Graylog Adds Real-Time Event Ingestion and OCSF Support via AWS Security Hub

New cloud-native integrations with AWS Security Hub and Amazon EventBridge give safety groups sooner detection, simplified evaluation, and decrease overhead throughout AWS environments

Graylog, a number one supplier of SIEM and menace detection options for mid-market enterprises, at present introduced new cloud-native integrations with AWS Security Hub, enabling real-time occasion ingestion and help for the Open Cybersecurity Schema Framework (OCSF). OCSF standardizes safety occasion codecs throughout platforms, making it simpler for safety groups to investigate and correlate information with out customized parsing. As an AWS Security Hub launch companion, Graylog helps streamline AWS log evaluation and accelerates menace detection, all inside its cloud-delivered platform.

“Security groups want to maneuver on the pace of cloud infrastructure,” mentioned Robert Rea, CTO at Graylog. “By integrating Graylog with AWS Security Hub and Amazon EventBridge, we’re eradicating bottlenecks and giving analysts sooner, structured entry to safety occasions, with no further engineering burden.”

Real-Time Event Monitoring with Amazon EventBridge

With this integration, occasions now stream into Graylog the second they happen, enabling real-time menace detection and sooner response to incidents. The native connection to Amazon EventBridge eliminates the necessity for customized code, exterior brokers, or guide configuration, considerably lowering deployment complexity. Once ingested, these occasions can mechanically set off correlation guidelines and alert workflows, enabling safety groups to reply to threats with minimal guide intervention. Together, these enhancements assist safety groups undertake cloud-native SIEM workflows that scale with their AWS atmosphere and reply immediately to modifications.

OCSF Support for Seamless AWS Security Hub Integration

AWS Security Hub helps safety groups prioritize crucial dangers and reply at scale by consolidating findings throughout AWS providers. It enriches and correlates alerts from menace detection and vulnerability administration instruments, remodeling them into actionable insights by close to real-time analytics, intuitive visualizations, and automated workflows. With native help for OCSF, Graylog integrates Security Hub telemetry into its cloud-native SIEM workflows, permitting groups to investigate structured information with out customized parsing, correlate occasions throughout accounts, and speed up detection, all inside a centralized, scalable platform.

Build for Cloud-Centric Security Operations

These new capabilities are designed particularly for cloud-first groups utilizing Graylog, delivering an intuitive, scalable different to legacy SIEM platforms. With minimal setup and computerized schema recognition, SOCs can preserve real-time situational consciousness throughout AWS workloads, with out including pointless friction.

“Our purpose is to supply safety engineers and CISOs with significant insights the second they want them, not minutes or hours later,” mentioned Aaron VanWart, director of Cloud Alliances at Graylog. “This is a significant step towards cloud-native SIEM workflows which are each quick and frictionless.”

Availability

These integrations can be found at present for Graylog (Cloud) prospects within the AWS Marketplace or instantly from Graylog. Deployment requires no customized code and is supported by detailed documentation and onboarding steering. Visit Graylog’s AI Concierge Arti to be taught extra.

The put up Graylog Adds Real-Time Event Ingestion and OCSF Support via AWS Security Hub first appeared on AI-Tech Park.