Learn about the new product innovations we deliver every quarter. Read the release notes,
download helpful resources, and register for our release webinars!
SOAR is now built directly into Log360 Cloud, enabling analysts to automate investigation and response workflows from a unified platform. Use the visual playbook builder to create low-code workflows with branching, parallel execution, custom functions, and coordinated remediation actions across security tools.
Run multiple playbooks in parallel from a single alert and reuse common workflows through nested playbooks. Retry and fallback mechanisms help maintain execution continuity, while manual retries resume from the exact point of failure instead of restarting the workflow.
Extend playbooks with custom logic using Python or Deluge functions. Build reusable workflows for threat enrichment, data parsing, ticket creation, endpoint actions, and organization-specific response logic.
Expanded Log360 Cloud’s integration ecosystem with 7 new marketplace extensions including CrowdStrike GravityZone, Bitdefender EDR, Okta, and more.
Securely manage integrations and authentication from a centralized connections framework. Configure reusable connection profiles for endpoint platforms, identity providers, cloud services, and threat intelligence tools to simplify orchestration across your security stack.
We've redesigned how Log360 detects threats. A new centralized detection console now brings together correlation logic, threat intelligence, MITRE ATT&CK mapping, UEBA insights, and a rule builder that supports standard, anomaly-based, and advanced detection logic. Detection insights helps optimize rules with real-world noise levels and usage metrics—enabling focused, high-fidelity alerts.
Fine-tune alert scope using filters based on users, groups, and OUs. These filters apply across predefined rules for use cases like privilege escalations, suspicious password resets, and admin group changes—helping reduce noise from irrelevant accounts like test users or developer machines. It's precise detection, not suppression.
Log360 now supports horizontal scalability with clustered log processors and role-based specialization for alerting, correlation, and search. You can also collect logs from distributed sites and process them centrally — ensuring high performance even in large, hybrid environments.
Get continuously updated detection content mapped to MITRE ATT&CK, without manual imports. Delivered securely from the cloud, this content is curated for emerging threats and multivector attacks, ensuring your detection logic stays current.
Log360 Cloud now features Zia Insights, a contextual AI engine powered by Azure OpenAI (BYOK). Analysts can now:
This release transforms threat investigation workflows— delivering clarity, acceleration, and actionable insights within your SIEM interface.
