Educause Security Discussion mailing list archives

Re: SIEM Tools

From: WALTER KERNER <walter_kerner () FITNYC EDU>
Date: Sat, 20 Jan 2018 05:00:34 +0000

Hi Michael. We have had good luck with Alert Logic. It combines log
analysis and IDS functions and has been very valuable.

On Fri, Jan 19, 2018 at 9:48 PM Madl, Michael <michael.madl () indwes edu>
wrote:

I am currently reviewing several SIEM products [QRadar, Alien Vault, Log
Rhythm etc.].



Can anyone share any success stories with the product they are utilizing.
I have utilized Alien Vault in the past and the correlation functionality
is pretty good.  Threat detection is also done well.



Gartner has been a great tool for review but wondering if anyone had any
strong feelings/experiences with certain tools.





Thank you in advance,



<https://maps.google.com/?q=4201+SOUTH+WASHINGTON+STREET%0D+MARION,+IN+46953%0D+%C2%A0%0D+765&entry=gmail&source=g>



<https://maps.google.com/?q=4201+SOUTH+WASHINGTON+STREET%0D+MARION,+IN+46953%0D+%C2%A0%0D+765&entry=gmail&source=g>

MICHAEL MADL

<https://maps.google.com/?q=4201+SOUTH+WASHINGTON+STREET%0D+MARION,+IN+46953%0D+%C2%A0%0D+765&entry=gmail&source=g>

INFORMATION SECURITY OFFICER

UNIVERSITY INFORMATION TECHNOLOGY



INDIANA WESLEYAN UNIVERSITY

4201 SOUTH WASHINGTON STREET
<https://maps.google.com/?q=4201+SOUTH+WASHINGTON+STREET%0D+MARION,+IN+46953%0D+%C2%A0%0D+765&entry=gmail&source=g>

MARION, IN 46953
<https://maps.google.com/?q=4201+SOUTH+WASHINGTON+STREET%0D+MARION,+IN+46953%0D+%C2%A0%0D+765&entry=gmail&source=g>



765
<https://maps.google.com/?q=4201+SOUTH+WASHINGTON+STREET%0D+MARION,+IN+46953%0D+%C2%A0%0D+765&entry=gmail&source=g>
.677.2688   |   765.677.2020 FAX

michael.madl () indwes edu <mike.madl () indwes edu>



INDWES.EDU/IT <http://indwes.edu/IT>



[image: cid:image001.jpg@01D3436E.D1E0F1C0]



*CONFIDENTIALITY NOTICE:* *This email, including applicable attachments,
may include legally protected information.  If you are not the intended
recipient of this message, you may not disclose, print, copy, save, or
disseminate this information. If you have received this email in error,
please notify the sender by replying to this message and immediately delete
this message.*

-- 
Walter Kerner
AVP and CISO
Fashion Institute of Technology

Current thread:

SIEM Tools Madl, Michael (Jan 19)
- Re: SIEM Tools WALTER KERNER (Jan 19)
  - Re: SIEM Tools David D Grisham (Jan 20)
    - Re: SIEM Tools Seth A. Shestack (Jan 22)
    - Re: *EXT* Re: [SECURITY] SIEM Tools Velislav K Pavlov (Jan 22)
    - Re: *EXT* Re: [SECURITY] SIEM Tools Pardonek, Jim (Jan 22)
    - Re: SIEM Tools Frank Barton (Jan 22)
    - Re: SIEM Tools Brad Judy (Jan 22)
    - Re: SIEM Tools Adam Menos (Jan 22)
    - Re: SIEM Tools Tina Thorstenson (Jan 22)
    - Re: SIEM Tools Kevin Wilcox (Jan 22)
    - Re: SIEM Tools Manjak, Martin (Jan 22)

(Thread continues...)