NIS2 is now in effect across the EU — and non-compliance carries fines up to €10M or 2% of global turnover.

Covered entities in energy, health, finance, transport, and more need to meet tight incident notification windows: 24 hours for early warning, 72 hours for a full notification, 30 days for the final report.

Centralized log management is the foundation that makes those timelines achievable. We've written up a practical guide covering access monitoring, network monitoring, data exfiltration detection, and post-incident reporting.

https://graylog.org/post/clm-for-nis2/

#NIS2 #InfoSec #Cybersecurity #LogManagement #Compliance

The EU's cybersecurity certification scheme (EUCC) sets a high bar for ICT vendors covering everything from defining your Target of Evaluation to proving continuous monitoring and audit-ready evidence.

If you build or sell ICT products in the EU, understanding the framework now saves pain later.

We've broken down the key components: TOE, Security Targets, Protection Profiles, assurance levels, and audit best practices.

Full blog: Understanding the European Cybersecurity Certification Framework → https://graylog.org/post/understanding-the-european-cybersecurity-certification-framework/
#Cybersecurity #EUCC #Compliance #Infosec

Traditional logging = fragmented pipelines + blind spots.

Unified logging = centralized, structured data across your entire environment.

That means:
• Faster incident response
• Shared visibility across teams
• Better audit readiness

It’s about turning logs into a true single source of truth.

Full blog: https://graylog.org/post/unified-logging-for-a-single-source-of-truth/

AI compliance is becoming essential—not just for regulations, but for trust.

Learn what it means, key global frameworks, and how to evaluate AI-enabled solutions responsibly.
Human oversight, transparency, and accountability matter.

https://graylog.org/post/understanding-ai-compliance-when-choosing-ai-enabled-solutions/

#AI #Cybersecurity #Compliance

Grateful and humbled. Another RSA in the books, great conversations, and new hardware to show for it.

Thanks to all who stopped by and chatted with us.

#RSAC2026 #Graylog #SIEM #CyberSecurity

Most SIEMs reward complexity. We don't.

Come see us at Booth S-3118 to learn more!

Experience a #SIEM that actually works for lean security teams.

#cybersecurity #RSAC2026

At #RSAC?

Stop by Booth S-3118 to meet Seth Goldhammer and the Graylog team. Learn how to get more value from your telemetry, detect threats as they happen, and automate incident response.

Graylog helps security teams reduce alert fatigue, improve visibility, and act faster when it matters most.

Cyber resilience means assuming incidents will happen, and being ready anyway.

It’s not just security. It’s visibility, response, recovery, and keeping the business running.
If your strategy stops at prevention, you’re missing the bigger picture.
Full breakdown here:

https://graylog.org/post/cyber-resilience-the-key-to-maintaining-business-operations

Two awards. One booth. Zero tolerance for SIEM that creates more work than it closes.

Graylog won Hot Company SIEM and Best Solution Central Log Management at #RSAC 2026.

Come see us at Booth S-3118 this week.

Full story: https://graylog.org/news/graylog-earns-two-global-infosec-awards/

#RSAC2026 #SIEM #CyberSecurity #LogManagement

Find Graylog at RSA Booth S-3118 (Moscone South, March 23–26) and see how teams are:
✔ Prioritizing real threats—not noise
✔ Closing investigations faster
✔ Learning how to use explainable AI

If your SIEM is slowing you down… we should talk.
#RSAC #RSA #RSAC2026