Security Basics: Five Resources to Help Beginners Tackle SIEM

questionsSecurity Information and Event Management (SIEM)  solutions are an essential part of the enterprise security toolkit, but they’re also some of the most complicated products on the market.

Information Security professionals, CIOs, and CISOs trying to push their organization into the modern era of SIEM need to conduct extensive research to correctly plan, assess, and deploy the right solution for their organization.

So where should you start? A typical internet search may yield some worthwhile answers, but you’ll likely be spending a lot of time wading through highly technical documents which can be nearly indecipherable to the layman.  Not to mention sponsored links to so-called ‘expert’ analysts pushing their own agendas (and products). When it comes to IT buyer’s research, sometimes simplicity is the name of the game.

With that in mind, we’ve compiled a list of the 5 great beginner’s resources for understanding and evaluating SIEM and Security Analytics solutions. These resources will explain, in plain English, what SIEM is, what it does and doesn’t do, how it works, and what you should look for in a solution.

For even more resources, check out our SIEM resource library, which features 10 top resources, and is constantly updated.

SIEM For Beginners

siem-for-beginners-1

Need a crash course on SIEM? No problem.

While SIEM-provider Alienvault naturally isn’t an impartial source, this is probably the best soup to nuts explanation of SIEM available. In this 18-page document, Alienvault’s security gurus explain what SIEM is (and isn’t) and how to get up and running with it quickly and painlessly.

View resource

SIEMplifying SMB Security Monitoring

siemplify-security-monitoring-smbs

Network security isn’t just for multinational corporations. Small and midsized businesses (SMBs) face the same threats as their enterprise counterparts, but SMBs can’t typically apply the same security professional resources to the issue. While SIEM platforms are built to scale up, the challenges to scale down an enterprise-scale SIEM for SMB are daunting and costly.

This analyst report from Frost & Sullivan puts a fine point on the intricacies changing SIEM market and the SMB-focused approach to SIEM.

View resource

The Security Information and Event Management Glossary

The Definitive Data Integration Glossary

Having a hard time keeping up with InfoSec jargon? We’ve got you covered. Solutions Review’s A to Z SIEM and Security Analytics glossary is the most complete SIEM (it’s pronounced “sim”) glossary of terms available on the web. With over 50 terms defined, this resource is sure to help keep you hip to all the latest and greatest lingo and acronyms. The SIEM market is undergoing a major evolution, making terminology and vocabulary an integral part of keeping up to date with all the changeover.

View resource

Solutions Review’s SIEM and Security Analytics Buyer’s Guide

SR-SIEM-BGSolutions Review’s SIEM and Security Analytics Buyer’s Guide is the perfect primer for selecting the right SIEM solution. The 30-page document includes a category overview, 5 questions to ask potential SIEM providers, 5 questions to ask yourself before buying, plus a capabilities reference and complete profiles of the top 24 SIEM solution providers, making it easy for companies considering SIEM implementations to compare and contrast solutions and find their best fit. By using the SIEM Buyer’s Guide in conjunction with other tools on this list, solutions-seekers will be armed with all of the materials they need to ensure selection of the best software for their company.

View resource

Gartner Magic Quadrant & Critical Capabilities

Gartner-MQ-SIEMGartner is the world’s largest information technology research and advisory company, delivering reports and market research studies that assist businesses in making product selections. Gartner is best-known for its Magic Quadrant reports, which rank solution providers based on their ability to execute and completeness of vision. Each Magic Quadrant focuses on a specific market, giving researchers a wide-angle view of the top tools available to them. Gartner currently publishes a Magic Quadrant for SIEM. Gartner also offers Critical Capabilities reports, which allow the reader to compare vendors based on specific use cases which relate to their own environments. Gartner’s Critical Capabilities report for SIEM is available here.

View resource

Jeff Edwards
Follow Jeff

Jeff Edwards

Jeff Edwards is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large.He holds a Bachelor of Arts Degree in Journalism from the University of Massachusetts Amherst, and previously worked as a reporter covering Boston City Hall.
Jeff Edwards
Follow Jeff

Leave a Reply

Your email address will not be published. Required fields are marked *