SIEM Architecture and Operational Processes UPDATE!

by Augusto Barros | February 3, 2016 | 1 Comment

My favorite Gartner GTP research document has just been updated:

Security Information and Event Management Architecture and Operational Processes

Using security information and event management requires more than just buying the right technology. Security architects must understand how to properly design and operate SIEM; this is critical to avoiding the costly mistake of an ineffective or failed deployment.

This document is a full guide to organizations planning to buy or implement a SIEM. It also has lots of content for those that have a SIEM in place but are struggling with getting the full value from it. It was published by Anton Chuvakin back in 2013, updated in 2014 and again now – with the addition of a co-author 🙂

Enjoy!

Additional Resources

Category: siem-and-log-management

Tags: siem

Augusto Barros
Research VP
3 years at Gartner
21 years IT Industry

Augusto Barros is Research VP in the Gartner for Technical Professionals (GTP) Security and Risk Management group. Read Full Bio

Thoughts on SIEM Architecture and Operational Processes UPDATE!

The new (old) SIEM papers are out! - Augusto Barros says:

November 13, 2018 at 5:42 pm

[…] Anton already mentioned here and here, our update of the big SIEM paper was turned into two new […]

Reply

Leave a Reply Cancel reply

Comments or opinions expressed on this blog are those of the individual contributors only, and do not necessarily represent the views of Gartner, Inc. or its management. Readers may copy and redistribute blog postings on other blogs, or otherwise for private, non-commercial or journalistic purposes, with attribution to Gartner. This content may not be used for any other purposes in any other formats or media. The content on this blog is provided on an "as-is" basis. Gartner shall not be liable for any damages whatsoever arising out of the content or use of this blog.

Gartner Blog Network

Augusto Barros