Macnica /Security information that's good to know!

Here, we would like to introduce you to useful articles picked up from the "Featured Articles" section of our website!

• Before introducing SIEM and SOAR! Visualization of security operation status using a framework
• 10 Essential Features of a Modern SIEM

1. Before introducing SIEM and SOAR! Visualization of security operation status using a framework

We often hear from security operators in the field that security operations have become difficult, that there is a lot of work to begin with, that there is a lot of work on holidays and at night, that the workload is concentrated due to a shortage of manpower, and so on. There are many problems that must be solved, but what should I start with...

As the first step in solving on-site issues, we will introduce how to organize and improve issues using the security framework.

We also have a video that summarizes the case study of organizing and improving security operations by utilizing the framework, so please take a look.

• Click here for details

2. 10 Essential Features of a Modern SIEM

Since the 1990s, SIEM has been introduced to SOCs as a security operation infrastructure. However, in reality, it requires specialized skills and is difficult to operate in-house.... Furthermore, traditional SIEM has a very high signal-to-noise ratio, so it has been downgraded to meet compliance requirements and is rarely used for more than that. The current situation is that there is none.

Modern SIEMs are now able to apply new solutions to areas of security that were not possible with traditional SIEMs.
However, there are many SIEMs on the market that do not have the necessary functions to solve the problems in the field, despite being labeled as "next generation". Today, we would like to introduce 10 functions that are essential for a “next-generation SIEM solution”.

• Click here for details