Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

SIEM

The latest News and Information on Security Incident and Event Management.

AlienVault Expands USM Anywhere to Include Endpoint Detection and Response Capabilities

SAN MATEO, Calif. – July 31, 2018 – AlienVault®, the leading provider of Unified Security Management® (USM) and crowdsourced threat intelligence, today announced the general availability of Endpoint Detection and Response (EDR) capabilities in USM Anywhere™. Visit AlienVault’s Black Hat booth #528 from August 7-9 to see a demonstration of endpoint security capabilities in USM Anywhere.

EventSentry v3.5 Released: Windows Process Monitoring to the Max, Registry Tracking, Tags & More

EventSentry v3.5 continues to increase visibility into networks with additional vantage points, making it easier for EventSentry users to reduce their attack surface as well as discover anomalies.

Tune your SIEM to be GDPR Compliant - 5 Steps to Take

The most hyped law on data protection has finally come into effect on May 25, 2018. Passed by the European Parliament on April 14, 2016, it is already being touted as the most stringent data protection law across the world. Prior to GDPR, Data Protection Directive of 1995 was applicable which now stands repealed. Apart from the businesses incorporated in the European Union, GDPR also applies to businesses incorporate outside the European Union but are dealing with the data of EU residents.

How Can SIEM solution Help Being Compliant With the GDPR?

SIEM solution, as one of the best cybersecurity solutions, can help organizations being compliant with the GDPR strict requirements. As a matter of fact, GDPR compliance is indispensable for enterprises managing the data of European Union (EU) citizens because noncompliant organizations have to bear the brunt of huge penalties in terms of massive fine and reputational damage.

Ten Cool Things Your SIEM Should Do

A Security Information and Event Management (SIEM) is a security solution usedto identify, record, monitor, and analyze security events and incidents within a real-time IT environment. SIEM also centralize all the data. In addition, an effective SIEM solution must have certain capabilities to prevent colossal Data Breaches. The following sections delve into ten things that your SIEM solution should do.

SIEM Implementation Strategies

A SIEM or Security Information and Event Management is only as good as its logs. People can think of logs as the fuel for the engine. Without logs (log management), the SIEM will never be useful. Selecting the right types of logs to ingest in your SIEM is a complex undertaking. On one hand, it is easy to say “Log it all!” but you will inevitably reach the glass ceiling of your SIEM, which will either be your licensing or you will cap the performance of the SIEM hardware.