ɫɫ�о���

New ɫɫ�о��� Content Stream and ɫɫ�о��� Security Operations capabilities arm security teams with curated detections and threat intelligence and analytics to combat ever-growing threats

CAMBRIDGE, Mass.—May 13, 2021—ɫɫ�о��� Technology, the cloud-native logging and security analytics company, today announced ɫɫ�о��� Content Stream, a new content delivery service that seamlessly delivers high-value content to customers on the ɫɫ�о��� Platform. Security teams now have instant, continuous access to pre-built alerts and threat intelligence that can be operationalized in seconds.  

“Even the largest and best funded security teams struggle to stay current with the latest threats,” said Ted Julian, senior vice president of product at ɫɫ�о���. “Legacy on-premises solutions aren’t much help and there’s no easy way to get the latest content in a timely fashion. Our SaaS architecture, now paired with the ɫɫ�о��� Content Stream, automatically delivers the latest alerts and detections. As a result, security teams can spend less time writing searches and more time on higher value activities like triaging, investigating and responding to threats.”

ɫɫ�о��� Security Operations is the first ɫɫ�о��� application to leverage this new capability, continuously receiving threat intelligence and curated alert content provided by ɫɫ�о��� and its partners. As new threats emerge, ɫɫ�о��� customers will automatically receive new detections and threat intelligence and be able to put this content into action immediately. No longer will security teams need to build their own alerts or manually curate threat intelligence to keep pace with new and developing threats. 

“With evolving needs and increased data volume, our team needed a solution with on-demand, effective and efficient scalability and visibility,” said Joe Wilson, IT threat intelligence manager, Ulta Beauty. “With ɫɫ�о��� Security Operations we’ve found a scalable, cloud-native SaaS solution that shapes and analyzes our data in ways that were not possible previously. Beyond the more robust features at our disposal, we have greater confidence in our data insights. We’re impressed by the platform innovations and look forward to continued enhancements for our company.”

ɫɫ�о��� further announced several updates to its cloud-native next-gen SIEM, ɫɫ�о��� Security Operations. Cyberattacks are becoming more sophisticated, leveraging malware that resides only in memory to evade existing defenses. Analysts can now perform memory forensic analysis directly in ɫɫ�о��� Security Operations, extending existing forensic analysis capabilities which include network packet capture (pcap) and malware analysis. All findings from memory analysis can be captured and stored within ɫɫ�о��� Security Operations investigations.

ɫɫ�о��� also introduced a new set of integrations that maximize existing security tools by using the data and context available within them to enrich investigations, optimize workflow and enable analysts to take more confident action. These new integrations include providers of endpoint detection and response, network traffic analysis, and threat intelligence.

In addition, machine learning models will now detect hard-to-find signals, including anomalous users and server behavior, DNS tunneling, malicious domains, and anomalous TLS communication. 

“Recent trends in cloud adoption and attacker sophistication require more security data be monitored, collected, and analyzed by security teams,” said Jon Oltsik, senior principal analyst and fellow at ESG. “Organizations need solutions that close the visibility gap and provide content that is timely and operational, empowering security teams to defend against advanced cyberthreats with real-time detections and enriched investigations while maximizing analyst productivity.”

To learn more about ɫɫ�о��� and see these latest product developments in action, visit ɫɫ�о��� at RSA Conference 2021 between May 17-20. The ɫɫ�о��� Content Stream and the latest version of ɫɫ�о��� Security Operations will be generally available in June 2021.

About ɫɫ�о���
ɫɫ�о��� is the only cloud-native logging and security analytics platform that releases the full potential of your data to empower bold, confident action. With unrivaled scale to collect all of your data without compromise, speed to give you immediate access and answers, and clarity to focus on the signals that matter most, ɫɫ�о��� is your ally in protecting your organization today and tomorrow. Headquartered in Cambridge, Mass., ɫɫ�о��� is backed by Insight Partners, Georgian, and Bessemer Venture Partners. Learn more at www.devo.com.

ɫɫ�о��� PR Contact:
Shannon Todesca
+1 (508) 494-4607