SIEM - Technicalities

Security Information & Event Management

Networks that sit behind a firewall appear to be safe, however the firewall (in its basic form) is meant to block incoming and outgoing connections. However, there must be some openings in order to allow in certain traffic such as emails, access to websites, local data, local machines, printers, etc. Because of this, firewalls can never be 100% secure.

A SIEM (Security Information & Event Management) offers real-time analysis and visibility of security alerts generated by applications and network hardware. It does this by consolidating log files from many devices.

We have partnered with some of the leading SIEM providers to protect our customers and provide reports on potential security breaches. Technicalities offers SIEM as a cloud service, where we host the SIEM software in our data centre.