{"id":61094,"date":"2025-10-02T11:14:32","date_gmt":"2025-10-02T19:14:32","guid":{"rendered":"https:\/\/www.sumologic.com\/blog\/%ed%81%b4%eb%9d%bc%ec%9a%b0%eb%93%9c-%ea%b7%9c%eb%aa%a8%ec%9d%98-%ed%98%84%eb%8c%80%ec%a0%81-siem-10%ea%b0%80%ec%a7%80-%ed%99%9c%ec%9a%a9-%ec%82%ac%eb%a1%80"},"modified":"2025-12-16T08:15:35","modified_gmt":"2025-12-16T16:15:35","slug":"why-modern-siem","status":"publish","type":"blog","link":"https:\/\/www.sumologic.com\/ko\/blog\/why-modern-siem","title":{"rendered":"\ud074\ub77c\uc6b0\ub4dc \uaddc\ubaa8\uc758 \ud604\ub300\uc801 SIEM 10\uac00\uc9c0 \ud65c\uc6a9 \uc0ac\ub840"},"content":{"rendered":"\n
\n
\n
\n
\n
\"최신<\/figure>\n<\/div>\n\n\n

<\/p>\n\n\n\n

SIEM\uc758 \uc5ed\ud560\uc774 \uc911\uc694\ud558\uc9c0 \uc54a\uc740 \uc801\uc740 \ud55c \ubc88\ub3c4 \uc5c6\uc5c8\uc2b5\ub2c8\ub2e4. \ucd08\ucc3d\uae30\ubd80\ud130 SIEM\uc740 \ub85c\uadf8\ub97c \ud1b5\ud569\ud558\uace0, \uc54c\ub9bc\uc744 \ubd84\uc11d\ud558\uba70, \uc778\uc2dc\ub358\ud2b8\ub97c \uc870\uc0ac\ud558\ub294 \uc2dc\uc2a4\ud15c\uc73c\ub85c \ubcc0\ud568\uc5c6\uc774 \ubcf4\uc548 \uc6b4\uc601\uc758 \uc911\ucd94\uc801\uc778 \uc5ed\ud560\uc744 \ud574\uc654\uc2b5\ub2c8\ub2e4. \ub2e8\uc9c0 \ubcc0\ud55c \uac83\uc774 \uc788\ub2e4\uba74 SIEM\uc744 \uc81c\ub300\ub85c \ud65c\uc6a9\ud560 \uc218 \uc788\ub294 \ub2a5\ub825\uc785\ub2c8\ub2e4.<\/p>\n\n\n\n

\uae30\uc874\uc758 \uc804\ud1b5\uc801 \ubc29\uc2dd\uc758 SIEM\uc5d0\uc11c\ub294 \ub3c4\uad6c\ub97c \uc0ac\uc6a9\ud558\uae30 \uc704\ud574 \ud56d\uc0c1 \ub2e4\ub978 \uac83\uc744 \ud3ec\uae30\ud574\uc57c \ud588\uc2b5\ub2c8\ub2e4. \uc218\uc9d1 \ub2e8\uacc4\uc5d0\uc11c \ub370\uc774\ud130\ub97c \ud544\ud130\ub9c1\ud558\uac70\ub098, \ube44\uc6a9 \uc808\uc57d\uc744 \uc704\ud574 \ub85c\uadf8\ub97c \ubc84\ub9ac\uac70\ub098, \ub2e8\uc808\ub41c \ud3ec\uc778\ud2b8 \ub3c4\uad6c\ub97c \uc0ac\uc6a9\ud558\uba74\uc11c \ubd84\uc11d\uc774 \uc0ac\uc77c\ub85c\ud654\ub418\uae30\ub3c4 \ud588\uc2b5\ub2c8\ub2e4. \uadf8 \uacb0\uacfc, SIEM\uc740 \ubb34\uac81\uace0 \uc0ac\ud6c4 \ub300\uc751\uc5d0 \uadf8\uce58\uba70, \uae30\ub300\uc5d0 \ubbf8\uce58\uc9c0 \ubabb\ud558\ub294 \ub3c4\uad6c\ucc98\ub7fc \ub290\uaef4\uc84c\uc2b5\ub2c8\ub2e4. \uc0c8\ub85c\uc6cc\uc9c4 \ud604\ub300\uc801 \ud074\ub77c\uc6b0\ub4dc \ub124\uc774\ud2f0\ube0c SIEM<\/a>\uc740 \uaddc\uc815 \uc900\uc218, \ud0d0\uc9c0, \uc870\uc0ac, \ub300\uc751\uc774 \ubaa8\ub450 \ub3d9\uc77c\ud55c \ub370\uc774\ud130 \uae30\ubc18 \uc704\uc5d0\uc11c \uc2e4\ud589\ub420 \uc218 \uc788\ub294 \ud50c\ub7ab\ud3fc \ud615\uc2dd\uc785\ub2c8\ub2e4.<\/p>\n\n\n\n

\ubaa8\ub4e0 \ud154\ub808\uba54\ud2b8\ub9ac\ub97c \uc218\uc9d1\u00b7\ubcf4\uc874\ud558\uace0, \ucd5c\uc2e0 \ubd84\uc11d \ubc0f \uc790\ub3d9\ud654 \uae30\ub2a5\uc73c\ub85c \uc774\ub97c \ubd84\uc11d\ud568\uc73c\ub85c\uc368, SIEM\uc774 \ud0d0\uc9c0 \ub3c4\uad6c\uc774\uc790 \ubaa8\ub4e0 SOC\uac00 \uc2e0\ub8b0\ud560 \uc218 \uc788\ub294 \ubcf4\uc548 \ub370\uc774\ud130 \ud50c\ub7ab\ud3fc\uc73c\ub85c \uc9c4\ud654\ud55c \uac83\uc785\ub2c8\ub2e4. \uc544\ub798\uc758 10\uac00\uc9c0 \ud65c\uc6a9 \uc0ac\ub840\ub294 \uc870\uc9c1\uc774 SIEM\uc744 \ubcf8\ub798 \uc758\ub3c4\ub41c \ubc29\uc2dd\uc73c\ub85c \ud65c\uc6a9\ud558\uace0 \uc788\ub294 \ubaa8\uc2b5\uc744 \uc798 \ubcf4\uc5ec\uc8fc\uace0 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n

1. \uc704\ud611 \ud0d0\uc9c0 \ubc0f \ubaa8\ub2c8\ud130\ub9c1<\/h2>\n\n\n\n

\uc704\ud611 \ud0d0\uc9c0<\/a>\ub294 \ubaa8\ub4e0 SIEM \ud50c\ub7ab\ud3fc\uc758 \ud575\uc2ec\uc785\ub2c8\ub2e4. \uc545\uc758\uc801\uc778 \uacf5\uaca9\uc790\ub4e4\uc740 \ub9e4\uc77c \uc790\uaca9 \uc99d\uba85 \ub3c4\uc6a9, \uad8c\ud55c \uc0c1\uc2b9, \ub0b4\ubd80\uc790 \uc624\uc6a9, \ub79c\uc12c\uc6e8\uc5b4 \ucea0\ud398\uc778\uc744 \uc2dc\ub3c4\ud569\ub2c8\ub2e4. Active Directory\uc5d0\uc11c\uc758 \uc774\uc0c1 \ub85c\uadf8\uc778, \uc0dd\uc18c\ud55c DNS \ucffc\ub9ac, AWS\uc5d0\uc11c\uc758 \uc758\uc2ec\uc2a4\ub7ec\uc6b4 API \ud638\ucd9c \ub4f1 \ub2e4\uc591\ud55c \ub3c4\uba54\uc778\uc5d0\uc11c \ud45c\uba74\uc801\uc73c\ub85c\ub294 \uc0ac\uc18c\ud574 \ubcf4\uc774\ub294 \uc5ec\ub7ec \uc2e0\ud638\ub97c \uc885\ud569\uc801\uc73c\ub85c \uc5f0\uacb0\ud574 \uc704\ud611\uc744 \ud30c\uc545\ud558\ub294 \uc77c\uc740 \uc5b4\ub5a4 \ubcf4\uc548\ud300\uc5d0\uac8c\ub3c4 \uc27d\uc9c0 \uc54a\uc740 \uc77c\uc785\ub2c8\ub2e4. \ud604\ub300\uc801\uc778 SIEM \uc194\ub8e8\uc158<\/a>\uc740 \uc774\ub7ec\ud55c \uc2e0\ud638\ub4e4\uc744 \uc0c1\ud638 \uc5f0\uad00\uc2dc\ud0a4\uace0 \uc704\ud611 \uc778\ud154\ub9ac\uc804\uc2a4\uc640 \ud589\ub3d9 \uae30\uc900\uc120<\/a>\uc744 \uacb0\ud569\ud558\uc5ec \ub178\uc774\uc988 \uc18d\uc5d0\uc11c\ub3c4 \ub450\ub4dc\ub7ec\uc9c0\ub294 \uc778\uc0ac\uc774\ud2b8\ub97c \uc81c\uacf5\ud569\ub2c8\ub2e4.<\/p>\n\n\n\n

\uc624\ub298\ub0a0\uc758 \ucc28\ubcc4\uc810\uc740 \ubc14\ub85c \uaddc\ubaa8(Scale)\uc785\ub2c8\ub2e4. \ud074\ub77c\uc6b0\ub4dc \ub124\uc774\ud2f0\ube0c SIEM\uc744 \uc0ac\uc6a9\ud558\uba74, \ub354 \uc774\uc0c1 \ud0d0\uc9c0\uc5d0 \ud65c\uc6a9\ud560 \ud154\ub808\uba54\ud2b8\ub9ac \ud53c\ub4dc\ub97c \uc81c\ud55c\ud560 \ud544\uc694\uac00 \uc5c6\uc2b5\ub2c8\ub2e4. DNS, SaaS, \uc5d4\ub4dc\ud3ec\uc778\ud2b8, \ud074\ub77c\uc6b0\ub4dc \uac10\uc0ac \ub85c\uadf8\ub97c \ubaa8\ub450 \uc2e4\uc2dc\uac04\uc73c\ub85c \ubd84\uc11d\ud558\uace0 \ubcf4\uc874\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc774\ub807\uac8c \ud3ed\ub113\uc740 \ub370\uc774\ud130\ub294 \uc815\ud655\ub3c4\ub97c \ub192\uc774\uace0, \uc624\ud0d0(false positive)\uc744 \uc904\uc774\uba70, \ud0d0\uc9c0 \uae30\ub2a5\uc744 MITRE ATT&CK<\/a>\uacfc \uac19\uc740 \ud504\ub808\uc784\uc6cc\ud06c\uc5d0 \ub9de\uac8c \uc870\uc815\ud558\uc5ec \uc2e4\uc81c \uc704\ud611\uc774 \uce68\ud574\ub85c \uc774\uc5b4\uc9c0\uae30 \uc804\uc5d0 \ub354 \ube60\ub974\uac8c \uc2dd\ubcc4\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n

2. \uaddc\uc815 \uc900\uc218 \ubc0f \uac10\uc0ac<\/h2>\n\n\n\n

\ub9ce\uc740 \uc870\uc9c1\uc5d0\uc11c SIEM\uc744 \ub3c4\uc785\ud558\ub294 \uccab \ubc88\uc9f8 \uc774\uc720\ub294 \ubc14\ub85c \uaddc\uc815 \uc900\uc218(Compliance)<\/a> \ub54c\ubb38\uc785\ub2c8\ub2e4. PCI DSS<\/a>, HIPAA<\/a>, SOX, GDPR, FedRAMP, DORA<\/a>\uc640 \uac19\uc740 \uaddc\uc81c \ud504\ub808\uc784\uc6cc\ud06c\ub294 \ubaa8\ub450 \ub85c\uadf8\uc758 \uc911\uc559 \uc9d1\uc911\uc2dd \ubcf4\uc874\uacfc \ubcf4\uace0\ub97c \uc694\uad6c\ud569\ub2c8\ub2e4. SIEM\uc774 \uc5c6\uc73c\uba74 \uaddc\uc815 \uc900\uc218 \uc0ac\uc2e4\uc744 \uc785\uc99d\ud558\uae30 \uc704\ud574 \uc5ec\ub7ec \uc2dc\uc2a4\ud15c\uc5d0\uc11c \uc99d\uac70\ub97c \uc218\uc791\uc5c5\uc73c\ub85c \uc77c\uc77c\uc774 \uc218\uc9d1\ud574\uc57c \ud558\ub294\ub370, \uc774\ub294 \ube44\ud6a8\uc728\uc801\uc77c\ubfd0 \uc544\ub2c8\ub77c \uc218\uc9d1 \uacfc\uc815\uc5d0\uc11c \uc624\ub958\uac00 \ubc1c\uc0dd\ud558\uae30\ub3c4 \uc27d\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n

\ud074\ub77c\uc6b0\ub4dc \uaddc\ubaa8\uc758 SIEM\uc740 \uaddc\uc815 \uc900\uc218\uc758 \uacbd\uc81c\uc131\uc744 \uc644\uc804\ud788 \ubcc0\ud654\uc2dc\ud0b5\ub2c8\ub2e4. \uc218\ub144\uce58 \ub85c\uadf8\ub97c \uc628\ub77c\uc778 \uc0c1\ud0dc\ub85c \uc720\uc9c0\ud558\uba74\uc11c \ucffc\ub9ac \uac00\ub2a5\ud558\uace0, \ubcf4\uace0\uc11c \ud615\ud0dc\ub85c \uc27d\uac8c \uc2dc\uac01\ud654\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \ub610\ud55c, \uc0ac\uc804 \uad6c\ucd95\ub41c \ub300\uc2dc\ubcf4\ub4dc\ub97c \uc774\uc6a9\ud560 \uacbd\uc6b0 \ubcf4\uc548\ud300\uc740 \ud2b9\uc815 \ud1b5\uc81c \ud56d\ubaa9\uc5d0 \ub300\ud55c \uc900\uc218 \uc5ec\ubd80\ub97c \uba85\ud655\ud788 \uc785\uc99d\ud560 \uc218 \uc788\uace0 \uac10\uc0ac\ub97c \uc9c4\ud589\ud558\ub294 \uce21\uc740 \uac80\uc99d\ub41c \ucd94\uc801\uc744 \uc190\uc27d\uac8c \uc2e4\ud589\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc774\uc81c \uaddc\uc815 \uc900\uc218\ub294 \ub9e4\ub144 \ubc18\ubcf5\ub418\ub294 \uace0\ud1b5\uc2a4\ub7ec\uc6b4 \uc791\uc5c5\uc774 \uc544\ub2c8\ub77c \uc77c\uc0c1 \uc6b4\uc601 \uc18d\uc5d0 \uc790\uc5f0\uc2a4\ub7fd\uac8c \ud1b5\ud569\ub41c \uc9c0\uc18d\uc801\uc774\uace0 \ud22c\uba85\ud55c \ud504\ub85c\uc138\uc2a4\ub85c \uc790\ub9ac \uc7a1\uac8c \ub429\ub2c8\ub2e4.<\/p>\n\n\n\n

3. \ud074\ub77c\uc6b0\ub4dc \ubc0f \uba40\ud2f0 \ud074\ub77c\uc6b0\ub4dc \ubcf4\uc548 \ubaa8\ub2c8\ud130\ub9c1<\/h2>\n\n\n\n

\uc778\ud504\ub77c\uac00 AWS, Azure, GCP \ubc0f \ub2e4\uc591\ud55c SaaS \ud50c\ub7ab\ud3fc \uc804\ubc18\uc73c\ub85c \ud655\uc7a5\ub428\uc5d0 \ub530\ub77c, \ubcf4\uc548\ud300\uc740 \uacf3\uacf3\uc5d0\uc11c \uac00\uc2dc\uc131\uc758 \uc0ac\uac01\uc9c0\ub300(blind spot)\ub97c \ub9c8\uc8fc\ud558\uac8c \ub429\ub2c8\ub2e4. \uac01 \ud50c\ub7ab\ud3fc\uc758 \uae30\ubcf8 \uc81c\uacf5 \ub3c4\uad6c\ub97c \uc0ac\uc6a9\ud558\uba74 \uac00\uc2dc\uc131\uc774 \uc81c\ud55c\uc801\uc774\uae30 \ub54c\ubb38\uc5d0 \ub2e4\ub978 \ud074\ub77c\uc6b0\ub4dc\ub098 \uc628\ud504\ub808\ubbf8\uc2a4 \ud658\uacbd\uacfc\uc758 \uc5f0\uacb0\uc131\uc740 \ubd80\uc871\ud569\ub2c8\ub2e4. \uc774\ub807\uac8c \ub2e8\uc808\ub41c \ud658\uacbd\uc73c\ub85c \uc778\ud574 \ud074\ub77c\uc6b0\ub4dc \uac04 \uc704\ud5d8\uc774\ub098 \uc798\ubabb\ub41c \uad6c\uc131\uc744 \ud0d0\uc9c0\ud558\uae30 \uc5b4\ub824\uc6cc\uc9c0\uba74, \uacb0\uad6d \uacf5\uaca9\uc790\uc5d0\uac8c \uce68\uc785 \uacbd\ub85c\ub97c \uc5f4\uc5b4\uc8fc\ub294 \uc148\uc774 \ub429\ub2c8\ub2e4.<\/p>\n\n\n\n

\ud604\ub300\uc801\uc778 SIEM\uc740 \ubaa8\ub4e0 \ud074\ub77c\uc6b0\ub4dc \uc81c\uacf5\uc5c5\uccb4 \ubc0f \uae30\uc874\uc758 \uc18c\uc2a4\uc5d0\uc11c \ub370\uc774\ud130\ub97c \uc218\uc9d1\ud558\uace0 \uc815\uaddc\ud654\ud558\uc5ec \ubcf4\uc548\ud300\uc774 \uc2e0\ub8b0\ud560 \uc218 \uc788\ub294 ‘\ub2e8\uc77c \uc9c4\uc2e4 \uacf5\uae09\uc6d0(Single source of truth)’\uc744 \uc81c\uacf5\ud569\ub2c8\ub2e4. \ud074\ub77c\uc6b0\ub4dc \uaddc\ubaa8\uc758 SIEM\uc740 API \ud638\ucd9c, IAM \uc774\ubca4\ud2b8, \uac10\uc0ac \ub85c\uadf8 \ub4f1\uc5d0\uc11c \uc0dd\uc131\ub418\ub294 \ubc29\ub300\ud55c \ud154\ub808\uba54\ud2b8\ub9ac\ub97c \ucc98\ub9ac\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \ubd84\uc11d\ud300\uc740 \uc774\ub97c \ud1b5\ud574 \ud558\uc774\ube0c\ub9ac\ub4dc \ubc0f \uba40\ud2f0\ud074\ub77c\uc6b0\ub4dc \ud658\uacbd \uc804\ubc18\uc5d0 \uac78\uccd0 \ud1b5\ud569\ub41c \uac00\uc2dc\uc131\uc744 \ud655\ubcf4\ud558\uace0 \uba40\ud2f0 \ud074\ub77c\uc6b0\ub4dc\uc5d0 \uac78\uccd0 \ubc1c\uc0dd\ud558\ub294 \uc704\ud611\uacfc \uc704\ud5d8\uc744 \uc2dd\ubcc4\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n

4. \ub0b4\ubd80\uc790 \uc704\ud611 \ubc0f \uc5d4\ud130\ud2f0 \ubd84\uc11d<\/h2>\n\n\n\n

\uc678\ubd80 \uacf5\uaca9\uc790\uac00 \uc8fc\ubaa9\ubc1b\ub294 \uacbd\uc6b0\uac00 \ub9ce\uc9c0\ub9cc, \uacc4\uc815 \ud0c8\ucde8\ubd80\ud130 \uc758\ub3c4\uc801\uc778 \uc624\uc6a9\uc5d0 \uc774\ub974\uae30\uae4c\uc9c0 \ub0b4\ubd80\uc790\uc758 \uc704\ud611\ub3c4 \ubabb\uc9c0\uc54a\uac8c \uc704\ud5d8\ud569\ub2c8\ub2e4. \uadf8 \uc774\uc720\ub294 \uc774\ub7ec\ud55c \ud65c\ub3d9\uc774 \uac89\ubcf4\uae30\uc5d0\ub294 \uc815\uc0c1\uc801\uc778 \uc0ac\uc6a9\uc790 \ud589\ub3d9\ucc98\ub7fc \ubcf4\uc774\uae30 \ub54c\ubb38\uc785\ub2c8\ub2e4. \ud734\uba74 \uacc4\uc815\uc774 \uac11\uc790\uae30 \ud65c\uc131\ud654\ub418\uac70\ub098, \uad8c\ud55c \uc788\ub294 \uc0ac\uc6a9\uc790\uac00 \ud3c9\uc18c\uc640 \ub2e4\ub978 \ub370\uc774\ud130\ub97c \uc811\uadfc\ud558\uac70\ub098, \uc11c\ube44\uc2a4 \uacc4\uc815\uc774 \ube44\uc815\uc0c1\uc801\uc73c\ub85c \uc791\ub3d9\ud558\ub294 \ud604\uc0c1 \ub4f1\uc740 \ubaa8\ub450 \uc704\ud5d8\ud55c \ud604\uc0c1\uc774\uc9c0\ub9cc \ub2e4\ub978 \ub3c4\uad6c\ub97c \uc0ac\uc6a9\ud560 \ub54c\uc5d0\ub294 \ubbf8\ucc98 \ud30c\uc545\ud560 \uc218 \uc5c6\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n

\ud604\ub300\uc801 SIEM \uc194\ub8e8\uc158\uc740 \uc0ac\uc6a9\uc790 \ubc0f \uc5d4\ud130\ud2f0 \ud589\ub3d9 \ubd84\uc11d(UEBA)<\/a>\uc744 \ud65c\uc6a9\ud558\uc5ec \uc815\uc0c1\uc801\uc778 \ud65c\ub3d9 \uae30\uc900\uc120\uc744 \uc124\uc815\ud558\uace0, \uadf8\ub85c\ubd80\ud130 \uc774\ud0c8\ub418\ub294 \ud589\ub3d9\uc744 \ud0d0\uc9c0\ud569\ub2c8\ub2e4. \ud074\ub77c\uc6b0\ub4dc \uaddc\ubaa8\uc758 \ub370\uc774\ud130 \ubcf4\uc874 \uae30\ub2a5 \ub355\ubd84\uc5d0 \uc774\ub7ec\ud55c \uae30\uc900\uc120\uc740 \uc9c0\uc18d\uc801\uc778 \ud559\uc2b5\uc744 \ud1b5\ud574\uc11c \ubc1c\uc804\ud568\uacfc \ub3d9\uc2dc\uc5d0 \ud45c\uc900\uc73c\ub85c \uc791\ub3d9\ud558\ubbc0\ub85c \ud0d0\uc9c0\uc758 \uc815\ud655\ub3c4\uac00 \ud5a5\uc0c1\ub418\uace0 \uc624\ud0d0\uc774 \uc904\uc5b4\ub4dc\ub294 \ud6a8\uacfc\ub97c \ub0b3\uc2b5\ub2c8\ub2e4. SIEM\uc740 \ub2e8\uc21c\ud55c \uc774\ubca4\ud2b8\uac00 \uc544\ub2c8\ub77c ‘\uc5d4\ud130\ud2f0’ \uc790\uccb4\uc5d0 \ucd08\uc810\uc744 \ub9de\ucd94\ubbc0\ub85c \ud53c\ud574\uac00 \ubc1c\uc0dd\ud558\uae30 \uc804\uc5d0 \ub0b4\ubd80 \uc704\ud5d8\uc744 \ub4dc\ub7ec\ub0b4\ub294 \ubbf8\ubb18\ud55c \uc774\uc0c1 \uc9d5\ud6c4\uae4c\uc9c0 \uc2dd\ubcc4\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n

5. \uc704\ud611 \ud5cc\ud305<\/h2>\n\n\n\n

\ubc18\uc751\ud615 \uc54c\ub9bc\uc740 \ubbf8\ub9ac \uc815\uc758\ub41c \ud328\ud134\ub9cc \ud0d0\uc9c0\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \ubc18\uba74, \uc120\uc81c\uc801 \ub300\uc751\ud300\uc740 \uc704\ud611\uc744 \ud5cc\ud305<\/a>\ud558\uae30 \uc704\ud574 \uac00\uc124\uc744 \uc138\uc6b0\uace0, \uc815\uaddc\ud654\ub41c \ud154\ub808\uba54\ud2b8\ub9ac \ub370\uc774\ud130\ub97c \ucffc\ub9ac\ud558\uba70, \uad00\ub828 \ub85c\uadf8\ub97c \ud53c\ubc97\ud558\uc5ec \uc740\ubc00\ud55c \uce68\uc785 \ud754\uc801\uc744 \ucc3e\uc544\ub0b4\ub294\ub370 SIEM\uc744 \ud65c\uc6a9\ud569\ub2c8\ub2e4. \uc774\ub97c \uc2e4\ud604\ud558\uae30 \uc704\ud574\uc11c\ub294 \ub2e8\uc21c\ud55c \ub370\uc774\ud130\uac00 \uc544\ub2c8\ub77c \ub192\uc740 \uc2e0\ub8b0\ub3c4\uc758 \ub370\uc774\ud130\uac00 \ud544\uc694\ud569\ub2c8\ub2e4.<\/p>\n\n\n\n

\uc774\ub7ec\ud55c \ub370\uc774\ud130\ub294 \ud074\ub77c\uc6b0\ub4dc \ub124\uc774\ud2f0\ube0c SIEM\uc744 \uc0ac\uc6a9\ud574\uc57c \uc5bb\uc744 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc704\ud611 \ud5cc\ud305 \ub2f4\ub2f9\ud300\uc740 DNS, NetFlow, SaaS, \uc5d4\ub4dc\ud3ec\uc778\ud2b8 \ub370\uc774\ud130\ub97c \uc218\uc9d1 \ub2e8\uacc4\uc5d0\uc11c \ud544\ud130\ub9c1\ub418\uc9c0 \uc54a\uc558\uc744\uae4c \ud558\ub294 \uc5fc\ub824 \uc5c6\uc774 \uc790\uc720\ub86d\uac8c \ucffc\ub9ac\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \ub610\ud55c \uc218\uac1c\uc6d4\uce58\uc758 \uacfc\uac70 \ub370\uc774\ud130\ub97c \uae30\ubc18\uc73c\ub85c \uac00\uc124\uc744 \uac80\uc99d\ud558\uace0, \ub2e4\uc591\ud55c \ub370\uc774\ud130 \uc138\ud2b8 \uc804\ubc18\uc744 \ud53c\ubc97\ud558\uba70, \uc2dc\uadf8\ub2c8\ucc98 \uae30\ubc18\uc758 \ub3c4\uad6c\ub97c \ud1b5\uacfc\ud558\ub294 \uacf5\uaca9 \ud328\ud134\uae4c\uc9c0 \ubc1c\uacac\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n

6. \uc0ac\uace0 \uc870\uc0ac \ubc0f \ud3ec\ub80c\uc2dd<\/h2>\n\n\n\n

\ubcf4\uc548 \uc0ac\uace0\uac00 \ubc1c\uc0dd\ud558\uba74, \uacbd\uc601\uc9c4\uacfc \uaddc\uc81c \ub2f9\uad6d\uc740 \uc774\uc5d0 \ub300\ud55c \ub2f5\ubcc0\uc744 \uc694\uad6c\ud569\ub2c8\ub2e4. \ubb34\uc2a8 \uc77c\uc774 \uc788\uc5c8\ub294\uac00? \uacf5\uaca9\uc790\ub294 \uc5b4\ub5bb\uac8c \uce68\uc785\ud588\ub294\uac00? \uc5b4\ub5a4 \ub370\uc774\ud130\uac00 \uc601\ud5a5\uc744 \ubc1b\uc558\ub294\uac00? \uae30\uc874 SIEM \uc194\ub8e8\uc158\uc740 \uc544\uce74\uc774\ube0c\ub41c \ub85c\uadf8\uac00 \ub290\ub9ac\uac70\ub098 \uc811\uadfc\uc774 \uc81c\ud55c\ub418\uc5b4 \uc788\uc5b4, \uc870\uc0ac \ub2f4\ub2f9\uc790\uac00 \ubd88\uc644\uc804\ud55c \uc815\ubcf4\ub85c \uc0ac\uac74\uc744 \ubd84\uc11d\ud574\uc57c \ud558\ub294 \ud55c\uacc4\uac00 \uc788\uc5c8\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n

\ud074\ub77c\uc6b0\ub4dc \uaddc\ubaa8\uc758 SIEM\uc740 \uc774\ub7ec\ud55c \uc0c1\ud669\uc744 \ubc14\uafc9\ub2c8\ub2e4. \uba70\uce60, \uba87 \ub2ec, \uc2ec\uc9c0\uc5b4 \uba87 \ub144 \uc804\uc758 \ub85c\uadf8\uc5d0\ub3c4 \ub3d9\uc77c\ud55c \ud50c\ub7ab\ud3fc\uc5d0\uc11c \uc811\uadfc\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc870\uc0ac \ub2f4\ub2f9\uc790\ub294 \uacf5\uaca9 \ud0c0\uc784\ub77c\uc778\uc744 \uc7ac\uad6c\uc131\ud558\uace0, \uc5ec\ub7ec \ub3c4\uba54\uc778\uc5d0 \uac78\uce5c \uc774\ubca4\ud2b8\ub97c \uc0c1\ud638 \uc5f0\uad00\uc2dc\ucf1c \ucd94\uce21\uc774 \uc544\ub2cc \ud655\uc2e4\ud55c \uc99d\uac70\ub97c \uae30\ubc18\uc73c\ub85c \uc0ac\uac74\uc758 \ubc94\uc704\ub97c \uc785\uc99d\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n

7. \uc0ac\uace0 \ub300\uc751 \uc790\ub3d9\ud654<\/h2>\n\n\n\n

\ud0d0\uc9c0\ub9cc\uc73c\ub85c\ub294 \ucda9\ubd84\ud558\uc9c0 \uc54a\uc2b5\ub2c8\ub2e4. \ubc18\ub4dc\uc2dc \ub300\uc751\uc73c\ub85c \uc774\uc5b4\uc838\uc57c \ud569\ub2c8\ub2e4. \ud604\ub300\uc801 SIEM\uc5d0\ub294 \uc790\ub3d9\ud654 \uacfc\uc815\uc774 \ub3c4\uc785\ub418\uc5b4 \uc790\ub3d9\uc73c\ub85c \uc54c\ub9bc\uc744 \ubd84\ub958\ud558\uace0 \uc774\ubca4\ud2b8\ub97c \ubcf4\uac15\ud558\uba70 \ub300\uc751 \ud50c\ub808\uc774\ubd81\uc744 \uc2e4\ud589\ud558\ubbc0\ub85c \uacf5\uaca9 \ubc1c\uc0dd\uc5d0\uc11c \uc0ac\uace0 \uc778\uc9c0\uae4c\uc9c0 \uac78\ub9ac\ub294 \uc2dc\uac04(dwell time)\ub3c4 \uc904\uc5b4\ub4e4\uace0 \ubd84\uc11d\ud558\ub294 \uc0ac\ub78c\uc758 \ubd80\ub2f4\ub3c4 \uc644\ud654\ub429\ub2c8\ub2e4. \uadf8\ub7ec\ub098 \uc790\ub3d9\ud654\uc758 \uc218\uc900\uc740 \ud65c\uc6a9\ub418\ub294 \ub370\uc774\ud130\uc758 \ud488\uc9c8\uc5d0 \ub2ec\ub824 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n

\ud074\ub77c\uc6b0\ub4dc \ub124\uc774\ud2f0\ube0c SIEM\uc744 \uc0ac\uc6a9\ud558\uba74 \uc790\ub3d9\ud654\ub97c \ud1b5\ud574 \uacfc\uac70 \uae30\uc900\uc120, \uc704\ud611 \uc778\ud154\ub9ac\uc804\uc2a4, \ud53c\uc5b4 \ube44\uad50 \ub4f1\uc744 \ud3ec\ud568\ud55c \uc804\uccb4 \ucee8\ud14d\uc2a4\ud2b8\ub97c \ud65c\uc6a9\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc774\ub97c \ud1b5\ud574 \uc62c\ubc14\ub978 \uacc4\uc815 \uc7ac\uc124\uc815, IP \ucc28\ub2e8, \uc0ac\uace0 \uc5d0\uc2a4\uceec\ub808\uc774\uc158 \ub4f1 \uc815\ud655\ud558\uace0 \uc2e0\uc18d\ud55c \ub300\uc751 \uc870\uce58\ub97c \ub0b4\ub9b4 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc790\ub3d9\ud654\ub294 \uc704\ud5d8\uc758 \uc6d0\uc778\uc774 \uc544\ub2c8\ub77c, SOC\uc758 \uc5ed\ub7c9\uc744 \ubc30\uac00\uc2dc\ud0a4\ub294 \uac15\ub825\ud55c \uc218\ub2e8\uc774 \ub429\ub2c8\ub2e4.<\/p>\n\n\n\n

8. \ub178\uc774\uc988 \uac10\uc18c \ubc0f \uc54c\ub9bc\uc758 \uc6b0\uc120\uc21c\uc704 \uc9c0\uc815<\/h2>\n\n\n\n

SOC\uc758 \ubc88\uc544\uc6c3\uc740 \ud604\uc2e4\uc801\uc778 \ubb38\uc81c\uc785\ub2c8\ub2e4. \ubd84\uc11d\ud300\uc740 \ub9e4\uc77c \uc218\ucc9c \uac74\uc758 \uc54c\ub9bc\uc744 \ubc1b\uc9c0\ub9cc, \uadf8\uc911 \uc0c1\ub2f9\uc218\ub294 \uc624\ud0d0\uc774\uac70\ub098 \uc911\ubcf5\ub41c \uc54c\ub9bc\uc785\ub2c8\ub2e4. \uae30\uc874 SIEM\uc740 \uc624\ud788\ub824 \ub354 \ub9ce\uc740 \uc54c\ub9bc\uc744 \uc0dd\uc131\ud574 \uc774 \ubb38\uc81c\ub97c \uc2ec\ud654\uc2dc\ud0a4\uae30\ub3c4 \ud588\uc2b5\ub2c8\ub2e4.<\/p>\n\n\n\n

\ud074\ub77c\uc6b0\ub4dc \uaddc\ubaa8\uc758 SIEM\uc740 \uc774 \ubc29\uc2dd\uc744 \uc644\uc804\ud788 \ub4a4\uc9d1\uc2b5\ub2c8\ub2e4. \ubc29\ub300\ud55c \ub370\uc774\ud130 \uc138\ud2b8\ub97c \uc0c1\ud638 \uc5f0\uad00\uc2dc\ud0a4\uace0 \uace0\uae09 \ubd84\uc11d\uc744 \uc801\uc6a9\ud568\uc73c\ub85c\uc368 \ubd88\ud544\uc694\ud55c \ub178\uc774\uc988\ub97c \uc5b5\uc81c\ud558\uace0 \uc9c4\uc815\uc73c\ub85c \uc911\uc694\ud55c \uc54c\ub9bc\ub9cc\uc744 \ubd80\uac01\ud569\ub2c8\ub2e4. \ud558\ub098\uc758 \uc0ac\uac74\uc5d0 \ub300\ud574 10\uac1c\uc758 \uc54c\ub9bc\uc744 \ubc1b\ub294 \ub300\uc2e0, \ubd84\uc11d\ud300\uc740 \ud558\ub098\uc758 \ud1b5\ud569\ub41c \uc778\uc0ac\uc774\ud2b8\ub97c \ud655\uc778\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. AI \ubc0f \uc704\ud5d8 \uc810\uc218 \ubaa8\ub378\uc774 \uacb0\ud569\ub418\uba74, \uc54c\ub9bc\uc740 \ub2e8\uc21c\ud55c \uc218\ub7c9\uc774 \uc544\ub2cc \uc704\ud5d8\ub3c4 \uae30\ubc18\uc73c\ub85c \uc6b0\uc120\uc21c\uc704\ud654\ub418\ubbc0\ub85c \ubd84\uc11d\ud300\uc758 \ud53c\ub85c\ub3c4 \uc904\uc5b4\ub4e4\uace0 \uc5c5\ubb34\uc5d0 \uc9d1\uc911\ud560 \uc218 \uc788\uac8c \ub429\ub2c8\ub2e4.<\/p>\n\n\n\n

9. \uc6b4\uc601 \ubc0f \ube44\uc988\ub2c8\uc2a4 \ubaa8\ub2c8\ud130\ub9c1<\/h2>\n\n\n\n

SIEM\uc758 \uac00\uce58\ub294 \ub2e8\uc21c\ud788 \ubcf4\uc548\uc5d0\ub9cc \uad6d\ud55c\ub418\uc9c0 \uc54a\uc2b5\ub2c8\ub2e4. SIEM\uc740 \ubaa8\ub4e0 \ud154\ub808\uba54\ud2b8\ub9ac\ub97c \uc218\uc9d1\u00b7\uc800\uc7a5\ud55c \ud6c4 \uc774\ub97c IT\ud300, \uac1c\ubc1c\u00b7\uc6b4\uc601(DevOps)\ud300, \uc0ac\uae30 \ud0d0\uc9c0\ud300 \ub4f1 \ub2e4\uc591\ud55c \ubd80\uc11c\uc5d0 \uc81c\uacf5\ud558\uae30 \ub54c\ubb38\uc5d0 \uc5ec\ub7ec \ud300\uc774 \ud55c\uaebc\ubc88\uc5d0 \uc560\ud50c\ub9ac\ucf00\uc774\uc158 \uc131\ub2a5 \ub85c\uadf8, \ud2b8\ub79c\uc7ad\uc158 \uae30\ub85d, \uac00\ub3d9 \uc2dc\uac04 \uc9c0\ud45c \ub4f1\uc744 \ubcf4\uc548 \ub370\uc774\ud130\uc640 \ud568\uaed8 \ubd84\uc11d\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4. \uc774\ub97c \ud1b5\ud574 \ubd80\uc11c \uac04\uc758 \uac00\uc2dc\uc131\uc774 \ud1b5\ud569\ub418\ub294 \uac83\uc785\ub2c8\ub2e4.<\/p>\n\n\n\n

\uc608\ub97c \ub4e4\uc5b4, \uc18c\ub9e4\uc5c5\uccb4\ub294 POS(Point-of-Sale) \uac00\ub3d9 \uc2dc\uac04\uc744 \ucd94\uc801\ud558\uace0, \uc740\ud589\uc740 \ubd80\uc815 \uc778\ucd9c\uc744 \ubaa8\ub2c8\ud130\ub9c1\ud558\uba70, SaaS \uc81c\uacf5\uc5c5\uccb4\ub294 \uc560\ud50c\ub9ac\ucf00\uc774\uc158 \uc9c0\uc5f0 \ubb38\uc81c\ub97c \uc870\uc0ac\ud560 \uc218 \uc788\uc744 \uac83\uc785\ub2c8\ub2e4. \uc774\ub807\uac8c SIEM \ub370\uc774\ud130\ub97c \uc5ec\ub7ec \ubd84\uc57c\uc5d0 \ud65c\uc6a9\ud558\uba74 \uc0ac\uc5c5\uc774 \uac15\ud654\ub418\uace0 \ubd80\uc11c \uac04 \ud611\uc5c5\ub3c4 \ucd09\uc9c4\ub429\ub2c8\ub2e4. \uacb0\uad6d SIEM\uc740 \ub2e8\uc21c\ud55c SOC \ub3c4\uad6c\ub97c \ub118\uc5b4, \uac1c\ubc1c\u00b7\ubcf4\uc548\u00b7\uc6b4\uc601(DevSecOps)<\/a> \uc804\uccb4\ub97c \uc544\uc6b0\ub974\ub294 ‘\ub2e8\uc77c \uc9c4\uc2e4 \uacf5\uae09\uc6d0’\uc73c\ub85c \uc790\ub9ac\uc7a1\uac8c \ub418\ub294 \uac83\uc785\ub2c8\ub2e4.<\/p>\n\n\n\n

10. \ud0c0\uc0ac \ubc0f \uacf5\uae09\ub9dd \uc704\ud5d8 \ubaa8\ub2c8\ud130\ub9c1<\/h2>\n\n\n\n

\uc624\ub298\ub0a0 \uc870\uc9c1\uc740 \ub354 \uc774\uc0c1 \uace0\ub9bd\ub41c \uc0c1\ud0dc\ub85c \uc6b4\uc601\ub420 \uc218 \uc5c6\uc2b5\ub2c8\ub2e4. \ubca4\ub354, \ud30c\ud2b8\ub108, SaaS \uc81c\uacf5\uc5c5\uccb4 \ub4f1\uc740 \ubaa8\ub450 \uacf5\uaca9 \ud45c\uba74\uc744 \ud655\uc7a5\ud569\ub2c8\ub2e4. \uacf5\uae09\ub9dd \uacf5\uaca9\uc740 \ud154\ub808\uba54\ud2b8\ub9ac\uac00 \ubd80\uc7ac\ud558\uac70\ub098 \uace0\ub9bd\ud654\ub41c \uac00\uc2dc\uc131\uc758 \uc0ac\uac01\uc9c0\ub300\uc5d0\uc11c \ud65c\ubc1c\ud558\uac8c \uc774\ub8e8\uc5b4\uc9d1\ub2c8\ub2e4.<\/p>\n\n\n\n

\ud074\ub77c\uc6b0\ub4dc \uaddc\ubaa8\uc758 SIEM\uc740 \ud30c\ud2b8\ub108, MSP, SaaS \ud1b5\ud569\uc5d0\uc11c \ub85c\uadf8\ub97c \uc218\uc9d1\ud558\uace0, \uc815\uaddc\ud654 \uacfc\uc815\uc744 \uac70\uce5c \ub4a4 \ub0b4\ubd80 \ub370\uc774\ud130\uc640 \uc0c1\ud638 \uc5f0\uad00\ud558\uc5ec \ubd84\uc11d\ud569\ub2c8\ub2e4. \uc774\ub97c \ud1b5\ud574 \uc870\uc9c1\uc740 \uc678\ubd80 \uc758\uc874\uc131\uc744 \uac00\uc2dc\uc801\uc73c\ub85c \ud30c\uc545\ud558\uace0 \ubca4\ub354 \uc811\uadfc\uad8c\uc774\ub098 API \uc0ac\uc6a9\uacfc \uad00\ub828\ub41c \uc7a0\uc7ac\uc801 \uc704\ud5d8\uc744 \uc2dd\ubcc4\ud560 \uc218 \uc788\uac8c \ub429\ub2c8\ub2e4. \uacf5\uae09\ub9dd \uce68\ud574\uac00 \uc810\uc810 \ub354 \ube48\ubc88\ud574\uc9c0\ub294 \ud658\uacbd\uc5d0\uc11c, SIEM\uc740 \ud575\uc2ec\uc801\uc778 \ubc29\uc5b4 \uacc4\uce35\uc758 \uc5ed\ud560\uc744 \ub2f4\ub2f9\ud558\uace0 \uc788\ub294 \uac83\uc785\ub2c8\ub2e4.<\/p>\n\n\n\n

Sumo Logic\uc758 \ucc28\ubcc4\uc131<\/h2>\n\n\n\n

\ub9ce\uc740 SIEM \uc194\ub8e8\uc158\uc774 \uc704\uc640 \uac19\uc740 \ud65c\uc6a9\uc131\uc744 \ubcf4\uc7a5\ud55c\ub2e4\uace0 \uc7a5\ub2f4\ud569\ub2c8\ub2e4. \uadf8\ub7ec\ub098 \uc9c0\ub2a5\ud615 \ubcf4\uc548 \uc6b4\uc601\uc5d0 \ud544\uc694\ud55c \uaddc\ubaa8\uc5d0 \ub2e8\uc21c\ud568\uc744 \uac16\ucd98 SIEM \uc194\ub8e8\uc158\uc740 \ub4dc\ubb38 \uac83\uc774 \ud604\uc2e4\uc785\ub2c8\ub2e4. \uc774\uc640 \uac19\uc740 \uc0c1\ud669\uc5d0\uc11c Sumo Logic Cloud SIEM<\/a>\uc740 \ub2e4\uc74c\uacfc \uac19\uc740 \uae30\ub2a5\uc73c\ub85c \ub2e4\ub978 \uc194\ub8e8\uc158\uacfc\ub294 \ucc28\ubcc4\ud654\ub41c \uc6b0\uc218\uc131\uc744 \ubcf4\uc785\ub2c8\ub2e4.<\/p>\n\n\n\n