As challenges continue to grow for cybersecurity teams, Kaspersky has unveiled a significant update to its Unified Monitoring and Analysis Platform, a security information and event management system (SIEM). The enhanced functionality is designed to bolster the productivity of cybersecurity teams by expanding the capabilities for threat detection and response. Cybersecurity teams face growing challenges with frequent attempts to breach company infrastructures and increasingly complex attacks. In 2023, 77% of businesses experienced at least one cybersecurity breach, with many facing up to six. Companies are now optimizing resources by adopting solutions that offer real-time analysis of security telemetry, enhancing situational awareness.
Kaspersky’s Unified Monitoring and Analysis platform is a next-gen SIEM solution that collects, aggregates, and analyzes IT infrastructure data, enriched with actionable threat intelligence. New features include event forwarding from remote offices for efficient load balancing, multi-storage search for streamlined data retrieval, and grouping functions for easier event investigation. Analysts can now map rules to the MITRE ATT&CK® matrix and collect DNS Analytics logs with less impact on server performance.” SIEM system is one of the primary working tools designed for cybersecurity professionals. A company’s security largely depends on how conveniently experts can interact with SIEM, allowing them to focus directly on combating threats rather than performing routine tasks. We are continuing to actively improve the solution based on market needs and customer feedback, and we are consistently introducing new features to make analysts’ work simpler,” comments Ilya Markelov, Head of Unified Platform Product Line at Kaspersky.