by TINTSWALO BALOYI
JOHANNESBURG, (CAJ News) – KASPERSKY has released an updated version of its Security Information and Event Management (SIEM) platform, introducing AI-driven threat detection, stronger data integrity controls and expanded customisation aimed at helping organisations strengthen and modernise their security operations.
The latest release responds to growing global demand for advanced SIEM capabilities.
A recent Kaspersky survey found that SIEM platforms rank among the top three most sought-after cybersecurity solutions for organisations planning to establish a Security Operations Center, with 40 percent of respondents identifying SIEM as a critical foundation for an advanced cyber defence function.
To address these needs, Kaspersky continues to enhance its SIEM with features designed to improve threat visibility, operational efficiency and regulatory compliance.
The latest update delivers several major enhancements.
A newly introduced flexible role model allows organisations to create, clone and modify user roles, enabling closer alignment with internal processes and organisational structures.
This level of customisation ensures that security teams can adapt the platform to their workflows without compromising control or accountability.
The update also introduces Correlator 2.0 in beta, a fault-tolerant and horizontally scalable engine that significantly improves performance while reducing hardware requirements.
Built into this release is an AI-enabled mechanism for detecting potential account compromise. By analysing login activity, establishing behavioural baselines and identifying anomalies, the system can generate timely alerts that help security teams respond quickly to account theft and misuse.
Data integrity and compliance are further strengthened through new backup and restore capabilities. Event data can now be exported into secure, immutable archive files, ensuring logs remain protected and unaltered during investigations, audits and regulatory reviews.
User experience has also been enhanced with background search queries. Analysts can run low-priority searches in the background while continuing other tasks, with results becoming available instantly once processing is complete.
According to Ilya Markelov, Head of the Unified Platform Product Line at Kaspersky, the updates reflect the company’s commitment to staying ahead of evolving cyber threats by using AI to automate complex analysis and allow professionals to focus on high-value investigations.
– CAJ News