“Organizations that need to improve their log management, compliance reporting or real-time security event management capabilities can benefit from a security information and event management (SIEM) technology deployment. The SIEM project team should engage compliance stakeholders, security operations, network operations, and other groups that will ultimately use SIEM reports and monitoring functions. The SIEM project team can then produce an RFP that translates the organization’s needs into a list of requirements that the SIEM technology solution must meet.”
It goes without saying that this is for you to CUSTOMIZE (!!!) – NOT to use verbatim!
BTW, according to Gartner recent research, “Data loss prevention and SIEM were the fastest-growing segments” of an overall security markets.
Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.