security information and event management (SIEM)

GPTKB entity

Statements (39)
Predicate Object
gptkbp:instanceOf gptkb:security
gptkbp:abbreviation SIEM
gptkbp:category gptkb:software
cybersecurity
gptkbp:component gptkb:security_operations_center_(SOC)
gptkbp:deployment gptkb:cloud_service
on-premises software
hybrid solution
https://www.w3.org/2000/01/rdf-schema#label security information and event management (SIEM)
gptkbp:includes security event management (SEM)
security information management (SIM)
gptkbp:introducedIn 2000s
gptkbp:marketLeaders gptkb:IBM_QRadar
gptkb:Splunk
gptkb:LogRhythm
gptkb:ArcSight
gptkb:Microsoft_Sentinel
gptkbp:relatedTo compliance
log management
threat intelligence
intrusion prevention system (IPS)
intrusion detection system (IDS)
gptkbp:supports data aggregation
forensics
retention
alerting
compliance management
dashboarding
event correlation
gptkbp:usedFor compliance reporting
log management
incident detection
real-time analysis of security alerts
security event correlation
gptkbp:bfsParent gptkb:Zero_Trust_Security
gptkb:Hugh_Njemanze
gptkb:security_operations_center_(SOC)
gptkb:user_and_entity_behavior_analytics_(UEBA)
gptkbp:bfsLayer 7