Security Intelligence with Sumo Logic: Your guide to an effective security detection and response program with the Sumo Logic platform
暫譯: 使用 Sumo Logic 的安全情報：有效的安全檢測與回應計畫指南

Build a modern security intelligence program with Sumo Logic that combines DevSecOps practices, Cloud SIEM insights, and automation to detect, investigate, and respond faster while ensuring compliance

Free with your book: DRM-free PDF version + access to Packt's next-gen Reader*

Key Features:

- Master essential skills for security monitoring and analytics using Sumo Logic

- Perform advanced threat hunting using Cloud SIEM in Sumo Logic

- Get up to speed quickly and easily with this practical guide for security analysts

- Purchase of the print or Kindle book includes a free PDF eBook

Book Description:

Modernize your security operations with Sumo Logic's Continuous Intelligence Platform that delivers real-time detection, analysis, and response to threats, and find out how it enables security teams to unify monitoring, apply advanced analytics, and strengthen defenses across diverse environments.

Step by step, this guide takes you through configuring Sumo Logic to ingest and visualize log data, running versatile queries, and using Security Apps to meet compliance and audit demands. You'll learn how to take full advantage of Cloud SIEM by creating enriched records, building correlation rules, proactively threat hunting, and tuning signals to reduce false positives.

Beyond traditional SIEM use cases, discover how Sumo Logic supports modern DevSecOps practices that embed security into the development lifecycle without compromising delivery speed and features such as entity inventory, third-party integrations, and best practices that enhance investigation and detection accuracy.

Finally, you'll prepare for the future of security intelligence, where automation, machine learning, and AI-driven insights reshape threat defense, ensuring you're ready to transform your security operations with Sumo Logic Cloud SIEM.

*Email sign-up and proof of purchase required

What You Will Learn:

- Discover why advanced security intelligence matters and how to achieve it with Sumo Logic

- Explore the Sumo Logic platform to perform security monitoring and analytics

- Understand Sumo Logic Cloud SIEM and modernize your security operations

- Leverage Sumo Logic's cloud-native SIEM for threat detection and threat hunting

- Implement best practices and techniques to make full use of what Sumo Logic offers

- Adapt to the future of security intelligence

Who this book is for:

The book covers everything from basics to best practices so that you can make the most of Sumo Logic. It equips you with the practical knowledge that transforms how you develop and implement cybersecurity intelligence solutions.

Table of Contents

- Introduction to Sumo Logic

- The Role of DevSecOps

- Measuring Security Outcomes and Performance

- Setting Up Your First Collector

- Ingesting Data

- Analyzing Data

- Metrics

- Alerting, Monitoring, and Visualizing Data

- Cloud SIEM

- The Insight Engine

- The Automation Service and Playbooks

- Bringing a Security Intelligence Program to Life with Sumo Logic

- Compliance and Reporting

- The Future of Security Intelligence