The white paper identifies key challenges in the development of solutions for data sources and provides insights into how to deal with these challenges. In particular, it address the selection of sources of audit log data, selection of supported audit events, identification of sources for missing data, original logs concept and globalization issues. The white paper is based on ScienceSoft’
“During the last few years we at ScienceSoft have developed over a hundred of TSIEM Event Sources. We are happy to share our expertise with anyone facing challenges similar to the ones experienced by us”, commented ScienceSoft Senior SIEM consultant Alexey Zhurba.
The use of SIEM solutions is undergoing rapid growth. According to Gartner research, the number of inquiry calls from SIEM end users has been growing by 20-35% and even more each year. In 2010, the security software market grew more than 11%, exceeding $16.5 billion, 20% of which was a share of SIEM products alone.
Security Information and Event Manager (SIEM) is a merger of two previously separated product types: Security Information Manager (SIM) and Security Event Manager (SEM). SIEM provides real-time comprehensive analysis of security audit-related data gathered from various data sources, such as operating systems, applications, network devices etc. Analyzed data is presented in the form of reports for compliance and threat management purposes.
# # #
ScienceSoft Inc. is an IT services providers in Eastern Europe. Founded in 1989, ScienceSoft is based in Minsk, Belarus, it operates an EU subsidiary in Helsinki, Finland. The company’s highlights include 250 experienced professionals, ISO 9001 certified processes and over 20 years of market experience. ScienceSoft has the status of an Oracle Partner and the status of an IBM Core Supplier. The company has attained a number of Microsoft competences. ScienceSoft has been a member of Belarus Hi-Tech Park since 2006.
ScienceSoft service offerings embrace custom software development, mobile application development, Microsoft technology and business platform consulting, Oracle technology consulting, software testing, dedicated teams, technical support as well as consulting in the area of security information and event management.