Dashboards on SIEM

What are The Types of Dashboards in a SIEM Solution?

Dashboards are an integral component of any effective SIEM solution. After log data is aggregated from different sources, a SIEM solution prepares the data for analysis after normalization. The outcomes of this analysis are presented in the form of actionable insights through dashboards. Many SIEM solutions come with pre-configured dashboards to simplify the onboarding process for your team. Besides, an ideal solution should also allow an organization to customize dashboards as per its requirements. In this article, we discuss various types of dashboards available on Logsign SIEM.

Continue reading

customize your reports on SIEM

How to Customize a Report on Logsign SIEM?

In the last article, we discussed various types of reports a SIEM solution offers. We also threw light on how reports are arranged block-wise on Logsign SIEM along with other features. In this article, we explore how you can customize an existing report to suit your requirements. To start with, go to the Reports and Analysis section and select any report that you wish to customize.

Continue reading

Understanding SIEM Reporting

What are the Types of Reports on a SIEM Solution?

A Security Information and Event Management (SIEM) solution collects log data from numerous sources within your technical infrastructure. This acquisition and normalization of data at one single point facilitate centralized log management. It allows businesses to generate reports containing security information about their entire IT infrastructure. Reporting, out of many benefits of a SIEM solution, also helps businesses in fulfilling their documentation and compliance requirements. In this article, we explore various types of reports on a SIEM solution.

Continue reading

Cyber-Kill-Chain

How Cyber Kill Chain Can Be Useful for a SOC Team? (Part 1)

Introduction

The world is being digitalized more and more. The technological advancements both in terms of hardware and software are grabbing the attention of cyber criminals towards enterprises of each size (e.g., small, medium, and large). The attackers use a complete chain or number of stages to launch a cyber-attack. A Cyber Kill Chain defines all these potential stages and the SOC team can use them to identify, detect, prevent, and contain attack before it causes real damage to the organization.

In this article, we will explore what is a Cyber Kill Chain and how is it useful for a SOC team.

Continue reading