enardeitjaptrues

by Dan Kobialka • Dec 19, 2022

LogRhythm, a security information and event management (SIEM) and security operations center (SOC) platform provider, and endpoint detection and response (EDR) company SentinelOne have announced an integration that helps security teams prevent, detect and respond to cyber threats.

Real Time Security Protection Delivered

The integration blends LogRhythm’s security analytics with endpoint telemetry from SentinelOne, the companies said. As such, the integration lets security teams protect their organizations against threats in real time and generate security analytics.

In addition, the integration utilizes the LogRhythm SmartResponse capability and SentinelOne API to automate responses to blacklisting hash values, disconnecting affected machines from networks and other malicious activities, the companies stated. It also allows security teams to collect information during investigations and automatically or manually trigger SmartResponses.

LogRhythm, SentinelOne Explore Security Partnerships

The SentinelOne integration comes after LogRhythm in October 2022 incorporated its SIEM platform into the Gigamon Hawk Deep Observability Pipeline. LogRhythm and Gigamon together help security teams identify behavioral anomalies and internal and external threats and use security intelligence to prioritize threat response, the companies noted.

Meanwhile, SentinelOne’ MSSP relationships are “highly strategic,” CEO Tomer Weingarten said during his company’s earnings call on December 6, 2022. Here are some of the cybersecurity companies that have announced SentinelOne integrations in 2022:

  • Ping Identity enables organizations to use the SentinelOne Singularity XDR App for PingDirectory and SentinelOne Singularity XDR App for PingOne to address common cyberattack vectors and Singularity XDR’s Storyline technology to observe concurrent activities across IT environments and protect against cyberattacks.
  • Mandiant allows Singularity XDR users to enrich their security alerts with threat intelligence from the Mandiant Threat Advantage XDR platform.
  • Armorblox lets security operations teams use Singularity XDR with Armorblox’s behavioral-based email protection to identify email-based indicators of compromise (IoCs).

SentinelOne reported total revenue of $115.3 million in the fiscal third quarter of 2023, up 106% year over year. The company continues to explore MSSP partnerships, which are “going to be a sustained and resilient part of [SentinelOne’s] business,” Weingarten stated in December 2022.