Project Management

What FIPS and Common Criteria Certifications Mean to SIEM: Understanding the Relevance of Security Standards in the Context of a Security Information Management Systems

Date Added: Apr 2009
Format: PDF

By definition, Security Information & Event Management systems (SIEMs) are used for the collection of events and logs pertaining to sensitive or protected information. A SIEM attempts to collect as much information as possible to determine security threats, and to help mitigate and remediate those threats by making as much forensic evidence available for analysis as is possible. Logically, SIEM systems represent the nexus of protected information, because evidence pertaining to that information - and in many cases the protected information itself - may be stored and made available by the SIEM.