Not even a known acronym a few short years ago, SIEM (security information and event management) is now an important, named function or department at many business-to-business (B2B) and consumer companies and government organizations. It is top of mind for many CSOs (chief security officers) and CISOs (chief information security officers), but it affects many others in IT, including mainframers.
Every week the news reports about new “hacks” of companies, individuals and government organizations continue. The frequent attacks underscore the importance (and need for resourcing) of defensive and proactive countermeasures. The collection, management and analysis of both security information and security events become critical, and this new category of SIEM IT solutions to manage it gains notoriety. SIEM is both an IT function and a category of solutions and the fall (or autumn to some) has become an important time for this rapidly evolving sector and function (more on why later), so now is as good a time as any for you to better understand it.
In this article from Enterprise Executive, you’ll learn what SIEM is, why SIEM is relevant to you, and the state of the function and related areas.