Security Information and Event Management (SIEM)

Accelerating security outcomes with a cloud-native SIEM

Posted on December 14, 2023 by Chris Meenan

As organizations modernize their IT infrastructure and increase adoption of cloud services, security teams face new challenges in terms of staffing, budgets and technologies. To keep pace, security programs must evolve to secure modern IT environments against fast-evolving threats with constrained resources. This will require rethinking traditional security strategies and focusing investments on capabilities like […]

The post Accelerating security outcomes with a cloud-native SIEM appeared first on Security Intelligence.

Continue reading Accelerating security outcomes with a cloud-native SIEM→

How I got started: SIEM engineer

Posted on September 28, 2023 by Mark Stone

As careers in cybersecurity become increasingly more specialized, Security Information and Event Management (SIEM) engineers are playing a more prominent role. These professionals are like forensic specialists but are also on the front lines protecting sensitive information from the relentless onslaught of cyber threats. SIEM engineers meticulously monitor, analyze and manage security events and incidents […]

The post How I got started: SIEM engineer appeared first on Security Intelligence.

Continue reading How I got started: SIEM engineer→

The future of SIEM: Embracing predictive analytics

Posted on August 21, 2023 by Joy Wang

Security information and event management (SIEM) is a crucial tool that offers real-time monitoring and analysis of security-related events as well as tracking and logging of security data for compliance or auditing purposes. SIEM plays an important role in identifying security incidents and helping IT and security teams respond effectively. However, as threats become more […]

The post The future of SIEM: Embracing predictive analytics appeared first on Security Intelligence.

Continue reading The future of SIEM: Embracing predictive analytics→

The evolution of security analyst experience

Posted on August 7, 2023 by Sue Poremba

Cloud computing and IT modernization have created a more complex threat landscape, and security analysts are struggling to keep up. Security operations centers (SOC) are in need of an upgrade. The proliferation of cloud and hybrid environments simply creates more to protect, said Andie Schroeder, program director of product management at IBM Security, at RSAC […]

The post The evolution of security analyst experience appeared first on Security Intelligence.

Continue reading The evolution of security analyst experience→

QRadar SIEM reduces incident investigation time by 90%

Posted on July 26, 2023 by Jonathan Reed

Rising risk, long incident remediation times and high security costs — these things keep security professionals up at night. But SIEM can make a positive difference in all three, according to a recent report. Security information and event management (SIEM) frameworks help enterprises monitor, manage and mitigate the impact of cyberattacks. With the rising number […]

The post QRadar SIEM reduces incident investigation time by 90% appeared first on Security Intelligence.

Continue reading QRadar SIEM reduces incident investigation time by 90%→

SIEM and SOAR in 2023: Key trends and new changes

Posted on July 5, 2023 by Doug Bonderud

Security information and event management (SIEM) systems remain a key component of security operations centers (SOCs). Security orchestration, automation, and response (SOAR) frameworks, meanwhile, have emerged to fill the gap in these capabilities left by many SIEM systems. But as many companies have begun reaching the limits of SIEM and SOAR systems over the last […]

The post SIEM and SOAR in 2023: Key trends and new changes appeared first on Security Intelligence.

Continue reading SIEM and SOAR in 2023: Key trends and new changes→

A History of Ransomware and the Cybersecurity Ecosystem

Posted on June 19, 2023 by Ronda Swaney

The number and complexity of cybersecurity tools have grown at a dizzying pace in recent decades. As cyber threats like ransomware became more numerous and complex, antivirus and threat management tools expanded to meet these challenges. Security experts now often find themselves with too many choices and a market too rich with options. Choosing, running […]

The post A History of Ransomware and the Cybersecurity Ecosystem appeared first on Security Intelligence.

Continue reading A History of Ransomware and the Cybersecurity Ecosystem→

SOCs Spend 32% of the Day On Incidents That Pose No Threat

Posted on June 6, 2023 by Josh Nadeau

When it comes to the first line of defense for any company, its Security Operations Center (SOC) is an essential component. A SOC is a dedicated team of professionals who monitor networks and systems for potential threats, provide analysis of detected issues and take the necessary actions to remediate any risks they uncover. Unfortunately, SOC […]

The post SOCs Spend 32% of the Day On Incidents That Pose No Threat appeared first on Security Intelligence.

Continue reading SOCs Spend 32% of the Day On Incidents That Pose No Threat→

Detecting Insider Threats: Leverage User Behavior Analytics

Posted on June 2, 2023 by Joy Wang

Employees often play an unwitting role in many security incidents, from accidental data breaches to intentional malicious attacks. Unfortunately, most organizations don’t have the right protocols and processes to identify potential risks posed by their workforce. Based on a survey conducted by SANS Institute, 35% of respondents said they lack visibility into insider threats, while 30% […]

The post Detecting Insider Threats: Leverage User Behavior Analytics appeared first on Security Intelligence.

Continue reading Detecting Insider Threats: Leverage User Behavior Analytics→

How Zero Trust Changed the Course of Cybersecurity

Posted on April 17, 2023 by Jonathan Reed

For decades, the IT industry relied on perimeter security to safeguard critical digital assets. Firewalls and other network-based tools monitored and validated network access. However, the shift towards digital transformation and hybrid cloud infrastructure has made these traditional security methods inadequate. Clearly, the perimeter no longer exists. Then the pandemic turned the gradual digital transition […]

The post How Zero Trust Changed the Course of Cybersecurity appeared first on Security Intelligence.

Continue reading How Zero Trust Changed the Course of Cybersecurity→