Difference between revisions of "Security Information and Event Management"
From MgmtWiki
(→References) |
(→Full Name) |
||
| Line 1: | Line 1: | ||
==Full Name== | ==Full Name== | ||
| − | + | SIEM = Security Information and Event Management | |
Originally this term was applied to data collection about the security state and events in an enterprise. It has since broadened to cover pro-active security state determination and remediation of cyber threats as well, although often under a wide variety of different names. | Originally this term was applied to data collection about the security state and events in an enterprise. It has since broadened to cover pro-active security state determination and remediation of cyber threats as well, although often under a wide variety of different names. | ||
| + | |||
| + | ==Context== | ||
| + | Web sites have long kept logs of incoming HTTP traffic to diagnose web site problems. | ||
===References=== | ===References=== | ||
Revision as of 13:30, 5 November 2021
Contents
Full Name
SIEM = Security Information and Event Management
Originally this term was applied to data collection about the security state and events in an enterprise. It has since broadened to cover pro-active security state determination and remediation of cyber threats as well, although often under a wide variety of different names.
Context
Web sites have long kept logs of incoming HTTP traffic to diagnose web site problems.
References
- Wikipedia page on SEIM
- Connect to the Intelligent Security Graph using a new API is a Microsoft variant for the Azure cloud current as of 2018-04-17.
- Collect and consume log data from your Azure resources
