Settlement of talks

IT Security: Next-Gen SIEM

A recent survey by the Ponemon Institute of about 600 users of SIEM solutions shows how efficient SIEM solutions (Security Information and Event Management) are in companies.

SIEMs are central to cybersecurity in organizations because they detect threats that other security solutions cannot identify. To achieve this, the solutions collect log data – so-called log files – from various network sources and analyze them in real time in the best case in order to evaluate suspicious events in the network.

But SIEM is not the same as SIEM: In the market, numerous providers are busy with more or less advanced solutions. Here, the Ponemon Institute’s SIEM Productivity Study provides important insights that can help companies choose the right technologies.

Time and Resource Eaters "False Positives"

In 80 percent of cases, the solutions are not very effective and do not manage to reduce the necessary personnel expenses in the SOC. What are the causes and what can be done about them?

The reason for this inefficiency of many SIEM solutions, according to the study, is that security analysts in the company spend 25 percent of their time following the false positives because security alerts are not correct.

Divide between conventional SIEM and next-gen SIEM solutions such as LogRhythm

Such false alarms are found in particular in conventional SIEM solutions. Compared to older solutions, modern next-gen SIEMs such as LogRhythm use artificial intelligence and machine learning. Current SIEM technologies from LogRhythm such as UEBA (User and Entity Behavior Analytics), NDR (Network Detection & Response) and SOAR (Security Orchestration, Automation & Response) have also significantly increased productivity in the companies using them. The total time spent on security tasks in companies decreased by 51 percent compared to the time spent before using the solution. Considering these findings, given that many SOCs are chronically understaffed, it can be concluded that next-gen SIEMs can not only help to increase productivity, but also better protect the company.

With its partner LogRhythm, TWINSOFT has one of the three market leaders in its portfolio, but it has the best price-performance ratio in comparison. Just contact us for a personal appointment or a demo!

Other news

NIS-2: Urgent need for action for companies – procrastination is expensive!
Is EU data in danger? What the new legal opinion reveals about US authorities accesses.
Annual Review: Company Newspaper TWINFO
Actively Shaping Digital Sovereignty: Practical Strategies for Companies
Digital sovereignty: Real status quo: risks, dependencies & current cases from Europe
Digital sovereignty: Why it is becoming the strategic pillar of modern IT security today
Discover everything
SIEM
SOC
Privileged access management
Darknet monitoring
Position image setting
Incident response
Vulnerability Management
Blue Teaming Consulting
Identity Access Management
Biometrics consultancy services
KRITIS advice
Penetration test
AD Vulnerability Management
Discover everything
Monitoring
Back-up and recovery
System architecture
Discover everything
Project organisation
Project management
Product evaluation
Application development
Operational support
Temporary employment
Freelancers

Link

Our TWINStory
Our partners
Our references
Our team
Our News
Our press work
Icon-facebook YouTube Icon-instagram icon-linkedine
IT/OT - Security
High availability
IT services

BioShare

Identity Management Suite
TWINJobs
TWINSOFT
Icon-facebook YouTube Icon-instagram icon-linkedine

Settlement of talks

Arrange a non-binding discussion with us. Get to know our service and services. We are happy to assist you with advice and action.

Or contact us at

Tel. +49 2101 – 300 40

Email info@twinsoft.de

Icon-facebook Icon-Youtube Icon-instagram icon-linkedine

Your data will be treated confidentially by us. We use their Data Only for contact

Always stay up to date!

Subscribe to our newsletter and receive regular news about TWINSOFT – our services, products, events and exclusive insights.