We use Logsign SIEM for various tasks in our daily operations. One key use case is for forensic analysis. We also use it to monitor critical servers and generate security alerts for actions like logins, logoffs, or reboots. Additionally, we can search for specific information using the interface or IP addresses with Logsign SIEM.
The solution is used as a security monitoring solution. We are collecting logs from different security products in the infrastructure, like firewalls and EDR. They were using mainly Windows SIEM. We create groups to monitor the security and possible attacks.
We use Logsign SIEM for various tasks in our daily operations. One key use case is for forensic analysis. We also use it to monitor critical servers and generate security alerts for actions like logins, logoffs, or reboots. Additionally, we can search for specific information using the interface or IP addresses with Logsign SIEM.
The solution is used as a security monitoring solution. We are collecting logs from different security products in the infrastructure, like firewalls and EDR. They were using mainly Windows SIEM. We create groups to monitor the security and possible attacks.