A practical toolkit to evaluate the threat management capabilities of your enterprise infrastructure. Also can make a tactical guide to scoping your threat management needs.
A Security Incident and Event Management (SIEM) system is a very capable toolkit; it is used by various industries to achieve a varied set of goals. One of the primary use cases for the SIEM is Threat Management. In order to deliver quality threat management an SIEM and its environment must be tuned and perfected. This document enlists the essential capabilities required to deliver quality threat management using an SIEM.
This document could be used to scope a threat management project or evaluate features of an existing project and then improve quality of deliverables. The toolkit also provides weightages the various capability requirements, this will enable you to evaluate features in the right perspective.
The key areas touched upon in this review worksheet are
© 2015-2016 All Rights Reserved. NETMONASTERY™ and CNAM™ is a registered trademark of NETMONASTERY NSPL.