Build vs. Buy: Why you should not build your own SIEM

Presented by

Peter Varhol, Technology Evangelist, Gurucul

About this talk

The concept of the SIEM is pretty straightforward. You collect data from various system and network log files, store that data, and provide ways to analyze it to assess the likelihood of an attack. Some organization spec that out in a little more detail, and resolve to build their own SIEM. This webinar explains why building your own isn’t a good idea. It discusses the details, risk analysis, and remediation provided by most commercial SIEMs, and how difficult it would be to replicate these features in-house. It describes the benefits that a commercial SIEM brings to an enterprise as an integral part of a comprehensive cybersecurity strategy. Last, it describes how a commercial SIEM can keep you up to date on both threats and analytics. Attendees will learn: 1. How a SIEM will provide the foundation of any enterprise cybersecurity strategy. 2. Why it’s difficult to replicate SIEM features in a custom enterprise application. 3. How a commercial SIEM keeps your organization up to date with the latest analytics and risk features.

Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (58)
Subscribers (2158)
Gurucul is transforming enterprise security with user behavior based machine learning and predictive analytics. Using identity to monitor for threats, Gurucul provides Actionable Risk Intelligence™ to protect against targeted and under-the-radar attacks. Gurucul is able to proactively detect, prevent, and deter advanced insider threats, fraud and external threats to system accounts and devices using self-learning, behavioral anomaly detection algorithms. Gurucul is backed by an advisory board comprised of Fortune 500 CISOs, and world renowned-experts in government intelligence and cyber security. The company was founded by seasoned entrepreneurs with a proven track record of introducing industry changing enterprise security solutions. Our mission is to help organizations protect their intellectual property, regulated information, and brand reputation from insider threats and sophisticated external intrusions.