UserInsight Integrates with LogRhythm SIEM to Accelerate Incident Detection and Response

Last updated at Mon, 28 Oct 2019 16:53:40 GMT

Rapid7 UserInsight finds the attacks you're missing by detecting and investigating indications of compromised users from the endpoint to the cloud. UserInsight now integrates with LogRhythm, a leading Gartner-rated SIEMs in the industry. If you have already integrated all of your data sources with LogRhythm, you can now configure UserInsight to consume its data through LogRhythm, significantly simplifying your UserInsight deployment.

UserInsight detects attackers even when they are hiding behind stolen user credentials - today's most common attack tactic. It can complement your existing monitoring technologies, increasing alert accuracy, providing a user lens to events, and detecting lateral movement and other commonly overlooked indicators. The solution gives you complete visibility into user activity and enables you to easily employ advanced detection technologies such as honeypots (learn more about honeypots and honeyusers in UserInsight) and agentless endpoint monitoring to identify attackers before they can cause damage.

Related: What is User Behavior Analytics?

This integration builds on a broad, existing partnership between Rapid7 and LogRhythm, which already integrates with Rapid7 Nexpose vulnerability management product and the Rapid7 Metasploit Pro penetration testing solution. By tightly integrating their solutions, the companies together offer common customers real-time cyber threat protection through up-to-date situational awareness and comprehensive enterprise security intelligence. LogRhythm and Rapid7 customers benefit from greater visibility and enhanced threat detection across their IT networks by correlating comprehensive vulnerability data and focused penetration testing data from Rapid7 with other enterprise machine data using LogRhythm's multidimensional behavioral analytics capabilities. The integration also enables joint customers to identify security threats and exposures associated with malware and advanced persistent threats and to enhance risk-based prioritization of threats based on the most up-to-date vulnerability data. LogRhythm also enables customers to launch targeted Rapid7 vulnerability scans of their environments from within the LogRhythm console using LogRhythm's SmartResponse capability.

If you would like to hear more about UserInsight and its integration with the LogRhythm SIEM, please contact us to schedule a free demo.