October 12, 2017
With large data breaches such as the one at Equifax raising concerns about unprotected data, Oracle has strengthened its cloud security features in an effort to ease the minds of IT pros.
August 11, 2017
Bloggers explore the growing role of cybersecurity machine learning, the capabilities of Microsoft's containers and how well SIEM works for threat detection.
July 21, 2017
This week, bloggers explore SaaS SIEM, applications as drivers of hybrid cloud, and the benefits and drawbacks of integrated systems.
July 14, 2017
Kaseya said its Powered Services offerings can help MSPs quickly expand their portfolios to include security and network management services; other news from the week.
SIEM Get Started
Bring yourself up to speed with our introductory content
Security information and event management (SIEM) is an approach to security management that seeks to provide a holistic view of organization’s information technology (IT) security. Continue Reading
Organizations are recognizing the need for network access control systems, but it is important to evaluate and perform research before you invest in enterprise NAC products. Continue Reading
The failure to detect insider threats and a growing need to store and sort through massive amounts of data have drawn attention to user behavior analytics, sometimes called user and entity behavior analytics. According to Gartner, UBA tools deliver value for use cases such as compromised accounts, including stolen and phished credentials. They can also be used to find compromised systems and data exfiltration.
Security platforms like data loss prevention, endpoint security and cloud access security brokers will increasingly layer or incorporate UBA features to help analyze alerts and make underlying technology more useful, according to analysts. SIEM and UBA are also converging, with SIEM vendors adding UBA tools and UBA vendors building SIEM systems.
In this issue of Information Security magazine, we look at the dynamics around UBA and strategies for CISOs going forward. UBA vendors are releasing product suites targeted at security operations centers, today built around SIEM. What does the future hold for standalone UBA tools? We look at time to value and use cases, and help you sift through the noise.Continue Reading
Evaluate SIEM Vendors & Products
Weigh the pros and cons of technologies, products and projects you are considering.
Remember the smart fish tank hack in 2017? IoT attacks are sophisticated, and they're here. Learn how SIEM as a utility can help keep your enterprise safe. Continue Reading
The current trend in SIEM systems involves machine learning capabilties. Even so, direct human management is still essential for SIEM to be effective. Continue Reading
On the hunt for the best SIEM tool for your company? Learn how to evaluate the capabilties of the newest security information and event management products. Continue Reading
Learn to apply best practices and optimize your operations.
Will no longer playing by the rules help companies find insider threats? As user and entity behavior analytics gets closer to SIEM tools, enterprises take notice. Continue Reading
Information security technologies embrace user behavior analytics, and the trend is expected to continue. Should CISOs consider a standalone UBA component? Continue Reading
Organizations with massive volumes of IT operational data need log management tools that can quickly and adeptly process it. AI embedded into tools might be the answer. Continue Reading
Problem Solve SIEM Issues
We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.
Meeting top security goals is only the first step. Get up to speed on how to avoid common pitfalls in the use of threat intelligence and analytics. Continue Reading
Cyberthreat intelligence is just data if it is not actionable. We offer tips to help your team focus on relevant CTI for faster threat detection and response. Continue Reading
The security incident response process isn't getting any easier, not in an age characterized by mobile workers, cloud computing and faster networks. So much can go wrong: Attacks can come from any source and use every method imaginable -- and some not yet identified. The trick is to get a grasp on what's most likely to breach your system, ensure that you're alerted when it does and know what you're going to do about it when it happens. To achieve this, you need to have a security incident response plan in place. As part of this plan, set up good policies and coordinated responses, making sure your IR tools are the most capable possible, including those that can automate aspects of the security incident response process.
This Insider Edition of Information Security magazine focuses on how to minimize cyber-risk through threat detection and incident response. Security pros will find the latest information on options for IR tools and other ideas on making your incident response process as effective as it can be.Continue Reading