Standing up and maintaining a SIEM solution is difficult and often involves vendor assistance to produce a functioning result. Multiple, complex appliances can leave security teams feeling they don't truly understand how to operate or customize their systems. Combine this situation with a shortage of available skills and a lack of simple documentation, and it is no wonder why SIEM deployments often fail. '
After listening to the feedback from SANS first SIEM course, SEC555, Blue Team experts John Hubbard and Justin Henderson created the new 2-day course ' SEC455: SIEM Design & Implementation. During this webcast, the authors and instructors will dive into the making of the course, business cases and justification for management support, and will open the floor for Q&A with the SIEM experts.