Security information and event management (SIEM) solutions have been around since 2000, and they were developed with the goal of helping organizations in the early detection of targeted attacks and data breaches. Needs cut across analyzing event data in real time to the collection, storage and analysis of log data for incident forensics and regulatory compliance. While these solutions hold out tremendous promise, are they failing to deliver? Has SIEM lost its magic?
According to a recent Gartner report written by Oliver Rochford implementing SIEMs continues to be fraught with difficulties, with failed and stalled deployments common.