An Introduction to SIEM – Security Information & Event Management

Logs are generated by a lot of devices in an organization. In one branch alone, there are so many devices (Like Router, Firewall, IDS, etc) that can generate a lot of logs which needs to be tracked constantly, for unauthorized access, indications of network threats, etc. Occasionally, it may even be required to find out what a particular user did on a particular date and time (forensics) by sorting through all those logs. Now imagine a hundred branches across multiple locations! That is why, enterprises ought to know about SIEM – Security Information and Event Management.

Continue reading

Host Integrity Check for Endpoint and Network Security

This article gives an introduction to Host Integrity Check mechanism that enables enterprises to enforce the connectivity of their endpoints (Laptops/Desktops) only if they comply to the security policies of the network (Like latest patches, signature updates etc), the components of such a solution, host integrity check for managed, unmanaged and unmanageable endpoints, challenges for deploying host integrity check applications.

Continue reading