Security Information and Event Management (SIEM)
GPTKB entity
Statements (50)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
Security technology
|
| gptkbp:abbreviation |
SIEM
|
| gptkbp:analyzes |
log data
security events |
| gptkbp:category |
cybersecurity
security analytics forensics incident response threat detection security monitoring IT operations log analysis compliance management enterprise security software |
| gptkbp:component |
cybersecurity infrastructure
|
| gptkbp:dataCollected |
servers
network devices security appliances applications |
| gptkbp:enables |
forensic analysis
threat intelligence integration compliance auditing |
| gptkbp:example |
gptkb:IBM_QRadar
gptkb:Splunk gptkb:LogRhythm gptkb:ArcSight gptkb:Microsoft_Sentinel |
| https://www.w3.org/2000/01/rdf-schema#label |
Security Information and Event Management (SIEM)
|
| gptkbp:introducedIn |
early 2000s
|
| gptkbp:marketedAs |
cybersecurity vendors
|
| gptkbp:provides |
gptkb:website
reporting alerting centralized view of security alerts correlation of security events |
| gptkbp:relatedTo |
Security Event Management (SEM)
Security Information Management (SIM) |
| gptkbp:supports |
gptkb:legislation
gptkb:HIPAA gptkb:PCI_DSS gptkb:SOX gptkb:GDPR |
| gptkbp:usedFor |
compliance reporting
incident response threat detection log management real-time analysis of security alerts |
| gptkbp:bfsParent |
gptkb:Exabeam
gptkb:Extended_Detection_and_Response_(XDR) |
| gptkbp:bfsLayer |
7
|