SIEM (pronounced like “sim” from “simulation”), which stands for Security Information and Event Management, was conceived of as primarily a log aggregation device. However, a SIEM’s primary capabilities are to provide threat detection, better enable incident investigation, and speed up your incident response time, while also giving you a unified, holistic view of your infrastructure. […]… Read More

The post WHAT IS A SIEM, AND WHY SHOULD YOU HAVE ONE? appeared first on The State of Security.

By admin