MIDDLE EAST

REGIONAL CHANNELS

MIDDLE EAST

Vijit Nair , VP of Product Management , Corelight

By hosting the platform on AWS Middle East , Corelight enables organisations to benefit from local data sovereignty and reduced operational costs while increasing NDR performance and scalability .

Corelight has seen strong customer demand for its Open NDR Platform , driven by its features combining alerts with network evidence across hybrid and multi-cloud environments . Corelight ’ s most recent cloud sensor product releases now include detections for data exfiltration and command and control traffic for the cloud , enriching network analytics with cloud service information , and enhanced visibility for encrypted traffic , which accounts for the majority of cloud traffic today .

Corelight ’ s on-premises and cloud sensors allow customers to :

• Extend visibility with uniform telemetry across hybrid environments

• Identify stealthy cloud attacks masquerading as legitimate traffic with custom detections

• Accelerate incident response with rich evidence

• Provide an additional layer of security and monitoring on top of the secure AWS Cloud

“ At Corelight , we are dedicated to proactively assisting our clients stay at the forefront of cloud security ,” said Vijit Nair , VP of Product Management at Corelight .

“ As organisations around the world face acute cybersecurity workforce shortages and skill gaps , our technology holds real potential to help security teams meaningfully address these challenges through workflow acceleration . Corelight ’ s SaaS capabilities have the potential to be a force multiplier for resource

By hosting the platform on AWS Middle East , Corelight enables organisations to benefit from local data sovereignty and reduced operational costs . constrained SOCs and quickly uplevel analysts by generating clear and direct alert explanations and investigative guidance .”

The company recently released a new set of capabilities called Guided Triage in its SaaS solution , Corelight Investigator . Guided Triage utilises artificial intelligence , AI to deliver fast , expert-level data insights in plain language , which expedites triage , reduces SIEM ingest requirements and associated costs , and bridges analyst skill gaps .

According to a 2023 report by Enterprise Strategy Group , ESG , 62 % of security operations centre , SOC teams are seeking cost-effective solutions due to the escalating expenses related to storing and managing large volumes of log data within SIEM systems . In addition , the increasing complexity and volume of cyber threats are pushing SOC teams to leverage AI to ensure that security analysts at all levels can better understand both the severity and priority of alerts using plain language for faster decision-making .

Corelight applies industry-first large language models , LLMs to summarise network activity and attack payloads , and innovative packet capture and single-screen triage technology to both reduce costs , and significantly accelerate incident response .

Corelight also recently released static file analysis capabilities powered by the integration of YARA , an open-source tool used to scan files and data streams for patterns associated with malware . With YARA rules now available in Corelight sensors , security teams are able to add static file analysis as a critical element of their network monitoring capabilities . •

32 www . intelligenttechchannels . com