Joel is an internationally recognized expert in the areas of security, networking and messaging. Follow him on X (formerly Twitter) @joelsnyder. Security information and event management tools are ...

Looking at log files generated by IT infrastructure software is one of the less exciting parts of an IT administrator’s job, but those log files determine the health of the system and, significantly, ...

Each of these centralized security solutions has its own processes and capabilities, but there’s also some overlap among the three, which can cause confusion when determining the right formula for an ...

Sophos’ acquisition of Secureworks will give the cybersecurity vendor a “much better competency” on serving the enterprise segment while also adding new capabilities in areas such as security ...

Security information and event management (SIEM) is one of the most well-established categories of security software, having first been introduced about 20 years ago. Nevertheless, very little has ...

There is a lot of pressure on organisations these days to make better use of their system logs. Logs help ward off dangers by offering real-time alerts, they provide system troubleshooting or forensic ...

Security Incident and Event Management (SIEM) is an essential tool for the Security Operations Center (SOC), monitoring the network for suspicious activity and alerting the team to potential issues.

Doug Bonderud is an award-winning writer capable of bridging the gap between complex and conversational across technology, innovation and the human condition. Security information and event management ...

The technology industry in general — and cybersecurity in particular — is awash with jargon, abbreviations and acronyms. One of the acronyms currently gaining traction is XDR (extended detection and ...

At issue: The CIO wants to know the ROI on SIEM before acquiescing to expanding the deployment. Action plan: Find new ways to derive value from SIEM, including in the financial system and the DMZ, one ...