Enterprise IT Context for the CTO

Bob Gourley

Subscribe to Bob Gourley: eMailAlertsEmail Alerts
Get Bob Gourley via: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn

Blog Feed Post

FireMon: Immediate Insight

Security Information and Event Management, SIEM, is a term used for software products and services, combining security information management (SIM) and security management (SEM). A significant investment has been made in SIEM to automate and scale data analysis, to improve security and ensure regulatory compliance. However, SIEM has the constant struggle to fully deliver on the promise of data-driven security processes and organization.

As much as possible, SIEM has automated security event analysis, but when responding to an incident, human interpretation and decision making is still required – what is now being called the ‘human layer’ of security. An abundance of false positives become the result of the attempt to fully automate human interpretation and decisions with definitive answers. A solution to this problem is FireMon’s Immediate Insight. Immediate Insight streamlines the human layer, enabling security teams to speed up event triage and incident response, thus extending the value of the existing full-featured SIEM.

Immediate Insight adds to SIEM implementation without replacing it. It merges machine learning, correlation and natural language in a simple, workflow-centric interface. It delivers out-of-the-box data discovery without the administrative and operational complexity. FireMon’s Immediate Insight requires no customization and tuning and provides immediate usability and actionable data to investigate the unknown. Read more about Immediate Insight here.

Screen Shot 2015-09-10 at 3.25.00 PM

For more information on FireMon’s Immediate Insight click here.

Stay tuned for the next Immediate Insight white paper.

Read the original blog entry...

More Stories By Bob Gourley

Bob Gourley writes on enterprise IT. He is a founder of Crucial Point and publisher of CTOvision.com