SIEM architecture and operational processes

SIEM architecture and operational processes

Date: Oct 11, 2013

Security information and event management (SIEM) is a key technology that provides security visibility, but it’s difficult for security professionals to deploy and manage. This presentation will offer a framework for a structured approach for architecting, implementing and maintaining a SIEM.

Anton Chuvakin describes why the success of your SIEM deployment is determined more by operational processes than by its architecture or a specific tool.  Chuvakin explains why the most critical tasks in the entire SIEM process are defining scope, objectives and use cases.

Anton Chuvakin, Ph.D., is a research director at Gartner’s Technical Professionals’ Security and Risk Management group. As a recognized expert in log management and PCI compliance, Dr. Chuvakin has published dozens of papers on log management, SIEM, correlation, security data analysis, PCI DSS and security management. He is also an author of “Security Warrior” and “PCI Compliance.” For more information on Dr. Chuvakin, check out his Gartner blog, personal blogor follow him on Twitter @anton_chuvakin.

 

More on Security Event Management

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: