Exabeam has introduced Exabeam SaaS Cloud, a hosted cloud version of the Exabeam Security Management Platform (SMP), to empower enterprises to detect, investigate and respond to cyberattacks more efficiently. Using SaaS Cloud, analysts can collect log data, use behavioural analytics to detect attacks and automate incident response without the infrastructure costs and maintenance issues inherent in on-premises SIEM deployments.
“A key to Exabeam’s successful disruption of the SIEM market has been to build smarter solutions that overcome the challenges of legacy SIEMs,” said Nir Polak, CEO of Exabeam. “It’s only logical for us to offer our SIEM technology via SaaS, to support customers’ migration to the cloud and to meet cloud-first initiatives.”
As a hosted cloud offering, SaaS Cloud provides the full functionality of Exabeam’s market-leading SMP including a data lake, behavioural analytics, case management, security orchestration and incident response automation. Organisations can directly ingest data from dozens of popular cloud-based services, eliminating the need to route cloud data to on-premises data centres. Behavioural analytics improve detection by identifying advanced threats, while response playbooks increase security operations centre (SOC) productivity through incident remediation automation using pre-built connectors to IT and security applications, regardless of where the applications are deployed.
“In the same way that we solved the cost problem of SIEM through flat, user-based pricing, we are now solving the operational challenges of SIEM through a hosted SaaS offering,” said Sylvain Gil, EVP of products at Exabeam. “This new cloud model removes the burden of deployment, maintenance and upgrading, which would otherwise require a dedicated headcount.”
Exabeam customers can license SaaS Cloud through Exabeam Spectrum, a flexible set of deployment options that provide predictable, user-based pricing regardless of deployment type. This allows organisations to use Exabeam SMP in a range of environments and a variety of configurations, including on-premises, public cloud, SaaS, hybrid or as a managed service.
“SaaS SIEM will be the future of how many organisations consume SIEM technology,” wrote Gartner analysts Toby Bussa, Kelly Kavanagh and Gorka Sadowski in their Nov. 5, 2018 report titled 10 Questions to Answer Before Adopting SaaS SIEM. “Removing the responsibility for daily health and performance management of the solution is also beneficial, allowing those engineering resources to be assigned to other higher-value work.”
Data in SaaS Cloud is protected using data encryption in transit and at rest, regular third-party penetration testing and SOC Type 1 compliance, to ensure data is handled according to security best practices.