19 lines
485 B
Markdown
19 lines
485 B
Markdown
# Security Information and Event Management (SIEM)
|
|
|
|
* [Varonis](https://www.varonis.com/blog/what-is-siem/)
|
|
|
|
* Threat detection
|
|
* Investigation
|
|
* Time to respond
|
|
* Some other SIEM features:
|
|
* Basic security monitoring
|
|
* Advanced threat detection
|
|
* Forensics & incident response
|
|
* Log collection
|
|
* Normalization
|
|
* Notifications and alerts
|
|
* Security incident detection
|
|
* Threat response workflow
|
|
|
|
|