Blog post

Updated SIEM RFP Toolkit Out!

By Anton Chuvakin | April 11, 2013 | 2 Comments


Here is a useful resource on SIEM that has been recently updated by Mark Nicolett and Kelly Kavanagh: SIEM RFT Toolkit.

“Organizations that need to improve their log management, compliance reporting or real-time security event management capabilities can benefit from a security information and event management (SIEM) technology deployment. The SIEM project team should engage compliance stakeholders, security operations, network operations, and other groups that will ultimately use SIEM reports and monitoring functions. The SIEM project team can then produce an RFP that translates the organization’s needs into a list of requirements that the SIEM technology solution must meet.”

It goes without saying that this is for you to CUSTOMIZE (!!!) – NOT to use verbatim!

BTW, according to Gartner recent research, “Data loss prevention and SIEM were the fastest-growing segments” of an overall security markets.

Comments are closed


  • Patrick says:

    What about technology like ObserveIT that deals all those apps that do not produce logs?

  • Ok, what about them?