Content Aware SIEM Defined
Date: Tuesday, February 9, 2010
Time: 2:00 p.m. ET/11:00 a.m. PT
Click here to register for free.
Content Aware SIEM represents a new generation of Security Information and Event Management (SIEM) capabilities that extend the value and benefits of SIEM by providing visibility into the contents of applications, documents and protocols.
Without content awareness, a SIEM is only able to act upon the surface details provided by event logs. This limits the effectiveness of key SIEM functionalities – including threat detection, incident response, and compliance reporting – because the data being used lacks sufficient context and content to make informed, relevant decisions.
Understand the important use cases, underlying architecture and operational benefits of implementing a true Content Aware SIEM.
Anton Chuvakin, principal, Security Warrior Consulting
Eric D Knapp, VP of technology marketing, NitroSecurity