.jpg)
Graylog has launched its Security Fall 2025 release, introducing a suite of AI-driven features designed to redefine the modern Security Operations Center (SOC). The latest version of its platform focuses on delivering explainable AI, natural language querying, and enhanced cost controls to help lean security teams operate with greater speed, clarity, and efficiency.
Graylog launches its Fall 2025 release (version 7.0) for its SIEM platform.
The update introduces explainable AI insights and AI-enabled dashboards.
New MCP Server Access allows natural language queries of security data.
Integration with Amazon Security Data Lake reduces data transfer and storage costs.
The platform is built to combat alert fatigue and data overload for mid-market enterprises.
Features are designed to provide measurable efficiency gains for resource-constrained teams.
A cornerstone of the release is Graylog MCP Server Access, which provides a secure way for analysts to interact with their data using natural language. This feature connects user-approved AI agents or Large Language Models (LLMs) directly to Graylog, allowing teams to ask complex questions like “Summarize the top five MITRE techniques detected across failed logins in the last 24 hours.” This conversational layer accelerates investigations and improves analyst productivity without compromising security controls or permissions.
The new Amazon Security Data Lake integration addresses the critical challenge of cost management in hybrid environments. It extends the capabilities of Graylog's internal data lake by allowing preview, selective retrieval, and filtered collection from external data lakes. This provides unified visibility across AWS services and other environments without incurring unnecessary data transfer costs, licensing impacts, or redundant storage for logs not used in active analytics.
The release underscores Graylog's commitment to practical, analyst-centric AI. “Security and IT teams are being pushed to their limits by data growth and alert fatigue,” said Seth Goldhammer, Vice President of Product Management at Graylog. “Our focus is on helping them take back control, with practical AI that drives faster insights, smarter investigations, and measurable efficiency.” By combining innovation with transparency, Graylog aims to equip SOCs with technology they can trust to meet modern security challenges head-on.
Graylog is the AI-powered SIEM and log management platform built for security and IT operations. The platform centralizes and analyzes event data from across complex environments to help teams detect threats faster, investigate smarter, and control data costs - without compromise. Graylog combines scalable log management with explainable AI, summarizing dashboards, prioritizing real risks, and automating investigation workflows - while keeping analysts in control. With products including Graylog Security, Enterprise, API Security, and Open, Graylog serves more than 60,000 organizations across 180 countries. Headquartered in Houston with roots in open source, Graylog continues to redefine how modern teams achieve clarity, context, and control across their environments.
TechIntelPro empowers B2B technology decision-makers with the latest industry trends, deep insights, leadership perspectives and actionable intelligence to drive both organizational and professional milestones—and thrive on the tech pulse.