Tag: Security Information and Event Management (SIEM)

At the May 2018 IBM Security Summit in London, industry experts discussed how organizations could transform their business by developing a formal strategy for cloud security.

When Lincoln Healthcare experiences a watering hole attack, security operations center (SOC) director Malcolm Gerhard is tasked with developing a swift cybersecurity incident response. Will he succeed?

Without cognitive insights, a security intelligence platform does little to ease the pressure on short-staffed security operations center (SOC) teams to analyze massive volumes of threat data.

Collaborative defense connects an organization's people, processes and technology to deliver improved security through open integrations, threat intelligence sharing and digital transformation.

Designing a security operations center (SOC) is not as simple as setting and forgetting an SIEM solution. Security leaders must consider human factors, business needs, budgetary constraints and more.

Organizations need a privileged account management (PAM) solution that integrates seamlessly with the existing security environment — and helps security teams enforce least privilege policies.

Security teams need a single, scalable cloud solution that integrates seamlessly with a SIEM platform to identify shadow IT — and cut through the fog of cloud security.

Emerging mobile and cloud-based technologies present many new challenges pertaining to sporting event cybersecurity.

To get the most out of an SIEM solution, analysts must properly configure their log sources to generate alerts when they stop reporting for certain periods of time, depending on their priority level.

Security analysts can maximize the effectiveness of their incident response capabilities by integrating disparate tools such as database firewalls and UBA with a strong SIEM solution.