SC eSymposium: SIEM
Security information and event management (SIEM) systems are a critical part of any organization’s defense. By correlating and giving meaning to data from any number of tools — from intrusion detection systems and firewalls to web logs or flow data — SIEMs allow security teams to understand what’s happening on their networks. However, they can be difficult to deploy and sometimes even harder to make work. We explore just how some companies find help from SIEMs and what organizations be mindful of as they look to deploy these.