Educause Security Discussion mailing list archives
Re: SIEM Tools
From: WALTER KERNER <walter_kerner () FITNYC EDU>
Date: Sat, 20 Jan 2018 05:00:34 +0000
Hi Michael. We have had good luck with Alert Logic. It combines log analysis and IDS functions and has been very valuable. On Fri, Jan 19, 2018 at 9:48 PM Madl, Michael <michael.madl () indwes edu> wrote:
I am currently reviewing several SIEM products [QRadar, Alien Vault, Log Rhythm etc.]. Can anyone share any success stories with the product they are utilizing. I have utilized Alien Vault in the past and the correlation functionality is pretty good. Threat detection is also done well. Gartner has been a great tool for review but wondering if anyone had any strong feelings/experiences with certain tools. Thank you in advance, <https://maps.google.com/?q=4201+SOUTH+WASHINGTON+STREET%0D+MARION,+IN+46953%0D+%C2%A0%0D+765&entry=gmail&source=g> <https://maps.google.com/?q=4201+SOUTH+WASHINGTON+STREET%0D+MARION,+IN+46953%0D+%C2%A0%0D+765&entry=gmail&source=g> MICHAEL MADL <https://maps.google.com/?q=4201+SOUTH+WASHINGTON+STREET%0D+MARION,+IN+46953%0D+%C2%A0%0D+765&entry=gmail&source=g> INFORMATION SECURITY OFFICER UNIVERSITY INFORMATION TECHNOLOGY INDIANA WESLEYAN UNIVERSITY 4201 SOUTH WASHINGTON STREET <https://maps.google.com/?q=4201+SOUTH+WASHINGTON+STREET%0D+MARION,+IN+46953%0D+%C2%A0%0D+765&entry=gmail&source=g> MARION, IN 46953 <https://maps.google.com/?q=4201+SOUTH+WASHINGTON+STREET%0D+MARION,+IN+46953%0D+%C2%A0%0D+765&entry=gmail&source=g> 765 <https://maps.google.com/?q=4201+SOUTH+WASHINGTON+STREET%0D+MARION,+IN+46953%0D+%C2%A0%0D+765&entry=gmail&source=g> .677.2688 | 765.677.2020 FAX michael.madl () indwes edu <mike.madl () indwes edu> INDWES.EDU/IT <http://indwes.edu/IT> [image: cid:image001.jpg@01D3436E.D1E0F1C0] *CONFIDENTIALITY NOTICE:* *This email, including applicable attachments, may include legally protected information. If you are not the intended recipient of this message, you may not disclose, print, copy, save, or disseminate this information. If you have received this email in error, please notify the sender by replying to this message and immediately delete this message.*
-- Walter Kerner AVP and CISO Fashion Institute of Technology
Current thread:
- SIEM Tools Madl, Michael (Jan 19)
- Re: SIEM Tools WALTER KERNER (Jan 19)
- Re: SIEM Tools David D Grisham (Jan 20)
- Re: SIEM Tools Seth A. Shestack (Jan 22)
- Re: *EXT* Re: [SECURITY] SIEM Tools Velislav K Pavlov (Jan 22)
- Re: *EXT* Re: [SECURITY] SIEM Tools Pardonek, Jim (Jan 22)
- Re: SIEM Tools Frank Barton (Jan 22)
- Re: SIEM Tools Brad Judy (Jan 22)
- Re: SIEM Tools Adam Menos (Jan 22)
- Re: SIEM Tools Tina Thorstenson (Jan 22)
- Re: SIEM Tools Kevin Wilcox (Jan 22)
- Re: SIEM Tools Manjak, Martin (Jan 22)
- Re: SIEM Tools David D Grisham (Jan 20)
- Re: SIEM Tools WALTER KERNER (Jan 19)