A feast of new features. A cornucopia of new capabilities. Graylog 7.0 brings a full plate of advancements that help security teams cut through noise, control cloud costs, and respond with confidence. We’re serving practical improvements across dashboards, automation, and AI support so analysts can focus on action instead of manual effort.
Smarter Dashboards: Insights on a Silver Platter
Dashboards and visualizations built from saved searches now transform complex data into clear, actionable insights. Version 7.0 introduces:
- Widget threshold lines and data drilldowns.
- New text widgets.
- AI Summarization to bring meaning to your data faster.
Analysts can see patterns, spot anomalies, and communicate impact without switching screens. It’s a smoother, sharper way to understand what’s happening across your environment.
Guided Remediation: No Leftovers of Unclear Alerts
When an alert fires, the goal is to get to the root cause, understand the scope, and assess the impact as quickly as possible. Graylog already provided remediation recommendations in its event definitions. The next evolution is Event Procedures and Event Steps, which provide clear, step-by-step customizable instructions with single-click actions.
Instead of stale instructions hidden in emails or tribal knowledge, teams now have clear guidance right where they need it to reduce triage time. This measurably improves incident response.
AWS Security Lake Integration: Avoid Those Unnecessary Calories
Cloud costs are like calories on Thanksgiving, piling up quickly. Many teams end up ingesting cloud data they don’t need, and it eats away at the budget.
A unique feature in 7.0 is external data lake connectors, enabling Filtered Inputs, Preview, and Selective Retrieval to ingest only the data you need. Keep unnecessary data in AWS, reduce transfer costs, and maintain alignment with your detections, dashboards, and investigations. The result is cleaner data, predictable costs, and stronger performance.
And for Dessert: Native MCP Support
No feast is complete without dessert, and in Graylog 7.0 that’s the introduction of native MCP (Model Context Protocol) support. This sweet addition opens LLM-powered communication with your Graylog server, giving you:
- Conversational insights and contextual query support.
- The ability to build automation with agentic AI.
It’s like adding an expert sous-chef to your SOC, one who can summarize investigations, suggest next steps, and help create playbooks on demand.
A No-Compromise Feast
Graylog 7.0 continues our no-compromise promise with four key ingredients:
- Smarter Dashboards that deliver faster, more meaningful insights.
- Guided Remediation that ensures consistent, reliable action.
- Cost-efficient Data Lake Integration that simplifies cloud management.
- Native MCP Support that brings intelligent collaboration to every investigation.
Together, these capabilities provide complete visibility, faster detection, and a lower total cost of ownership.
About Graylog
At Graylog, our vision is a secure digital world where organizations of all sizes can effectively guard against cyber threats. We’re committed to turning this vision into reality by providing Threat Detection & Response that sets the standard for excellence. Our cloud-native architecture delivers SIEM, API Security, and Enterprise Log Management solutions that are not just efficient and effective—whether hosted by us, on-premises, or in your cloud—but also deliver a fantastic Analyst Experience at the lowest total cost of ownership. We aim to equip security analysts with the best tools for the job, empowering every organization to stand resilient in the ever-evolving cybersecurity landscape.
About Version 2 Limited
Version 2 Digital is one of the most dynamic IT companies in Asia. The company distributes a wide range of IT products across various areas including cyber security, cloud, data protection, end points, infrastructures, system monitoring, storage, networking, business productivity and communication products.
Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, different vertical industries, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.