Security Information and Event Management (SIEM)
GPTKB entity
Statements (50)
Predicate | Object |
---|---|
gptkbp:instanceOf |
Security technology
|
gptkbp:abbreviation |
SIEM
|
gptkbp:analyzes |
log data
security events |
gptkbp:category |
cybersecurity
security analytics forensics incident response threat detection security monitoring IT operations log analysis compliance management enterprise security software |
gptkbp:component |
cybersecurity infrastructure
|
gptkbp:dataCollected |
servers
network devices security appliances applications |
gptkbp:enables |
forensic analysis
threat intelligence integration compliance auditing |
gptkbp:example |
gptkb:IBM_QRadar
gptkb:Splunk gptkb:LogRhythm gptkb:ArcSight gptkb:Microsoft_Sentinel |
https://www.w3.org/2000/01/rdf-schema#label |
Security Information and Event Management (SIEM)
|
gptkbp:introducedIn |
early 2000s
|
gptkbp:marketedAs |
cybersecurity vendors
|
gptkbp:provides |
gptkb:website
reporting alerting centralized view of security alerts correlation of security events |
gptkbp:relatedTo |
Security Event Management (SEM)
Security Information Management (SIM) |
gptkbp:supports |
gptkb:legislation
gptkb:HIPAA gptkb:PCI_DSS gptkb:SOX gptkb:GDPR |
gptkbp:usedFor |
compliance reporting
incident response threat detection log management real-time analysis of security alerts |
gptkbp:bfsParent |
gptkb:Exabeam
gptkb:Extended_Detection_and_Response_(XDR) |
gptkbp:bfsLayer |
7
|