Evaluating SIEM RADAR: A New Metric for Enhancing Regulatory and Compliance Efficiency
[ X ]
Tarih
2024
Yazarlar
Dergi Başlığı
Dergi ISSN
Cilt Başlığı
Yayıncı
Acad Conferences Ltd
Erişim Hakkı
info:eu-repo/semantics/closedAccess
Özet
This research paper explores the modern cybersecurity landscape, particularly focusing on the risks associated with SIEM products and SOC services. It underscores the critical issue of insufficient logging practices that compromise an organization's threat detection and response capabilities, thereby increasing the risk of security breaches. The importance of real-time log retention to address evolving digital threats is highlighted, with recommended retention periods from authoritative sources such as the White House, OWASP, MITRE, and SANS. The paper also addresses scalability challenges due to the exponential growth of log data, the necessity for effective correlation within SIEM systems for timely threat detection, and the importance of compliance with various standards and regulations to enhance security. This comprehensive analysis provides valuable insights for cybersecurity professionals, organizations, and policymakers.
Açıklama
23rd European Conference on Cyber Warfare and Security -- JUN 27-28, 2024 -- University Of Jyvskyl, Jyvaeskylae, FINLAND
Anahtar Kelimeler
Security Information and Event Management; Log; SIEM; SOC; Cyber Security; Insufficient logging; Live Log; Hot Log; Log Loss; Correlation
Kaynak
Proceedings of The 23rd European Conference on Cyber Warfare and Security, Eccws 2024
WoS Q Değeri
N/A
Scopus Q Değeri
N/A
Cilt
23
