SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
Story image
Logpoint unveils AgentX, an endpoint agent for Windows, Linux, MacOS, and cloud deployments
Tue, 14th Mar 2023
FYI, this story is more than a year old

Logpoint has announced the launch of AgentX, an endpoint agent for Windows, Linux, MacOS, and Cloud deployments. 

According to the security company, AgentX accelerates threat detection and investigation on endpoints and ensures fast response capabilities.

In addition to gathering telemetry, AgentX adds interrogation, compliance checks, and vulnerability management capabilities to Logpoint's security operations platform, converging SIEM, SOAR, and UEBA technologies, to improve overall security posture significantly.

"Our vision is to drive accelerated detection and response to threats. Adding AgentX to our platform changes the paradigm from log-collection to observability and interrogation to action-driven response," says Christian Have, Logpoint CTO. 

"AgentX expands the visibility of our security operations platform. Analysts can detect and respond to threats from a single console with end-to-end playbooks, analytics and use-cases shipped for common threats and techniques."

AgentX brings endpoint observability from log collection, osquery integration, and vulnerability management to the converged security operations platform. The rich endpoint telemetry enhances security observations, providing analysts with threat and operational context about incidents and more detailed analyses of threats.

"The compliance capabilities that AgentX offers solve two of the main challenges compliance and security teams face today," says Have. 

"First, identifying critical events for compliance reporting and monitoring. Second, knowing if and when a device enters a non-compliance state," he says.

AgentX provides out-of-the-box enrichment of event data with relevant compliance information, letting compliance specialists query for PCI violations directly in the interface. In addition, admins can get immediate and complete visibility of devices entering non-compliant states by comparing versions of system files and running configuration checks against corporate policies.

Logpoint Converged SIEM protects the entire business by providing comprehensive threat detection, investigation and response across clients, servers, network systems, cloud workloads, and business-critical applications. AgentX will give organisations without an EDR a significant endpoint security increase while reducing the total cost of ownership. AgentX is included for all Logpoint customers with the SIEM+SOAR license and can be deployed free of charge on the number of endpoints corresponding to the number of nodes.

Earlier this month, Summa Equity announced it was acquiring a majority stake in Logpoint, investing from its EUR 2.3bn Fund III in European cybersecurity resilience and the protection of global digital transformation.

Founded in Denmark and present in 11 locations across Europe, the US, and Asia, Logpoint is the only major European provider of foundational SIEM, UEBA, SOAR, and SAP security technologies converged into a complete platform. Logpoint secures digital transformation and helps organisations of all sizes combat cybersecurity threats, operate reliable IT infrastructures, and provide the essential digital engine for companies to comply with important regulations such as GDPR and NIS2.

The EUR 2.3bn Summa Equity Fund III focuses on thematic investments in Resource Efficiency, Changing Demographics, and Tech-Enabled Transformation. The fund is supported by close to 70 diverse institutional investors.