There are three major benefits to be derived from log and event management solutions (sometimes referred to as SIEM, security information and event management). In the first case, these solutions provide real-time identification and alerting against external and internal security threats. Secondly, they provide compliance monitoring and reporting and, thirdly, they offer forensic environments for root cause analysis and fraud detection.
There are a large number of log and event management solutions within the market—more than 20—and they by no means all offer comparable capabilities. The sorts of features to look for include: integration, real-time analysis, forensics and compliance monitoring, infrastructure, performance and scalability.
To download this paper you must be logged in.