In an environment where cloud-based integrated security is becoming an essential strategy to respond to increasingly complex security conditions, Logpresso, a cloud SIEM (Security Information and Event Management solution) specialist (CEO Yang Bong-yeol), has secured Series B funding.

Leveraging this investment, Logpresso aims to lead automation of security operations (SecOps) based on AI (Artificial Intelligence)-driven next-generation security agents. The company also plans to expand the domestic cloud SIEM market and, based on the “Logpresso Alliance,” complete a full-stack XDR (Extended Detection and Response solution) ecosystem to accelerate its global competitiveness.


On December 16, Logpresso held a press conference at the Conrad Hotel in Yeongdeungpo-gu, Seoul, and announced that it had raised KRW 16 billion in Series B funding, while also unveiling its future vision and mid- to long-term business strategy. Founded in 2013, Logpresso has now raised a cumulative total of KRW 23 billion through this Series B round. In addition to existing investors, Daishin Securities (SBI Investment Partnership), among others, and cyber threat intelligence company SANDSLab participated as strategic investors.

Why cloud SIEM is attracting attention

The biggest challenge in today’s enterprise security management can be summarized as the “difficulty of integration.” As the number of solutions to respond to emerging threats has surged, enterprises are under significant pressure in managing and maintaining individual security products. Against this backdrop, integrated security concepts such as SIEM (Security Information and Event Management) have drawn attention. SIEM is a system that collects and analyzes logs and event data from across an organization to detect and respond to threats in real time.

Cloud SIEM is advantageous for securing visibility into hybrid infrastructure, building real-time threat response systems, and meeting compliance requirements. In line with such market needs, in 2023 Logpresso launched “Logpresso Cloud,” transformed into a SaaS model, as a platform that enables unified management of more than 200 types of security products.

Logpresso plans to drive the popularization of cloud SIEM by gaining market share among mid-sized enterprise customers. CEO Yang Bong-yeol explained, “For small and mid-sized enterprises that lack dedicated personnel, SaaS is advantageous because it requires lower initial deployment costs and is easier to manage. AI-based automation can also fill human resource gaps.” He added, “Beyond simple software costs, SaaS adoption is more efficient over the long term from a total cost of ownership (TCO) perspective, considering hardware build-out expenses and system management/maintenance personnel costs,” and noted, “Logpresso is continuously innovating to technologically reduce the cost of long-term data retention.”

Targeting automation of security operations based on AI agents


AI technology is the key lever for expanding cloud SIEM. Logpresso has set the transition to an AI agent-based security model in line with global trends as its core vision. The company is designing its system so that AI intervenes at every stage of security operations, fully automating the end-to-end process from threat detection to response and maximizing security operations efficiency.

The core of Logpresso’s AI strategy is to have LLM (Large Language Model)-based security agents, which combine planning, memory, and tool-usage capabilities, carry out a sequence of tasks in a goal-oriented manner. Acting as virtual security analysts, AI agents autonomously perform threat detection work 24 hours a day, resolving staffing shortages and accelerating response times. For example, when given an instruction such as “find data exfiltration,” the AI analyzes vast volumes of logs, determines anomalies, and constructs appropriate queries. CEO Yang stated, “We will supply the market with agentic AI SIEM products that can be operated in both cloud and on-premises environments.”

Building full-stack XDR based on an alliance

Logpresso aims to evolve beyond expanding its SaaS customer base into a full-stack XDR provider that delivers integrated security across all domains. While SIEM aggregates enterprise logs to provide unified visibility, XDR is an advanced concept that integrates and analyzes data from multiple security layers—such as endpoints, cloud, and networks—to conduct deep threat detection and automated response. Logpresso has implemented a level of integration that absorbs the individual management consoles of external security products into the Logpresso XDR console.

In particular, through the Logpresso Alliance with 14 companies including SANDSLab and Exosphere, the company plans to complete a full-stack XDR ecosystem in collaboration with security vendors. CEO Yang commented, “Global vendors build platforms through M&A deals worth trillions of KRW, but there has been no such integrated security platform in Korea. We want Logpresso to be the foundation for a fleet that enables Korean security companies to compete in global markets,” adding, “Around the time of our planned IPO, we will pursue collaboration and mergers and acquisitions with domestic and international companies that can generate technological synergies, in order to advance our products.” He further stated, “We will differentiate ourselves by offering lower prices than global cloud SIEM vendors and by providing direct technical support.”


Logpresso is taking steps to grow into a global cybersecurity company. The company has chosen Japan as the first stage of its overseas market expansion. Koo Dong-eon, Head of the Business Division at Logpresso, said, “The Japanese SIEM market is about KRW 350 billion in size and is a promising market, growing at an annual rate of 22%,” and added, “In the initial phase, we will establish MSSP (Managed Security Service Provider) partnerships to gain a foothold in the market, and within two years we plan to expand our presence through a Japanese-language UI/UX and direct service sales channels.”

Meanwhile, Logpresso posted KRW 8 billion in revenue from its on-premises business and KRW 200 million from its cloud business last year. By 2028, the company aims to achieve KRW 35 billion in revenue (KRW 25 billion from on-premises and KRW 10 billion from cloud) and go public with a corporate value of more than KRW 300 billion. CEO Yang said, “Logpresso will accelerate global business, expand its product portfolio, and become an XDR company that leads Korea’s security industry while strengthening global competitiveness.”

ITDongA reporter Kim Ye-ji (yj@itdonga.com)

Popular News