SIEM

A Journey of Elastic SIEM: Getting Started through Threat Analysis Part 1

Apr 28, 2020 By Elastic In Elastic

Calling all security enthusiasts! Many of us are now facing similar challenges working from home. Introduced in 7.2, Elastic SIEM is a great way to provide security analytics and monitoring capabilities to small businesses and homes with limited time and resources. In this three-part meetup series we will take you on a journey from zero to hero, getting started with the Elastic SIEM to becoming a threat hunter.

View Video

Elastic

Read more about A Journey of Elastic SIEM: Getting Started through Threat Analysis Part 1

5 Reasons You Should Start Analyzing Your Logs

Apr 27, 2020 By SolarWinds In SolarWinds

In IT environments, all software applications and systems produce logs with varying levels of details or context about different events. These log files are automatically generated, and you can see them as a time-stamped record of events. Traditionally, organizations maintained logs locally or in a self-hosted setup. This was done primarily to meet various compliance mandates.

Read Post

SolarWinds

Read more about 5 Reasons You Should Start Analyzing Your Logs

Integration and Shipping Okta Logs to Logz.io Cloud SIEM

Apr 23, 2020 By Gedalyah Reback In logz.io

Company security usually depends on your ability to come up with a diverse set of passwords and then manage them. Remembering all of them is considered a tad too difficult for most mere mortals, so a number of password storage apps have emerged. But they too have to be secured, and ultimately results in inefficient access and flawed security. Single-sign on (SSO) is still preferred, but to make it effective, companies like Okta have to secure integration across a number of apps.

Read Post

logz.io

Read more about Integration and Shipping Okta Logs to Logz.io Cloud SIEM

Best Log Management Tools in 2020, and How to Select One for Your Organization

Apr 20, 2020 By SolarWinds In SolarWinds

In modern digital environments, logs are present everywhere. From networking devices, servers, and databases, to operating systems, cloud-based services, and applications, every component produces some form of digital records of events. These records or logs provide an audit trail for Security Information Event Management (SIEM) and help in performance monitoring of servers and applications.

Read Post

SolarWinds

Read more about Best Log Management Tools in 2020, and How to Select One for Your Organization

Generating MITRE ATT&CK® signals in Elastic SIEM: Sysmon data

Apr 15, 2020 By Craig Chamberlain In Elastic

Many mature security teams look to the MITRE ATT&CK® matrix to help improve their understanding of attacker tactics, techniques, and procedures (TTPs) and to better understand their own capabilities relative to these common adversarial approaches. With the release of Elastic Security 7.6, Elastic SIEM saw 92 detection rules for threat hunting and security analytics aligned to ATT&CK.

Read Post

Elastic

Read more about Generating MITRE ATT&CK® signals in Elastic SIEM: Sysmon data

Elastic SIEM is free and open for security analysts everywhere

Mar 26, 2020 By Elastic Security Team In Elastic

Security teams must protect attack surfaces that are becoming bigger and more distributed due to the growth of remote work, cloud infrastructure, and other dynamics. These teams understand that meeting this challenge at scale requires the successful incorporation of the appropriate technology into their security operations program.

Read Post

Elastic

Read more about Elastic SIEM is free and open for security analysts everywhere

The Cost of Doing SIEM & Security Analytics on Your Own

Mar 24, 2020 By Bruno Amaro Almeida In logz.io

Security information and event management, or SIEM, has become part of the vocabulary of every organization. SIEM solutions gather events from multiple systems and analyze them—both in real time and through historical data. SIEM costs—as cyber security costs in general—can be high, but there is a tradeoff if you opt for the FOSS route (free and open source solutions).

Read Post

logz.io

Read more about The Cost of Doing SIEM & Security Analytics on Your Own

Covid-19: The importance of data & how it relates to Network Security

Mar 18, 2020 By Ingmar Koecher In EventSentry

When China built an entire emergency hospital in a matter of days in Wuhan – a city about the size of NYC that most of us had never heard of – the world was watching with concern, but somehow still expected and hoped that the crisis would somehow remain contained to China, or at least Asia. People in Europe and the U.S.

Read Post

EventSentry

Read more about Covid-19: The importance of data & how it relates to Network Security

How SIEM is evolving in 2020

Mar 18, 2020 By Bruno Amaro Almeida In Coralogix

The evolution of Security Information and Event Management (SIEM) is deeply intertwined with cloud computing, both in terms of technological breakthroughs the cloud provided and from its inherent security challenges. With the rise of cloud computing, we no longer rely on long-lived resources. An ephemeral infrastructure obscures the identity of the components and, even if you do have the visibility it doesn’t necessarily mean you can comprehend the meaning behind the components.

Read Post