As IT environments grow increasingly complex and difficult to manage, the role of security information and event management (SIEM) technology has become more important than ever before. From attaining and maintaining compliance to providing operations support, detecting zero-day threats and allowing for rapid forensics investigations, SIEM has literally become a central nervous system for gathering and generating IT intelligence.
Thursday, 6/28 at 11am PT, join us and give your perspective on SIEM technology. Members of our McAfee SIEM team will also be providing their input and answering questions during the chat.
We want to know: From your perspective, what is true situational awareness, and how can technology provide situational awareness for security? What do you believe are the greatest threats – insider or outsider, and can organizations really use a SIEM to detect and respond to real time threats?
What are some best practices or pitfalls to avoid when using a SIEM to detect threat activity, investigate incidents and get to the root cause? And as many security vendors position themselves in the sphere of Big Data, what is your opinion on what SIEM can or cannot accomplish in this space?
Logistics: How do I participate in #SecChat?