Security Information Event Management
Description
Topics Covered
- What is a SIEM?
- Legacy SIEM vs. Modern SIEM
- Log data aggregation/deduplication
- Log forensics
- Event correlation and alerting
- Real-time alerting
- File integrity monitoring
- Log analysis with dashboards
- Privileged user monitoring Object access auditing
- Compliance audit reporting
- Archiving log data
- SIEM Tools: Graylog, ELK, Splunk
Topics for this course
1 Lessons