SIEM – Security Incident and Event Management
The solution collects and stores logs and events from servers, infrastructure devices and security systems. Analyses them in realtime, detects indicators of ongoing attacks and notifies the security specialists or performs automated remediation. SIEM is an integral part of every Security Operations Center (SOC). This type of solutions offer extensive support for integration with other information security solutions.