Expel Expands SIEM Options, Adding New Flexible Data Lake Offering

Enhanced MDR solutions boost customer compliance and better meet mounting data storage needs

Expel Expands SIEM Options, Adding New Flexible Data Lake Offering

Dave Heffernan
expel@methodcommunications.com
Method Communications on behalf of Expel

Jimmy Alder
expel@harvard.co.uk
Harvard on behalf of Expel

Expel, the leading managed detection and response (MDR) provider, today announced expanded security information and event management (SIEM) coverage, including a new low-cost data lake offering, allowing customers to meet compliance and data storage requirements more effectively while strengthening their overall security posture. Additionally, Expel extended integration coverage and support for several industry-leading SIEM and extended detection and response (XDR) products, including Sumo Logic Cloud SIEM and CrowdStrike Falcon LogScale environments.

“Organizations are navigating an increasingly complex landscape when it comes to the balance between cybersecurity risk, spend, and return on investment,” said Yonni Shelmerdine, Chief Product Officer of Expel. “With tighter budgets and a cyber talent shortage contending with the rising number of security products (driving up data and costs), organizations need more efficiencies from their tech stack for measurable security outcomes that prove ROI. Expel MDR’s™ expanded SIEM capabilities deliver flexibility in managing security data while reducing costs and aligning with regulatory needs, perfectly timed to meet these evolving market demands.”

Expel MDR’s new and expanded SIEM coverage includes:

The ability for Expel MDR customers seeking data storage to provision a low-cost data lake and/or comprehensive cloud SIEM product.
Several new SIEM integrations, including advanced support for out-of-the-box and custom rules, and content optimization insights to help customers tune detections within Sumo Logic Cloud SIEM and CrowdStrike Falcon LogScale environments.
Broadened integration capabilities and added support for Google Security Operations and Palo Alto XSIAM, with advanced features expected to launch in early 2025.

Expanding on an existing alliance with Sumo Logic, Expel will now be able to offer a wider spectrum of data analytics solutions, delivering both high-efficiency and cost-effective long-term data storage and/or advanced security analytics capabilities, tailored to customers’ needs. This new addition offers flexibility in data storage utilizing the Sumo Logic Cloud SIEM, supporting bespoke instances. It addresses storage demands, facilitates future investigations, and helps support compliance with Payment Card Industry Data Security Standard (PCI DSS), General Data Protection Regulation (GDPR), HITRUST Common Security Framework (CSF), and other data and log collection mandates.

Expel's enhanced SIEM capabilities empower organizations to streamline their security operations, with unmatched flexibility in data storage and compliance. By combining advanced detection capabilities with broad integration support for popular SIEM tools, Expel MDR’s expanded coverage equips security leaders with the tools needed to achieve measurable security outcomes, reduce costs, and maximize their existing security investments.

To learn more about how Expel helps organizations optimize security and address their unique SIEM challenges, check out our webpage or contact us with questions, any time.

Here’s what others have to say:

“With the rise of AI evolving the next generation of SIEM solutions, Sumo Logic continues to drive cloud security innovations to modernize SOCs and offer predictive insights, automated responses, and seamless integration with DevSecOps. Our partnership with Expel delivers a joint offering that expertly manages detection and response strategies while providing a best-of-breed Cloud SIEM technology to help customers speed up incident investigations by automatically triaging alerts and correlating threats through log analytics.”

- Seth Williams, Field CTO, Sumo Logic

“The growing disparity between a marked cybersecurity skills shortage and advancing threats are compelling more organizations to turn towards security services to bridge the gap; nearly 41% of cybersecurity budget dollars are going towards security services, according to a recent IDC survey. IDC research has also uncovered how the vast majority of CISOs report to either CEOs or COOs, making the cybersecurity business case become even more important.

Expel’s expanded offerings enable businesses to find cost-effective solutions that don’t compromise on security efficacy, while also addressing data storage demands and compliance requirements. The new enhanced SIEM options announcement reflects a critical market shift towards flexible and affordable data management, empowering companies to meet regulatory standards while optimizing their existing security investments."

- Craig B. Robinson, Research Vice President, Security Services, IDC

About Expel

Expel is the leading managed detection and response (MDR) provider trusted by some of the world’s most recognizable brands to expel their adversaries, minimize risk, and build security resilience. Expel’s 24/7/365 coverage spans the widest breadth of attack surfaces, including cloud, with 100% transparency. We combine world-class security practitioners and our AI-driven platform, Expel Workbench™, to ingest billions of events monthly and still achieve a 20-minute critical alert MTTR. Expel augments existing programs to help customers maximize their security investments and focus on building trust—with their customers, partners, and employees. For more information, visit our website, check out our blog, or follow us on LinkedIn.