Powered By InformationWeek Business Technology Network
 
Welcome Guest. | Log In | Register | Membership Benefits

Dark Reading's Security Monitoring Tech Center is your portal to all the news, product information, technical data, and best practices related to the monitoring of IT security events and status. Written for executives and businesspeople as well as security and IT professionals, the Security Monitoring Tech Center is a single community dedicated to the tools and techniques used to analyze security activity and detect potential threats to the business.

Breaking News

FBI Seeks 'Automated Search And Scrape' Of Social Networks
Agency issues RFI for technology to quickly find and surface 'events' via search of social networks, news sites

Do You Need A Security Operations Center?
When a company starts to worry about losing data to attack, it could be time to create a simple SOC. The most important steps to evaluating the need for an effective operations center.

IP D-Day: Major Providers, Vendors To Go IPv6 June 6
IPv6 implementations 'scrutinized' for security issues so no panic necessary, experts say amid concerns of as-yet undiscovered bugs

More Stories:

MORE NEWS >>>

By The Numbers

Log Management Challenges 2011
The most recent statistics show that normalizing and categorizing data, followed by search and reporting and analysis are the major challenges faced by organizations in getting the most use out of log data.

Chart: Log Management Challenges 2011

 

 

 

 

Source: SANS 2011 Log Management Survey

 

Blog

Author Photo I'm Sorry I Called Your Baby Ugly ... But It Is
Posted by Andrew Hay
February 08, 2012

Your product's user interface may not be as appealing as you might think -- and it might just be jeopardizing its adoption

read more >

Around The Web

PC WORLD
Sony Says Data Is Protected, Attackers Say It's For Sale
Poor security monitoring is only one factor in Sony's inability to keep track of what exactly hackers have done with its most precious information--the company claims that its data was safeguarded but reports have show that Sony customer data has already hit the black market

BLOOMBERG
Energy Infrastructure Lacks Advanced Defense From Cyber Attacks
A new survey conducted by Ponemon Research on behalf of Q1 Labs shows that the security monitoring and defense mechanisms at the nation's energy providers is sorely lacking in today's threat environment

SECURITYWEEK
Challenges And Strategies For Log Management In The Cloud
SIEM on local infrastructure is hard enough as-is. Add cloud infrastructure to the mix and the task becomes daunting , according to one security expert

SC MAGAZINE
Taming Your "Unknown Unknowns" Through Network Traffic Analysis
One security professional explains how he uses network traffic analysis to find threats to his network that he wasn't initially aware of, making it what he calls a key component of his network monitoring program

CSO MAGAZINE
After 40 Years, Email Security Still Elusive, Experts Say
Four decades after introduction, companies still struggle with monitoring e-mail and enforcing policies to ensure users follow policies and do not send sensitive information outside the perimeter of most organizations

CSO MAGAZINE
After 40 Years, Email Security Still Elusive, Experts Say
Four decades after introduction, companies still struggle with monitoring e-mail and enforcing policies to ensure users follow policies and do not send sensitive information outside the perimeter of most organizations

IT-DIRECTOR.COM
Collaborative SIEM Solutions
A Bloor Research analyst explains some of the limitations in the SIEM market, which he believes still fails to offer complete solutions that offer a total package with real-time analysis of event data and deep-dive analytics performed against log data

TECHNORATI
Computer Rental Store Accused Of Spying On Customers
Aaron?s Inc. is in hot water after installing software on a computer that it leased to a couple without informing them first. The company uses this type of monitoring software to spy on customers following non-payment, however the couple involved had in fact paid their bill

MORE >>>



Security Monitoring Reports

report Does SIEM Make Sense For Your Company?
A security information and event management system serves as a repository for all the security alerts and logging systems from a firm's devices. But this can be overkill for a company that is understaffed or has overestimated its security information needs. In this report, we discuss 10 questions to ask yourself in determining whether SIEM makes sense for you--and how to pick the right system if it does.

report Monitoring Tools and Logs Make All The Difference
It's no longer a matter of "if" you get hacked, but when. In this special report, we take a look at ways to measure your security posture and the challenges that lie ahead with the emerging threat landscape.

report Collaborative Security: Safe Ways to Share Event Info
Companies, even individual departments, are fighting the onslaught of cyberattacks, not as an army, but in isolated pockets of resistance. Coordinated efforts to share security information, both internally and among enterprises, are hamstrung by a lack of standard data formats, institutional entrenchment and legal concerns. In this report, we explain the obstacles and show you how to overcome them.

Other reports from the Security Monitoring Tech Center:

Related Content

Security Management 2.0: Time to Replace Your SIEM?
Is it time? Are you waving the white flag? Has your first gen SIEM failed to meet expectations despite your investment? If you are questioning whether your existing product or service can get the job done, you are not alone. Read this Securosis white paper to learn how easy it can be to replace your SIEM with a next generation solution.

IT Executive Guide to Security Intelligence: Transitioning from SIEM to Total Security Intelligence
Read this whitepaper to learn how adopting a next generation SIEM solution provides security intelligence, to allow organizations to maintain comprehensive and cost-effective information security. Discover how security intelligence enables critical concerns in five key areas: Data silo consolidation, threat detection, fraud discovery, risk assessment/risk management, and regulatory compliance.

The Return on Security of QRadar: Improving Operational Efficiencies in Federal Government
In this study, IANS interviewed two Q1 Labs customers using QRadar to assess their Return On Security (ROS). The two customers were providers of service to the U.S. Government and had highly secure environments dealing with extremely sensitive data. The data yielded from the interviews showed substantial benefit to the organizations for the cost, both in money and staff time.

SANS What Works Webcast: Worldwide Retailer Boosts Privacy with Security Intelligence
A leading retailer with stores worldwide was seeking a more innovative tool to protect customer privacy and intellectual property. PCI compliance mandated log collection, but a vast number of different tools generated an overwhelming amount of log data, making it difficult for the small security team to review it effectively. The solution the company chose had to fit into a diverse network, provide intelligent reporting and offer a centralized management console.

Learn How Security Intelligence Can Help Combat WikiLeaks Stuxnet and Advanced Threats
WikiLeaks and Stuxnet have illustrated a few fundamental IT security issues that have underscored the need for Total Security Intelligence to counter advanced threats and to detect anomalous behavior. See how government and commercial organizations are using QRadar as an integral component of their IT security program to identify emerging threats based on context and situational awareness.