Design and implementation of security information event management (siem): a managed services approach
Along with the growing of computer networks, many companies especially small medium enterprise (sme) are experiencing disruption to their computer network security. Sme need faster incident response on disturbances on their network. Many sme do not have it experts who know about network security. The purpose of this research is to learn how to provide incident handling solution to help sme to handle of network security problem. To provide security incident handling solution we needtools for security monitoring, so if there are events that cause disruption on a computer network it will quickly be overcome. This research is using incident handling methodology (ihm) combined with incident handling framework (ihf) (choi, chun, lee, & lee, 2010) using intrusion detection and prevention system (idps) as part of security information event management (siem) solution. The results showed that idps combine with siem as part of managed service solution can provide services to customers in maintaining the security of their computer networks. From these results research can be concluded that siem can monitor the security of computer networks that can be relied upon, so if there is interference on the network can be known and addressed as early as possible.
M00276 | (wh) | Available |
No other version available