The Operational Role of Security Information and Event Management Systems

被引:86
|
作者
Bhatt, Sandeep [1 ]
Manadhata, Pratyusa K. [1 ]
Zomlot, Loai [1 ]
机构
[1] Hewlett Packard Labs, Palo Alto, CA 94304 USA
来源
IEEE SECURITY & PRIVACY | 2014年 / 12卷 / 05期
关键词
INTRUSION DETECTION; ALERT CORRELATION;
D O I
10.1109/MSP.2014.103
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
An integral part of enterprise computer security incident response teams, a security operations center (SOC) monitors security incidents in real time. Security incident and event management systems play a critical role in SOCs-collecting, normalizing, storing, and correlating events to identify malicious activities-but face operational challenges.
引用
收藏
页码:35 / 41
页数:7
相关论文
共 50 条
  • [31] Special Issue on Information Systems: Security and Management
    Kesswani, Nishtha
    [J]. JOURNAL OF CASES ON INFORMATION TECHNOLOGY, 2019, 21 (03) : V - VI
  • [32] EDO4SIEM - A PROCEDURE MODEL FOR THE IMPLEMENTATION OF SECURITY INFORMATION AND EVENT MANAGEMENT SYSTEMS IN ORGANISATIONS
    Rosenberg, Maximilian
    Schneider, Bettina
    Scherb, Christopher
    Asprion, Petra Maria
    [J]. IADIS-INTERNATIONAL JOURNAL ON COMPUTER SCIENCE AND INFORMATION SYSTEMS, 2024, 19 (01): : 31 - 47
  • [33] On the Role of Information Sharing in the Security of Interconnected Systems
    Anguluri, Rajasekhar
    Katewa, Vaibhav
    Pasqualetti, Fabio
    [J]. 2018 ASIA-PACIFIC SIGNAL AND INFORMATION PROCESSING ASSOCIATION ANNUAL SUMMIT AND CONFERENCE (APSIPA ASC), 2018, : 1168 - 1173
  • [34] Security of Data and Information in Vessel Traffic Management Information Systems
    Ristov, Panco
    Mrvica, Ante
    Komadina, Pavao
    [J]. NASE MORE, 2016, 63 (01): : 1 - 8
  • [35] A novel security information and event management system for enhancing cyber security in a hydroelectric dam
    Di Sarno, Cesario
    Garofalo, Alessia
    Matteucci, Ilaria
    Vallini, Marco
    [J]. INTERNATIONAL JOURNAL OF CRITICAL INFRASTRUCTURE PROTECTION, 2016, 13 : 39 - 51
  • [36] Strategic Role of Human Resource Management in Information Security Management
    Wipawayangkool, Kamphol
    [J]. AMCIS 2010 PROCEEDINGS, 2010,
  • [37] Organizational Information Security Management for Sustainable Information Systems: An Unethical Employee Information Security Behavior Perspective
    Chu, Amanda M. Y.
    So, Mike K. P.
    [J]. SUSTAINABILITY, 2020, 12 (08)
  • [38] SIEMA: Bringing Advanced Analytics to Legacy Security Information and Event Management
    Najafi, Pejman
    Cheng, Feng
    Meinel, Christoph
    [J]. SECURITY AND PRIVACY IN COMMUNICATION NETWORKS, SECURECOMM 2021, PT I, 2021, 398 : 25 - 43
  • [39] GraphBAD: A general technique for anomaly detection in security information and event management
    Parkinson, Simon
    Vallati, Mauro
    Crampton, Andrew
    Sohrabi, Shirin
    [J]. CONCURRENCY AND COMPUTATION-PRACTICE & EXPERIENCE, 2018, 30 (16):
  • [40] SPEAR SIEM: A Security Information and Event Management system for the Smart Grid
    Radoglou-Grammatikis, Panagiotis
    Sarigiannidis, Panagiotis
    Iturbe, Eider
    Rios, Erkuden
    Martinez, Saturnino
    Sarigiannidis, Antonios
    Eftathopoulos, Georgios
    Spyridis, Yannis
    Sesis, Achilleas
    Vakakis, Nikolaos
    Tzovaras, Dimitrios
    Kafetzakis, Emmanouil
    Giannoulakis, Ioannis
    Tzifas, Michalis
    Giannakoulias, Alkiviadis
    Angelopoulos, Michail
    Ramos, Francisco
    [J]. COMPUTER NETWORKS, 2021, 193
12345