1008: Your SIEM: more than a headache!

Document created by tinacostilla on Sep 14, 2012Last modified by tliu on Jul 8, 2014
Version 8Show Document
  • View in full screen mode


Your SIEM: more than a headache!

Speaker: John DiFederico, SAIC

As SAIC's managed security service provider and an eight-year HP ArcSight customer, we've been around the block—and we know that one of the greatest challenges everyone faces with a security information and event management (SIEM) system is managing the flood of data that comes into it. Attend this session and learn from SAIC's real-world experience how to build a use-case development life cycle that brings results. We’ll tell you how to effectively leverage categorization, severity, and priority; how to leverage correlation's strengths and use dashboards for more than SOC flare; and how to make sure management knows what the SIEM is doing for them.