What Security Engineers Hate About SIEM

From securityboulevard.com


The security information and event management (SIEM) capabilities required to meet the demands of today’s data-intensive and threat-laden business environments are only now becoming a reality. As an industry, we have reached a point where the SIEM platforms of yesteryear are too difficult to deploy, too slow to react and too expensive to meet the needs of modern security teams. 

Back when I was a security engineer at companies like Airbnb and Yahoo, I experienced firsthand the challenges of legacy SIEMs. I’m not the only one; modern security practitioners aren’t shy about discussing the challenges and capabilities of their current SIEM solution. 

Read more…