Sumo Logic announced new offerings further advancing its Sumo Logic Cloud SOAR with the War Room and App Central features.
The War Room provides security teams with the details of an incident to expedite manual processes that could typically take minutes to now close within a matter of seconds. Within App Central, critical resources, including use cases, integrations, and playbooks, are brought together to boost necessary automation so that security teams can build standard operating procedures and respond faster to incidents.
“Enterprise leaders have long recognized the need to share critical data across and between systems within their organizations. This is also important within a security operations center (SOC) where SOAR solutions have emerged as a necessary tool to close the investigation gap,” said Dario Forte, VP and GM Security Orchestration, Sumo Logic. “The use cases for security automation and response will continue to evolve. Tools like the War Room will provide cybersecurity teams the flexibility to focus on important tasks while leaving the rest to our robust automation, open integration capabilities, and advanced analytics to investigate and respond with confidence.”
The Sumo Logic Cloud SOAR War Room and App Central add greater efficiency and even more automation to drive the most important Security Operations activities.
- Make Quick Decisions: The War Room provides a detailed view in chronological order of every relevant event that has happened in a specific incident and step-by-step processes to follow from start to finish via a series of cards. Each card shows the most critical information of the incident at a glance and provides actionable insights and visibility into the results of execution. With the new graph view, analysts gain timely visibility into the incident to make decisions based on the visualization of previous actions to analyze data in a structured way.
- Increase Automation through the Open Integration Framework (OIF): Sumo Logic Cloud SOAR easily integrates with an existing security stack, including solutions for EDR, NDR, IAM, threat intelligence, SIEM, vulnerability management and more. With no limit on third-party API integrations, teams can integrate existing tools and technologies for automation with ease. The OIF not only allows the cyber team to create actions that can be inserted into a playbook but also has additional features that add flexibility such as daemons, triggers, and custom actions.
- Access a Library of Up-to-Date Playbooks, Actions, and Use Cases: Pre-built, customizable templates, actions and use cases are available in App Central to guide security analysts so they can apply solutions based on the needs of their organization. Curated by Sumo Logic experts, Cloud SOAR is equipped with actions to close investigations on the latest threats.
The Latest
For many B2B and B2C enterprise brands, technology isn't a core strength. Relying on overly complex architectures (like those that follow a pure MACH doctrine) has been flagged by industry leaders as a source of operational slowdown, creating bottlenecks that limit agility in volatile market conditions ...
FinOps champions crucial cross-departmental collaboration, uniting business, finance, technology and engineering leaders to demystify cloud expenses. Yet, too often, critical cost issues are softened into mere "recommendations" or "insights" — easy to ignore. But what if we adopted security's battle-tested strategy and reframed these as the urgent risks they truly are, demanding immediate action? ...
Two in three IT professionals now cite growing complexity as their top challenge — an urgent signal that the modernization curve may be getting too steep, according to the Rising to the Challenge survey from Checkmk ...
While IT leaders are becoming more comfortable and adept at balancing workloads across on-premises, colocation data centers and the public cloud, there's a key component missing: connectivity, according to the 2025 State of the Data Center Report from CoreSite ...
A perfect storm is brewing in cybersecurity — certificate lifespans shrinking to just 47 days while quantum computing threatens today's encryption. Organizations must embrace ephemeral trust and crypto-agility to survive this dual challenge ...
In MEAN TIME TO INSIGHT Episode 14, Shamus McGillicuddy, VP of Research, Network Infrastructure and Operations, at EMA discusses hybrid multi-cloud network observability...
While companies adopt AI at a record pace, they also face the challenge of finding a smart and scalable way to manage its rapidly growing costs. This requires balancing the massive possibilities inherent in AI with the need to control cloud costs, aim for long-term profitability and optimize spending ...
Telecommunications is expanding at an unprecedented pace ... But progress brings complexity. As WanAware's 2025 Telecom Observability Benchmark Report reveals, many operators are discovering that modernization requires more than physical build outs and CapEx — it also demands the tools and insights to manage, secure, and optimize this fast-growing infrastructure in real time ...
As businesses increasingly rely on high-performance applications to deliver seamless user experiences, the demand for fast, reliable, and scalable data storage systems has never been greater. Redis — an open-source, in-memory data structure store — has emerged as a popular choice for use cases ranging from caching to real-time analytics. But with great performance comes the need for vigilant monitoring ...
Kubernetes was not initially designed with AI's vast resource variability in mind, and the rapid rise of AI has exposed Kubernetes limitations, particularly when it comes to cost and resource efficiency. Indeed, AI workloads differ from traditional applications in that they require a staggering amount and variety of compute resources, and their consumption is far less consistent than traditional workloads ... Considering the speed of AI innovation, teams cannot afford to be bogged down by these constant infrastructure concerns. A solution is needed ...