LogRhythm Integrates with Gigamon Hawk Deep Observability Pipeline
October 27, 2022
Share this

LogRhythm announced a technology integration with Gigamon.

LogRhythm and Gigamon are working together to help organizations around the globe increase visibility and protect against modern cyberattacks. By understanding the power and necessity of visibility, Gigamon and LogRhythm have integrated their solutions — the Gigamon Hawk Deep Observability Pipeline and LogRhythm SIEM Platform. The combined solution empowers security teams to identify behavioral anomalies, internal and external threats, and to prioritize their responses based on accurate enterprise security intelligence.

Threat actors continue to find ways around prevention technology to access an organization’s network and proprietary information. When considering the high amount of network traffic security operators need to sift through each day, it becomes more difficult to survey and analyze the network to detect anomalous behavior. LogRhythm’s integration with Gigamon helps address these challenges by providing organizations with network-derived intelligence and insights needed to proactively detect and respond to threats.

“Our integration with Gigamon allows us to provide customers with visibility across physical, virtual and cloud networks,” said Andrew Hollister, Chief Information Security Officer at LogRhythm. “Security teams will gain the necessary insights to accelerate detection and response to emergent threats, including custom malware and nation-state espionage, as well as routine network misuse and many other types of anomalous behavior.”

Together, the Gigamon Hawk and LogRhythm SIEM Platform integration delivers the awareness needed to detect, prioritize, and neutralize damaging cyber threats that have either penetrated the network perimeter or originated from within. Key benefits of this integration include:

- Actionable network-derived intelligence and easy access to traffic from physical, virtual and cloud networks with the Gigamon Hawk Deep Observability Pipeline.

- Aggregation, filtering, and distribution of relevant traffic to LogRhythm SIEM accelerates processing throughput.

- Masking of private and sensitive data to meet industry regulations before sending to LogRhythm SIEM.

- Generated metadata can be selected from over 7,000 attributes across over 3,000 applications – for example, HTTP response codes and DNS queries – to provide highly detailed contextual analysis when looking at network events.

- Ability to generate NetFlow from any traffic flow and decrypt SSL traffic to avoid unnecessary processing.

- Automatic traffic load balancing helps optimize the performance of LogRhythm SIEM.

“No matter what prevention technology organizations deploy, persistent hackers will find a way in. Therefore, today’s security efforts must focus on proactively detecting and neutralizing malicious activity faster, more effectively, and before severe damage can compromise an entire organization,” said Michael Dickman, chief product officer at Gigamon. “The combined benefits of Gigamon Hawk and LogRhythm SIEM are exactly what organizations need to ensure they can patrol their entire network as it provides network and endpoint monitoring for end-to-end threat lifecycle management.”

Share this

The Latest

June 01, 2023

The journey of maturing observability practices for users entails navigating peaks and valleys. Users have clearly witnessed the maturation of their monitoring capabilities, embraced DevOps practices, and adopted cloud and cloud-native technologies. Notwithstanding that, we witness the gradual increase of the Mean Time To Recovery (MTTR) for production issues year over year ...

May 31, 2023

Optimizing existing use of cloud is the top initiative — for the seventh year in a row, reported by 62% of respondents in the Flexera 2023 State of the Cloud Report ...

May 30, 2023

Gartner highlighted four trends impacting cloud, data center and edge infrastructure in 2023, as infrastructure and operations teams pivot to support new technologies and ways of working during a year of economic uncertainty ...

May 25, 2023

Developers need a tool that can be portable and vendor agnostic, given the advent of microservices. It may be clear an issue is occurring; what may not be clear is if it's part of a distributed system or the app itself. Enter OpenTelemetry, commonly referred to as OTel, an open-source framework that provides a standardized way of collecting and exporting telemetry data (logs, metrics, and traces) from cloud-native software ...

May 24, 2023

As SLOs grow in popularity their usage is becoming more mature. For example, 82% of respondents intend to increase their use of SLOs, and 96% have mapped SLOs directly to their business operations or already have a plan to, according to The State of Service Level Objectives 2023 from Nobl9 ...

May 23, 2023

Observability has matured beyond its early adopter position and is now foundational for modern enterprises to achieve full visibility into today's complex technology environments, according to The State of Observability 2023, a report released by Splunk in collaboration with Enterprise Strategy Group ...

May 22, 2023

Before network engineers even begin the automation process, they tend to start with preconceived notions that oftentimes, if acted upon, can hinder the process. To prevent that from happening, it's important to identify and dispel a few common misconceptions currently out there and how networking teams can overcome them. So, let's address the three most common network automation myths ...

May 18, 2023

Many IT organizations apply AI/ML and AIOps technology across domains, correlating insights from the various layers of IT infrastructure and operations. However, Enterprise Management Associates (EMA) has observed significant interest in applying these AI technologies narrowly to network management, according to a new research report, titled AI-Driven Networks: Leveling Up Network Management with AI/ML and AIOps ...

May 17, 2023

When it comes to system outages, AIOps solutions with the right foundation can help reduce the blame game so the right teams can spend valuable time restoring the impacted services rather than improving their MTTI score (mean time to innocence). In fact, much of today's innovation around ChatGPT-style algorithms can be used to significantly improve the triage process and user experience ...

May 16, 2023

Gartner identified the top 10 data and analytics (D&A) trends for 2023 that can guide D&A leaders to create new sources of value by anticipating change and transforming extreme uncertainty into new business opportunities ...