SIEM stands for Security Information and Event Management and these solutions have been around since 2000. They were developed with the goal of helping organizations in the early detection of targeted attacks and data breaches. But SIEMs have struggled to keep pace with the security needs of modern enterprises, especially as the volume, variety and velocity of data has grown. As well, SIEMs have struggled to keep pace with the sophistication of modern day threats. Malware 15 years ago was static and predictable. But today’s threats are stealthy, and polymorphic. “Often times when presenting at conferences, people will ask “Is SIEM Dead”? Such a great question! Has the technology reached its end of life? Has SIEM really crashed and burned? I think the answer to that question is NO. SIEM is not dead, it has just evolved. Please read the attached white paper from Sumo Logic to learn how the SIEM market has evolved from threat management to security analytics.
Sumo Logic Continuous Intelligence Platform™
Build, run, and secure modern applications and cloud infrastructures.Start free trial
This guide covers security orchestration, automation and response (SOAR) as a transformative technology in the cybersecurity industry. It identifies what core functions and capabilities organizations should expect from a SOAR solution, and how to define what criteria should be used when evaluating SOAR solutions to best meet security challenges and optimize SOC efficiency.