Security information and event management (SIEM) has been a cornerstone of cybersecurity for years, but its future as a stand-alone product might well be in question. As advanced threat intelligence platforms, search engines, and other advanced tools come to market, we could be seeing a consolidation in how tools are packaged and marketed. This webcast will examine the following:
- The motivations behind a security overhaul
- SIEM as a core part of a SOC (security operations center)
- Security without SIEM
- Alerts versus actionable intel
- The role of a SOC analyst
- What makes up “a better SIEM?”