in-one platform with threat detection, advanced security analytics, automated investigation, and response across different endpoints.

“With the latest update of Logpoint’s Converged SIEM security analysts receive a wide set of new and improved features that provide enhanced observability and the added advantage of decreasing the time to respond to threats,” the company explained yesterday. 

New Case Management interface for Logpoint’s Converged SIEM platform

The new Case Management interface in Logpoint Converged SIEM will allow security teams to quickly get an overview of ongoing cases. Related incidents are intelligently grouped into the same case, which allows analysts to implement more efficient actions within a case. 

“These capabilities make it easier for SOC teams of all sizes to efficiently manage cases and resolve incidents faster,” Logpoint said about its new Case Management interface. 

The new Case Management interface on Logpoint Converged SIEM
The new Case Management interface on Logpoint Converged SIEM (Image credit: Logpoint)

New AgentX endpoint security agent and other updates

Logpoint’s Converged SIEM platform is also adding AgentX, a new endpoint security agent. AgentX can collect logs and telemetry from various endpoints, bring them to the SIEM, and investigate and find remedies to potential threats in real-time.  

Logpoint is also adding various new features to improve security within an organization, including:

  • More reliable alerts in case of a delay in log collection.
  • Users can now add devices by their hostname, making them easier to track compared to using IP addresses that can change.
  • Backing up and restoring all playbook and actions is now possible 
  • Azure Active Directory-related detectors have also been added for UEBA.

The latest version of Logpoint’s Converged SIEM platform is now available to download from the company’s website. Logpoint will also demo all these new features during a webinar on April 19, and you can register for it on this page.