Security information and event manager with ticketing system
With today’s need for increased security more and more security devices are being integrated into enterprise networks. This makes the task of reviewing logs from different network devices in the network a tedious task especially when signature based detection might pick up a lot of false positives....
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Animo Repository
2012
|
| Online Access: | https://animorepository.dlsu.edu.ph/etd_bachelors/14793 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | De La Salle University |
| Language: | English |
| id |
oai:animorepository.dlsu.edu.ph:etd_bachelors-15435 |
|---|---|
| record_format |
eprints |
| spelling |
oai:animorepository.dlsu.edu.ph:etd_bachelors-154352021-11-23T07:09:30Z Security information and event manager with ticketing system Galinato, Joseph G. Mantua, Jonathan C. Tan, Lee Mikhael B. Valencia, Jan Marvin P. With today’s need for increased security more and more security devices are being integrated into enterprise networks. This makes the task of reviewing logs from different network devices in the network a tedious task especially when signature based detection might pick up a lot of false positives. Also, SIEMs can help organizations with their regulatory compliance reports and internal auditing. This task is made easier by using Security Information and Event Manager (SIEM). SIEM parses, correlates, alerts and stores reports to be analyzed by the correlation engine of the SIEM so that only the report or a set of reports that needs attention will be presented to the analysis in a central interface. The main of this project is to develop SIEM to address the problems of centralization of security management, regulatory compliance reports, and networks security auditing. The project will be composed of four main components, the parser, the data storage, correlation engine and the user interface. A further motivation for the proponents to develop a SIEM is the lack of accessibility to the general public due to the high price tag that is associated to SIEMs. 2012-01-01T08:00:00Z text https://animorepository.dlsu.edu.ph/etd_bachelors/14793 Bachelor's Theses English Animo Repository |
| institution |
De La Salle University |
| building |
De La Salle University Library |
| continent |
Asia |
| country |
Philippines Philippines |
| content_provider |
De La Salle University Library |
| collection |
DLSU Institutional Repository |
| language |
English |
| description |
With today’s need for increased security more and more security devices are being integrated into enterprise networks. This makes the task of reviewing logs from different network devices in the network a tedious task especially when signature based detection might pick up a lot of false positives. Also, SIEMs can help organizations with their regulatory compliance reports and internal auditing. This task is made easier by using Security Information and Event Manager (SIEM). SIEM parses, correlates, alerts and stores reports to be analyzed by the correlation engine of the SIEM so that only the report or a set of reports that needs attention will be presented to the analysis in a central interface. The main of this project is to develop SIEM to address the problems of centralization of security management, regulatory compliance reports, and networks security auditing. The project will be composed of four main components, the parser, the data storage, correlation engine and the user interface. A further motivation for the proponents to develop a SIEM is the lack of accessibility to the general public due to the high price tag that is associated to SIEMs. |
| format |
text |
| author |
Galinato, Joseph G. Mantua, Jonathan C. Tan, Lee Mikhael B. Valencia, Jan Marvin P. |
| spellingShingle |
Galinato, Joseph G. Mantua, Jonathan C. Tan, Lee Mikhael B. Valencia, Jan Marvin P. Security information and event manager with ticketing system |
| author_facet |
Galinato, Joseph G. Mantua, Jonathan C. Tan, Lee Mikhael B. Valencia, Jan Marvin P. |
| author_sort |
Galinato, Joseph G. |
| title |
Security information and event manager with ticketing system |
| title_short |
Security information and event manager with ticketing system |
| title_full |
Security information and event manager with ticketing system |
| title_fullStr |
Security information and event manager with ticketing system |
| title_full_unstemmed |
Security information and event manager with ticketing system |
| title_sort |
security information and event manager with ticketing system |
| publisher |
Animo Repository |
| publishDate |
2012 |
| url |
https://animorepository.dlsu.edu.ph/etd_bachelors/14793 |
| _version_ |
1718383367942045696 |