Wondering how #DevOps, development, and AI-powered #dev tools will evolve and impact the industry in 2026? Several experts offer thoughtful, insightful, and even some controversial predictions — in this DevOps Digest article. ⬇️

🎤 Hear from several industry luminaries on the topic of AI-powered SDLC, including:
🔹 Sunil Senan, Infosys
🔹 Ensar Seker, SOCRadar
🔹 Rishi Chohan, GFT Technologies
🔹 Lee McClendon, Tricentis
🔹 Jithin Bhasker, ServiceNow
🔹 Emilio Salvador, GitLab
🔹 Greg Ingino, Litera
🔹 Nuha Hashem, Cozmo AI
🔹 Rohan Gupta, R Systems
🔹 Robert Rea, Graylog, Inc.
🔹 Ian Livingstone, Keycard

"In 2026, DevOps culture will be defined by systems that coach, correct, and collaborate alongside engineers." — Robert Rea CTO, #Graylog

https://www.devopsdigest.com/2026-devops-predictions-6 #CyberSecurity #InfoSec #SIEM #AI

Got questions about the National Security Division (NSD) of the U.S. Department of Justice's (DOJ) Data Security Program (DSP)? It was first implemented on Apr. 8, 2025, and the section focused on due diligence and audit requirements became enforceable as of Oct. 6, 2025.👮👀 Do your current compliance programs and data sharing activities need additional controls or processes to comply? 🤔

The DSP establishes export controls that seek to prevent access to bulk genomic, geolocation, biometric, health, financial, and other sensitive personal data by foreign adversaries and those subject to their control, jurisdiction, ownership, and direction. Read on to learn more about what's required of you with this new DSP, including:

❓ The type of data that falls within the DSP
🚫 How the DSP defines covered transactions and prohibited transactions
📋 The specific requirements for a compliance DSP program
✅ How to implement best practices for implementing and monitoring compliance with DSP #security requirements

It's possible to streamline your compliance processes while improving your overall security posture. See how. 👇

https://graylog.org/post/understanding-the-department-of-justice-doj-data-security-program/ #CyberSecurity #InfoSec #SIEM

Is your financial institution as safe as it could be from #ransomware and other cyber threats? 🤔 Groups like FIN7, Lazarus Group, and Carbanak often specifically target banks with sophisticated attacks, like SWIFT compromises and more. 🏦 💰

But have no fear, Graylog + Model Context Protocol (MCP) are here to help! 🦸💪 Today, Seth Goldhammer is walking you through a real world example where a bank in the north east, with a simple #Anthropic prompt, learned that it needed to understand the threat landscape and map it to their current log sources — to enable threat detection content in their current #Graylog deployment.

See how they mastered the challenge and enabled real-time, context-aware recommendations based on their actual environment, in our latest Graylog Labs article.👇

https://graylog.org/post/how-to-use-mcp-to-optimize-your-graylog-security-detections/

#CyberThreats #FinServ #GraylogLabs #TDIR #ThreatDetection

Congratulations! 🎉 You've almost made it to holiday break time. Looking forward to some lazy days with a lot of R & R at the end of this month? That could be the perfect chance to take advantage of #Graylog's FREE online training academy classes. 🆓 🧑‍🏫

We've even got a couple brand new training modules for you to check out. In these courses you can learn all about Graylog's data lake — a repository for storing large volumes of log data that is not immediately needed for search and analysis but is still important to retain. Plus, take a look at what's new in Graylog 7.0.

What could be better than free training? See all the course offerings here:
https://graylog.org/post/graylog-academy-free-training-available/

#CyberSecurity #Security #SecurityTraining #SIEM

We're live with episode 4 of Logs & Lattes! 🪵☕ Join host Palmer Wallace and guest Jeff Darrington as they reflect on what actually happened inside real SOCs in 2025, and look ahead to the trends that are accelerating going into 2026—including:
👀 Supervised AI for first pass triage
💡 Smart data strategies
🔎 API behavior monitoring
🤖 Addressing shadow AI risks
🦾 Taking early steps toward post quantum readiness

Get practical guidance on improving investigation flow, strengthening analyst experience, setting #AI oversight rules, and more.👇

🎙️🎧 https://youtu.be/TzoqKQdYINw #CyberSecurity #Security #SIEM

⚠️ #Cybercriminals know that the human element, whether malicious or not, is the key to finding hidden weaknesses and gaining unauthorized access to your systems. 😱 Cyber threats are evolving to target the human element, which means that adopting a people-centric #cybersecurity strategy that understands human behavior and implements user-friendly security technologies — is critical.

Some benefits of human-centered #security include:
🛡️ Improved resilience to insider risk
↩️ More efficient incident response
💪 Augmented security staff capabilities

Learn about key strategies for implementing people-centric cybersecurity, and more. 🔒👥

👉 https://graylog.org/post/why-a-people-centric-security-strategy-improves-resilience/ #CyberThreats #InfoSec #SIEM

Thank you to the Cyber Insurance News & Information Podcast and host Martin Hinton for having our CMO Kimber Spradlin on the show recently to talk about how good #cybersecurity communication, clear language, and better logging can cut cyber risk. 🚫⚠️

Listen in and learn how you can normalize log data, which will result in reduced alert noise and a better ability to see real incidents. 👀 Plus, dig into:
❓ Why cybersecurity communication must reach every employee—not only the SOC
🪵 How log management supports audits, retention rules, and cyber insurer expectations
🤖 The fundamental role of #AI in detection versus marketing hype
🧑‍💻 MFA, identity, patching, and everyday cyber hygiene
🔍 Digital literacy, deepfakes, and teaching people to spot scams
🤔 How to frame cyber risk in business terms that boards understand

This is a great listen for those who work in #cybersecurity, cyber insurance, IT leadership, or communications. Get practical ideas to sharpen your cybersecurity communication and build a stronger security culture.

🎧 https://open.spotify.com/episode/2OFmNWbYovHexPT5ynBjPO?si=d39da8afb47f4d4d&nd=1&dlsi=430c9890e1d94968 #CyberInsurance #CyberRisk #SIEM

Wondering how much a #SIEM solution will cost you? 💰🤔 Understanding the total cost of ownership (TCO) requires your to look at direct, indirect, and opportunity costs related to deploying, managing, and maintaining the system. So, let's take a look at:

💲Direct costs
💲Indirect costs
💲Opportunity costs
💲Different TCO calculations for on-premises & cloud-based SIEMs

Plus, read about 5 important things to consider when calculating SIEM TCO—in this super informative article. 🙌

👉 https://graylog.org/post/calculating-a-siems-total-cost-of-ownership/ #CyberSecurity #InfoSec #SecurityOperations

If you didn't make it to HOU.SEC.CON, or if you did but didn't catch this awesome preso by #Graylog's Jim Nitterauer — you can watch it here. 📺 👏👇

It's time to rein in that tool sprawl! Get actionable strategies, discover ways to minimize your spend and maximize your return on dollars spent, and more.💡

Jim looks at dissecting the hidden costs and strategic risks of uncontrolled tool proliferation through the lens of the National Institute of Standards and Technology (NIST) #Cybersecurity Framework (CSF).

Learn about the pillars of:
🔍 Identify
🛡️ Protect
🕵‍♀️ Detect
🔁 Respond
😌 Recover

👉 https://www.cybrsecmedia.com/taming-the-hydra-managing-security-tool-sprawl-through-strategic-governance/?ref=cybr-sec-media-biweekly-updates-newsletter #CyberSecurity #InfoSec #SIEM #Security Cybersecurity Framework (CSF) Resource Center

⏰ It's time to talk about log correlation — which is the process of linking related events across different systems to reveal meaningful activity that isn’t obvious when looking at individual logs. 🪵 👀 And... WHY do we need to do this?

Because we need to:
1️⃣ Get real-time security incident detection
2️⃣ Prioritize vulnerabilities
3️⃣ Perform efficient root cause analysis
4️⃣ Optimize security operations
5️⃣ Meet compliance requirements

And, HOW do we get these things? With a log correlation engine, of course! Learn all about how log event correlation is performed, how to get a robust correlation engine for high-fidelity alerts, and more — in our latest blog.

https://graylog.org/post/understanding-how-a-log-correlation-engine-enables-real-time-insights/ #CyberSecurity #Security #SIEM

The October #AWS outage, and others that have happened since, illustrate how supplier disruptions can quickly lead to customer-facing risks like #phishing and social engineering. So, how can orgs manage this risk?

In this article by Kate O'Flaherty in ISMS.online, several industry experts share their insight and advice on this issue. See what they have to say about clear and timely communication, good governance and risk management, and more.

Hear from:
🔹 Richard Jones, VP northern Europe at Confluent
🔹 Bruce Jenkins, CISO at Black Duck
🔹 Ross Brewer, VP of Graylog, Inc. EMEA
🔹 James Kretchmar, SVP CTO of cloud technology group at Akamai Technologies
🔹 Simon Pamplin, chief technology officer at Certes

https://www.isms.online/cyber-security/the-aws-outage-and-the-cybersecurity-ripple-effect/ #CyberSecurity #SocialEngineering #Security

We've got new cloud-native integrations with AWS Security Hub and Amazon #EventBridge! 🎉 Now you can get real-time event ingestion and support for the Open #Cybersecurity Schema Framework (OCSF)—which streamlines AWS log analysis and accelerates threat detection. And, with this new Amazon EventBridge integration events now flow into #Graylog the moment they occur, enabling real-time threat detection and faster response to incidents. 🙌

Learn more about OCSF support for seamless #AWS Security Hub integration, how these new capabilities are designed specifically for cloud-first teams using Graylog, and more. 👇

https://www.businesswire.com/news/home/20251202476132/en/Graylog-Boosts-Security-Visibility-with-Real-Time-Event-Ingestion-and-OCSF-Support-with-AWS-Security-Hub?_gl=1*1mn0cnh*_gcl_au*NzcyNDU4NjQzLjE3NjAwMzE1NjI.*_ga*MjUxODEwNDk4LjE3NjAwMzE1NjI.*_ga_ZQWF70T3FK*czE3NjQ3MDIwNTkkbzUxJGcxJHQxNzY0NzAyODkwJGo1NCRsMCRoMA #CyberSecurity #SIEM #ThreatDetection

Do you need a cloud #SIEM? ☁️ 🤔 As #security for your org matures, a cloud SEIM can give you the ability to analyze and correlate more data for better insights. The benefits of a cloud SIEM include:
☑️ Flexibility
☑️ Scalability
☑️ Cost-effectiveness
☑️ Integrations
☑️ Automation

Learn about the different cloud SIEM deployment models, best practices for getting started with a cloud SIEM, and more — in our latest blog!

https://graylog.org/post/why-a-cloud-siem-just-makes-sense/ #CyberSecurity #APISecurity

Elizabeth Corner of the World Pipelines Podcast recently spoke with #cybersecurity expert Ross Brewer of #Graylog about how pipelines can stay resilient amid cyber threats.🔒💪

Listen in as they discuss:
😱 Some of the biggest challenges that pipeline operators are facing today
⚠️ The fact that connectivity is key, but with it comes the risk
⛅ The resiliency (or lack of) in cloud based infrastructure
🤝 How cybercriminals can exploit the interconnectedness of pipeline networks
🧑‍💻 Insider threats
➕ Much more

Shifting geopolitical pressures, the energy transition, and increasingly digital infrastructure are combining to raise this industry’s risk profile. Ross shares critical info in this podcast on how to develop a proper defense.

🎧 🎙️ 👉 https://www.worldpipelines.com/podcasts/fight-while-wounded-how-pipelines-can-stay-resilient-amid-cyber-threats/ #SIEM #Energy #Security #CyberThreats

#CISOs and analysts need clarity—not another #AI system that makes unverifiable decisions. 😓 With Model Context Protocol (MCP) you can get that clarity! 🤩 It provides explainable, governed, and verifiable AI assistance that improves investigation speed and SOC efficiency. And, this is where tangible ROI really emerges.

So, how exactly does MCP deliver ROI? It provides:
1️⃣ Faster investigations with verifiable context
2️⃣ Explainable results that analysts can trust
3️⃣ More productive teams with fewer escalations
4️⃣ Governance for AI usage

Learn about practical steps for implementing MCP in your SOC, download the the Ultimate Guide to MCP, and more.👇

https://graylog.org/post/mcp-roi-in-a-new-era-of-ai-orchestrated-threats/ #CyberSecurity #InfoSec #SIEM

It's inevitable. As time goes on and needs evolve, you might have to break up with your open-source #SIEM. 😭 We know. It's hard to say "goodbye" to 🆓. 👋 But, as your org grows, it incorporates more business-enabling technologies which lead to new #security risk management tools. This means more logs, impacting performance during high-traffic hours and disrupting the open-source SIEM’s ability to ingest logs. 😱 You need more power.

Is it time for you to upgrade? These 5 signs can help you figure it out:
⬆️ Is your tech stack growing?
📈 Are you scaling your business operations?
↔️ Do you have an expanding attack surface?
😩 Are you experiencing increased alert fatigue?
☑️ Do you have increased compliance needs?

Need help answering these important questions? Read on.👇

https://graylog.org/post/5-signs-youve-outgrown-your-open-source-siem/ #CyberSecurity #InfoSec #AlertFatigue

Regulations are changing the way orgs communicate, approach, and think about #security. New standards like the EU's DORA, and the US's Secure-by-Design Principles are shifting accountability from aspiration to expectation. And, the orgs that are successfully adapting to this evolving security landscape are embracing several fundamental cultural shifts — like internalizing accountability and treating transparency, architecture, and communication as everyday disciplines rather than once-a-year compliance events.

#Graylog's Robert Rea explains how forward-looking leaders can use regulation as a blueprint for maturity with three practical strategies:
1️⃣ Building compliance into the design process
2️⃣ Focusing on security basics
3️⃣ Measuring metrics that truly matter

Read more about these practical steps for getting ahead, in this article via CyberScoop.

https://cyberscoop.com/how-cybersecurity-regulation-is-driving-accountability/ #CyberSecurity #InfoSec

Data lakes are typically thought of as simple warehouses. But they don't have to be! 👀 In Graylog 7.0 data lakes function as pressure release valves for #security teams overwhelmed by storage costs, investigation delays, and cloud data sprawl — where analysts can get direct access to long term data, and more.

Our data lake provides inexpensive storage where logs stay searchable, preview-able, and recoverable. Learn more about getting cloud scale without cloud surprises, and why this is a truly practical stance on managing data volume.

https://graylog.org/post/how-to-use-data-lakes-to-reduce-siem-costs-and-strengthen-investigations/ #CyberSecurity #SEIM #DataLake #TDIR

🤔 What can I do to speed up my incident response? Great question! And, the answer is ➡️ guided remediation can help. 💯 It gives analysts clarity during moments when pressure rises and context usually scatters. Plus, it rebuilds confidence by giving analysts structured, step-by-step direction the moment an event appears.

Guided remediation represents a shift toward clarity during the most critical moments of an investigation. It reduces friction. It builds consistency. It strengthens trust between analysts and the system guiding them. It's a win-win, all around!

Learn more.💡
👉 https://graylog.org/post/how-to-speed-up-incident-response-with-guided-remediation/ #CyberSecurity #Security #SIEM #IncidentResponse

Let's take a look back today at #Graylog's first-ever Engineering Hackathon! 👩‍💻 🎉 In October, we gave our engineers a full week to build whatever they believed would make #Graylog better. This allowed them to step away from their day-to-day work, explore new ideas, experiment with technologies, and more.

Some highlights included:
🌎 Watching new collaborations take place across our teams & different continents
💻 A project built primarily via vibe coding
🛠️ The project "Portal Gun" team turning a 10-year old POC into a dynamic, usable UI element that you can try out in Graylog 7.1 Alpha 1

Read all about it, in our latest blog by Dev Team Engineering Directors Rob Curtis and Martina Kohn!👇

https://graylog.org/post/the-first-graylog-engineering-hackathon/ #Hackathon #CyberSecurity #Devs #GraylogLabs