Sumo Logic Integration with New AWS Network Firewall Service to Provide Visibility and Data Security Across Amazon Virtual Private Clouds
November 25, 2020Sumo Logic announced its Cloud SIEM solution now integrates with AWS Network Firewall, a new managed service that makes it easy to deploy essential network protections for all of your Amazon Virtual Private Clouds (Amazon VPCs) on Amazon Web Services (AWS). As organizations continue to ingest and collect more data, SecOps professionals are struggling to quickly detect, investigate and remediate cloud-based security issues. This integration provides security professionals real-time visibility into network traffic and automated correlation of threats surfaced by the AWS Network Firewall service, reducing the time to detect, investigate, and remediate security issues.
“As organizations continue to accelerate their digital transformation journeys, they have to address new issues and elevate their security data infrastructure to keep up with changing user, device, and network activity,” said Andrew Thomas, General Manager, Perimeter Protection, Amazon Web Services, Inc. “AWS Network Firewall makes it easy for customers to deploy essential network protections for all of their VPCs. Together with Sumo Logic’s cloud-native SIEM solution, users can significantly reduce enterprise attack surfaces through automated threat correlation, resulting in quicker time to remediation.”
Sumo Logic’s Cloud SIEM solution provides real-time visibility into network traffic and automated correlation of threats surfaced by AWS Network Firewall, and together deliver enhanced security benefits to joint customers including:
- Automated security operations – Automatically generate actionable insights-not just prioritized alerts-enriched with user, device and network context across all of your AWS and any hybrid on-premises and cloud data sources.
- Threat insights – Correlate threats and events automatically from AWS Network Firewall with events across your infrastructure, application, and security vendors to investigate root causes.
- Rapid response – Reduce time to detect, investigate, and remediate security issues surfaced from your AWS Network Firewall rule events and alerts.
- Powerful search and investigation – Provide security insights with foundational correlation, and deep search-based investigation along with the solution’s rich data visualization with out-of-the-box content and customizable dashboards.
- Low total cost of ownership and fast time-to-value – Achieve a low total cost of ownership and rapid time-to-value thanks to our AWS-native platform and economic licensing model.
“Security teams continue to be bombarded with too many security alerts and lack the proper visibility to see directly into evolving threats and trends across network traffic, said Greg Martin, General Manager, Security Business Unit, Sumo Logic. “We’re excited our Cloud SIEM solution now supports AWS Network Firewall to provide the continuous intelligence needed across AWS-native traffic for deep analytics and automated correlation to help security and DevSecOps teams modernize their security practices.”
Sumo Logic’s Cloud SIEM is a cloud-native solution that addresses the challenges facing today’s modern SOC by automating the manual work for security analysts, saving them time and enabling them to be more effective by focusing on higher-value security functions. Sumo Logic Cloud SIEM provides real-time insights and continuous intelligence SOC teams can use to quickly identify evidence of compromise and improve their ability to respond quickly by understanding the impact of an attack. This removes common technology limitations that burden a SOC’s efficiency and ability to mitigate risk.
Sumo Logic’s integration with AWS Network Firewall is now generally available to both Sumo Logic and AWS customers.
For more information, visit the Sumo Logic App for AWS Network Firewall page.