Siemplify Technical Account Manager Arnaud Loos is back with another whiteboard, this one building on his previous discussion around the value of Elasticsearch and the ELK Stack for your security operations. This talk goes beyond the theory and into specific examples of products you can use to build an “open-source” security operations center.
A security operations center (SOC) is responsible for preventing any cybersecurity breaches in an organization’s network. This huge undertaking involves a team of analysts, engineers and managers tracking all activity on a company’s or enterprise’s networks, databases, servers, sites and other connected systems. With so many moving parts, keeping track of security operations and ensuring that everything works together cohesively is a considerable challenge to many businesses.