it:ad:System Information and Event Management (SIEM) System / IT:AD (IT App Development) / IT [Notes]

it:ad:siem:home

(UP)
See:
- IT:AD:SPLUNK

Summary

Security Information and Event Management System can be used to gather and analyse the data flows from multiple systems.

SPLUNK
SIEM:
- Retention and Compliance
  - Log Retention
  - Regulatory Compliance
  - Archive
- Dashboards
  - Interactive
  - Visualisation
  - Analytics
- Reporting/Compliance
  - Built In Reporting
- Alerting
  - If Alert then Action…
- Aggregation/Correlation
  - Single System
  - Robust Search Tools
    - Correlation Engine
    - Log Integrity

/home/skysigal/public_html/data/pages/it/ad/siem/home.txt
Last modified: 2023/11/04 03:31
by 127.0.0.1