|
Cost Effective Security Information & Event Management (SIEM) for Small and Medium-Sized Enterprises
|
|
| Author:
|
ALI ELGENEIDY, NOR AZLINA ABD RAHMAN, JULIA JUREMI
|
| Abstract:
|
Cyber security threats are increasing manifold, largely respective to the size of the organization. To defend
against such threats, an organization must acquire proper security threat detection and incident handling
capabilities. The vast majority of small & medium-sized enterprises lack a Security Information & Event
Management (SIEM), which serves as the heart of a proper threat detection& incident handling process. The
main cause for such lack is the constrains of cost in enterprises of such size, leaving them prone and vulnerable
to advanced cyber threats more than ever by reverting to legacy security measures (e.g. port-based firewalls &
signature-based IPS) for protection against the expanding cyber threat landscape. Therefore, a modular SIEM
system is proposed aiming at enhancing the security of small & medium sized enterprises at no cost by utilizing
open-source modules, bringing modern security to the organization, allowing it to stand a better chance at
securing and defending its portion of cyberspace. The proposed SIEM system demonstrates rapid data
collection, analytics, & visualization lending itself to aiding the organization in responsively and proactively
monitoring and analyzing threats and incidents, while providing vulnerability management & host monitoring
capabilities.
|
| Keyword:
|
Host Monitoring, Intrusion Detection, Network Monitoring, Network Security, Security Information & Event Management, Threat Detection, Vulnerability Assessment
|
| EOI:
|
-
|
| DOI:
|
https://doi.org/10.31838/ijpr/2020.12.02.0134
|
| Download:
|
Request For Article
|
|
|