Tag Archives: SANS

SEIM Many Logging Options – What to Do?

Log and Security Event Information Management are two of the 20 Controls that SANS lists for network security. They are also some of the more controversial ones. Logs are very much like digital fingerprints for one’s network and applications. It has great value for both noticing exploits (visibility) and forensically investigating those which have already […]