One Article Review
| Source |  AlienVault Blog |
|---|---|
| Identifiant | 1020058 |
| Date de publication | 2019-02-04 14:00:00 (vue: 2019-02-09 15:01:13) |
| Titre | SIEM: What Is It, and Why Does Your Business Need It? |
| Texte |
Security information and event management (SIEM) technology is transforming the way IT teams identify cyber threats, collect and analyze threat data and respond to security incidents. But what does that all mean? To better understand SIEM, let's take a look at SIEM technology, how it works and its benefits.
What Is SIEM?
SIEM technology is a combination of security event management (SEM) and security information management (SIM) technologies. IT teams use SEM technology to review log and event data from a business' networks, systems and other IT environments, understand cyber threats and prepare accordingly. Comparatively, IT teams use SIM technology to retrieve and report on log data.
How Does SIEM Work?
IT teams use SIEM technology to collect log data across a business' infrastructure; this data comes from applications, networks, security devices and other sources. IT teams can then use this data to detect, categorize and analyze security incidents. Finally, with security insights in hand, IT teams can alert business leaders about security issues, produce compliance reports and discover the best ways to safeguard a business against cyber threats.
What Are the Benefits of SIEM?
SIEM technology frequently helps businesses reduce security breaches and improve threat detection. The AlienVault Infographic and "2019 SIEM Survey Report" revealed 76 percent of cyber security professionals reported their organization's use of SIEM tools resulted in a reduction in security breaches. Additionally, 46 percent of survey respondents said their organization's SIEM platform detects at least half of all security incidents.
Also, SIEM tools typically provide compliance reporting – something that is exceedingly valuable for businesses that must comply with the European Union (EU) General Data Protection Regulation (GDPR) and other data security mandates. SIEM tools often come equipped with compliance reporting capabilities, ensuring IT teams can use these tools to quickly identify and address security issues before they lead to compliance violations.
SIEM tools help speed up incident response and remediation, too. A cyber security talent shortage plagues businesses worldwide, but SIEM tools help IT teams overcome this shortage. SIEM tools are generally simple to deploy, and they often can be used in combination with a business' third-party security tools. As such, SIEM tools sometimes reduce the need to hire additional cyber security professionals.
Is SIEM Right for My Business?
SIEM technology is designed for businesses of all sizes and across all industries. If a mid-sized retailer wants to protect its critical data against insider threats, for example, SIEM technology can help this business do just that. Or, if a globally recognized bank requires a user-friendly compliance management tool, it can deploy SIEM technology as part of its efforts to meet industry mandates. SIEM tools can even help businesses protect their Internet of Things (IoT) devices against cyber attacks, proactively seek out cyber threats and much more.
How Can I Select the Right SIEM Tool for My Business?
The right SIEM tool varies based on a business' security posture, its budget and other factors. However, the top SIEM tools usually offer the follo |
| Envoyé | Oui |
| Condensat | 2019 about access accordingly across activity additional additionally address against alert alienvault all also analysis analyze application applications are attacks bank based before benefits best better breaches budget business business' businesses but can capabilities capabilities: categorize collect combination come comes comparatively compliance comply correlation critical cyber data database day deploy designed detect detection detects devices discover does efforts ensuring environments equipped european even event example exceedingly external factors finally firewall following forensics frequently friendly from gdpr general generally globally half hand have help helps hire how however identification identify improve incident incidents industries industry infographic information infrastructure; insider insights integrate integrations intelligence internal internet intrusion iot issues its just lastly lead leaders least let's log look management mandates mean meet mid monitoring more much multiple must need networks offer often operations organization's other out overcome part partner party percent plagues platform posture prepare prevention proactively produce professionals protect protection proven provide provider quickly real recognized reduce reduction regulation remediation report reported reporting reports requires respond respondents response result resulted retailer retrieve revealed review right safeguard said seamlessly search security seek select sem server shortage side siem siem: sim simple sized sizes something sometimes sources speed streamline such survey system systems take talent team teams technologies technology then these things third threat threats time too tool tools top transforming typically understand union use used user usually valuable varies violations wants way ways what why work works worldwide your |
| Tags | Tool Threat Guideline |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.