One of the most common issues in a SIEM is self-inflicted, time-consuming, log source setup and configuration tasks. Both new and longtime SIEM customers fall victim doing things the hard way that can and should start tackling these items with new tactics and automation.
Without a way to break this cycle, we end up working for our SIEM instead of the other way around. This webcast centers on new processes, automated scripts, and other items that take your time from working on configuration and parsing tasks to focusing on detection.
Learn more about SANS new resources for SIEM including SIEM courses SEC455 'and 'SEC555.
SIEM Webcast Series: How to Avoid the Most Common SIEM Implementation Mistakes