Sumo Logic Supercharges Security Operations with AI and DevSecOps Innovations at RSA 2025
- Cyber Jack
- 3 hours ago
- 3 min read
At this year’s RSA Conference, Sumo Logic is staking its claim as the SaaS log analytics leader for the AI age — unveiling a suite of new capabilities aimed at transforming security operations from reactive to proactive.
“With the rise of AI-powered attacks, dynamically scaling cloud environments, and growing data complexity, legacy solutions are significantly slowing detection and response,” said Keith Kuchler, Chief Development Officer at Sumo Logic. “The innovations we’re unveiling at RSA this week fuel DevSecOps via the power of logs by centralizing security log management at scale to deliver intelligence through actionable insights that modern SecOps teams need to stay ahead of the evolving threat landscape without suffering from alert fatigue.”
AI-Driven Defense for an Era of Escalating Complexity
Sumo Logic’s latest features converge telemetry, context, automation, and AI to shrink the gap between detection and response. Among the highlights:
Expanded Threat Intelligence: Organizations can now integrate multiple threat feeds using STIX/TAXII protocols, layering Sumo Logic’s insights with their own intelligence to sharpen detection accuracy and improve alert fidelity at machine speed.
Rapid UEBA Baselining: By leveraging historical behavior patterns instead of relying on rigid static thresholds, Sumo Logic’s updated User and Entity Behavior Analytics (UEBA) adapts dynamically. This allows teams to spot insider threats or compromised accounts earlier, while dramatically cutting down false positives and manual tuning needs.
Detection-as-Code for DevSecOps: In a move that bridges the gap between security and software engineering, Sumo Logic now enables security teams to build, test, and manage detection rules in familiar development environments like GitHub. The result: more agile, precise, and scalable threat detection.
AI-Generated Insight Summaries: A prototype feature powered by generative AI promises to radically accelerate incident response by distilling massive volumes of log and detection data into concise, actionable intelligence — surfacing root causes and key attack patterns within seconds.
Customer Momentum: Faster, Smarter, Stronger
Sumo Logic’s push into AI-first security operations is already earning praise from early adopters across industries.
“We rely on Sumo Logic’s scheduled searches to actively monitor for IOCs during incidents," said Bruno Miguel Cruz Braga, Head of SecOps at TrueLayer. "This lets us focus on addressing ongoing incidents while staying on top of any emerging threats."
SOC teams burdened by traditional alert fatigue are also seeing tangible improvements. “By filtering out the noise and pinpointing critical insights, Sumo Logic allows us to improve our team’s efficacy,” said Tarek Chalaan, SOC Manager at Security Centric.
For security engineers like Jordan Andonov at OpenPayd, Sumo Logic’s platform frees up time to innovate. “It saves me a significant amount of time and allows our team to streamline daily tasks,” Andonov said. “This gives us the opportunity to focus on new integrations and enhance our overall security posture.”
Even organizations with mature infrastructures like Roku see immediate value. “Tuning [Sumo Logic’s] out-of-the-box rules for our organization helped familiarize ourselves with the tool, prove value in our investment, and optimize the platform so we could focus on true alarms that require our attention,” said Huseyin Karaarslan, Senior Security Engineer at Roku.
The New Standard for Intelligent SecOps?
As AI-driven threats grow more sophisticated and cloud environments stretch the limits of traditional security models, Sumo Logic’s innovations signal a future where intelligent security operations aren't just an aspiration — they're the expectation.
At RSA 2025, Sumo Logic isn’t just responding to the industry's pain points; it’s redefining how security teams adapt, respond, and thrive.
