Many IT organizations have invested in security information and event management (SIEM) platforms only to discover that they’ve essentially created a static database that logs security events. They can query that database when there’s an issue to correlate past and present attacks. But in terms of real actionable intelligence, many legacy SIEM platforms are limited. […]
Many IT organizations have invested in security information and event management (SIEM) platforms only to discover that they’ve essentially created a static database that logs security events. They can query that database when there’s an issue to correlate past and present attacks. But in terms of real actionable intelligence, many legacy SIEM platforms are limited.
Exabeam this week announced it is extending its reach beyond end-user behavior analytics to deliver a SIEM platform that is specifically optimized to detect attacks based on compromised end-user credentials. Exabeam CEO Nir Polak says the Exabeam Security Intelligence Platform differentiates itself because even though most cyberattacks today involve compromised end-user credentials, existing SIEMs don’t make it easy to keep track of these types of attacks.
Polak says Exabeam is applying the machine learning algorithms it developed for its analytics application in combination with a variety of open source technologies to create a SIEM that includes a log manager, threat hunter tools, incident response playbooks, as well as connectors to cloud applications and services. That approach, says Polak, enables Exabeam to deliver a SIEM platform capable of processing massive amounts of data at a substantially lower cost than rival SIEM platforms.
In fact, Polak notes that one of the ironies of SIEM platforms based on proprietary software infrastructure is that most IT organizations get charged based on the amount of data stored in them. That results in a situation where the IT organization winds up trying to limit the amount of data being analyzed to reduce overall costs.
“They wind up not being able to afford to analyze all their data,” says Polak.
Exabeam is still beta testing elements of its SIEM platform. But given the rising level of sophistication associated with IT security attacks, it’s clear that bolstering IT security defenses is a major priority for IT organizations. A big part of that defense strategy is naturally going to involve marrying advanced analytics to what will be massive amounts of data stored in a SIEM platform.
Michael Vizard is a seasoned IT journalist, with nearly 30 years of experience writing and editing about enterprise IT issues. He is a contributor to publications including Programmableweb, IT Business Edge, CIOinsight and UBM Tech. He formerly was editorial director for Ziff-Davis Enterprise, where he launched the company’s custom content division, and has also served as editor in chief for CRN and InfoWorld. He also has held editorial positions at PC Week, Computerworld and Digital Review.
The go-to resource for IT professionals from all corners of the tech world looking for cutting edge technology solutions that solve their unique business challenges. We aim to help these professionals grow their knowledge base and authority in their field with the top news and trends in the technology space.
Property of TechnologyAdvice. © 2025 TechnologyAdvice. All Rights Reserved
Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.
