SIEM selection criteria for an efficient contextual security
SIEM selection criteria for an efficient contextual security
The IT environment is on a constant evolution and it's getting more complex. Therefore, organizations started to invest on integrating SOCs (Security Operation Center) to improve its security. Several studies have been carried out on this area of SOC analysis, its elaboration and the balance between the triad PPT (Person, Process and Technology). Our aim in this paper is to propose selection criteria that will help organizations analyzing different SOCs and perhaps chose the ideal one. In this context, we have implemented three SIEM tools and compared them through the proposed criteria, in order to demonstrate how much information these criteria can provide on each SIEM tool, and thus contributing in decision making for choosing the ideal SOC for a specific environment.
- Mohammed V University Morocco
selected citations These citations are derived from selected sources.This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).14 popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.Top 10% influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).Top 10% impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.Top 10%
Citations provided by BIP!Popularity provided by BIP!