Security News

SolarWinds vs. Splunk: SIEM tool comparison
2022-03-24 17:57

SolarWinds Security Event Manager is a SIEM tool that collects and analyzes security event log records to help organizations improve their security and compliance practices. SolarWinds Security Event Manager has real-time automated threat detection capabilities, with continuous system-wide threat detection, monitoring and alerting.

Exabeam vs. Splunk: SIEM tool comparison
2022-03-24 17:10

Exabeam vs. Splunk: How are these SIEM tools similar? Exabeam's SIEM solution is called Fusion SIEM, while Splunk's counterpart is Splunk Enterprise Security.

Are separate SIEMs for threat hunting a good idea?
2022-02-23 06:30

In this interview with Help Net Security, Brian Dye, CEO at Corelight, talks about the trend of creating separate SIEMs for threat hunting and why this is not achieveable for all organizations. We are seeing companies establishing separate SIEMs for threat hunting.

Why integrating SIEM tools is crucial to managing threats
2021-11-08 07:00

Business leaders and managers who have integrated SIEMs to detect, analyze and respond to organizational threats - both external and internal - are already one step ahead. SIEM tools, when integrated with other layers of security, can help flag anomalous behavior and potential issues in real time. An SIEM could immediately handle a DoS attack or, at the very least, identify compromised devices.

SIEM market size to reach $6436.2 million by 2027
2021-09-10 03:00

Major factors driving the growth of the SIEM market. The rise in concerns over IT security is expected to boost the SIEM market.

Traditional SIEM platforms no longer meet the needs of security practitioners
2021-09-07 04:00

Panther Labs released the findings from their report which surveyed over 400 security professionals who actively use a SIEM platform as part of their job, including CISOs, CIOs, CTOs, security engineers, security analysts, and security architects, to gain insight into their current SIEM challenges, frustrations, and desires when it comes to capabilities. "Insights from this report confirm what my team and I have also experienced working at companies like Amazon and Airbnb - traditional SIEM platforms no longer meet the growing needs of security practitioners who face new and emerging threats," said Jack Naglieri, CEO and founder of Panther Labs.

Rethinking SIEM requires rethinking visibility
2021-05-31 05:30

While the underlying tenets of not relying on a single vendor and taking advantage of best-of-breed expertise for each system or tool is still valid, it has become obvious that data needs to be combined to understand the complete attack surface and progression of the kill chain. SIEM was created over fifteen years ago to integrate security data for providing real-time analysis of security alerts generated by applications and network hardware.

NetWitness Cloud SIEM delivers cloud-based threat detection and response
2021-05-27 02:30

NetWitness introduced NetWitness Cloud SIEM, a cloud-based threat detection and response solution that delivers pervasive visibility, multi-faceted analytics, and automated response capabilities without the need for on-premise deployment and administration. NetWitness Cloud SIEM provides enterprises with the same rich log management, retention, reporting, and analytics services long utilized by on-premise customers for threat detection and response, but in cloud form.

Building SIEM for Today’s Threat Landscape
2021-05-21 18:25

In its early days, SIEM was shaped by new compliance drivers that dominated the era, like PCI or HIPAA. In more recent years, SIEM has evolved to handle the convergence of platforms while accelerating threat detection against sophisticated ransomware and malware. Why SIEM is an Ideal Setup, Now More Than Ever SIEM software uses analytics engines to match events against an organization's policies.

Huntsman Security unveils its SIEM 7.0 in both an enterprise and MSSP release
2021-04-15 00:15

Huntsman Security has unveiled the latest version of its SIEM Cyber Security Analytics solution in both an Enterprise and Managed Security Service Provider release. For the first time, analysts can interact with a live ATT&CK heatmap which enables SOC teams to leverage MITRE ATT&CK intelligence to improve attack data visualisation, and quickly and easily identify attack targets, origins and the security risks faced by their organisation.