Assignment
Overview In order to address emerging threats and provide effective countermeasures, security teams must have visibility into their environment. One way of doing this is reviewing logs and data and making decisions based on the interpreted data.
Task
Each student will create a research paper that should provide insight and substantive commentary on the topic of Security Information and Event Management (SIEM). The wordcount for this assignment is between 600-1000 words (for content only). Be sure to submit original work only.
This assignment will contain a cover page and the following:
1. Introduction - The importance of security teams having awareness and visibility into their environment
2. Define what a Security Information and Event Management (SIEM) is how and how it helps security teams.
3. Provide two advantages of having a SIEM versus using a basic syslog server
4. Given a brief example of a popular SIEM currently being used today and describe some of its key features.
5. Include a summary.
The response should include a reference list. Double-space, using Times New Roman 12 pnt font, one-inch margins, and APA style of writing and citations.