Badges
40 Points
7 Years
User Activity
Over 6 years ago
Answered a question: What Solution for SIEM is Best To Be NIST 800-171 Compliant?
As David mentioned above, there are many good SIEM products available. The challenge is, in the environment as described, is getting the value out of it if you run it yourself. There is a lot of overhead when it comes to running a SIEM, especially for the uninitiated and…
Almost 7 years ago
Answered a question: Which would you recommend to your boss, IBM QRadar or Splunk?
Splunk is a great tool that can be used for a lot of business analysis. If I were looking for a SIEM between the two, I would choose QRadar, although I am not fan of it. Like Splunk, to get a lot of value and granular detail beyond the canned reports, you need someone who…
Projects
Answers
Over 6 years ago
Security Information and Event Management (SIEM)
Interesting Projects and Accomplishments
Almost 8 years ago