Back İnformasiya təhlükəsizliyi və hadisə idarəetməsi Azerbaijani Informació de seguretat i gestió d'esdeveniments (SIEM) Catalan Security Information and Event Management Czech Security Information and Event Management German Gestión de información y eventos de seguridad Spanish SIEM Basque سیستم مدیریت اطلاعات و رویدادهای امنیتی Persian Security information and event management French SIEM HE Security Information and Event Management Italian

Security information and event management

Security information and event management (SIEM) is a field within the field of computer security, where software products and services combine security information management (SIM) and security event management (SEM).[1][2] SIEM is the core component of any typical Security Operations Center (SOC), which is the centralized response team addressing security issues within an organization.[3]

They provide real-time analysis of security alerts generated by applications and network hardware. Vendors sell SIEM as software, as appliances, or as managed services; these products are also used to log security data and generate reports for compliance purposes.[4] The term and the initialism SIEM was coined by Mark Nicolett and Amrit Williams of Gartner in 2005.[5]

  1. ^ Gillis, A.S.; Rosencrance, L. (December 2022). "Security Information and Event Monitoring(SIEM)". TechTarget. Retrieved 25 January 2024.
  2. ^ "What is SIEM". IBM. 2024. Retrieved 25 January 2024.
  3. ^ Cinque, Marcello; Cotroneo, Domenico; Pecchia, Antonio (2018). Challenges and Directions in Security Information and Event Management (SIEM). pp. 95–99. doi:10.1109/ISSREW.2018.00-24. ISBN 978-1-5386-9443-5. Retrieved 2024-02-02.
  4. ^ "SIEM: A Market Snapshot". Dr.Dobb's Journal. 5 February 2007.
  5. ^ Williams, Amrit (2005-05-02). "Improve IT Security With Vulnerability Management". Retrieved 2016-04-09. Security information and event management (SIEM)
From Wikipedia, the free encyclopedia · View on Wikipedia

Developed by Nelliwinne