Security Information and Event Management systems (SIEM) allow central information processing from a variety of source types (security systems, network devices, operating systems, applications). The information collected is normalized, filtered, correlated and analyzed, giving an insight into the security status of monitored systems, allowing for easy identification of threats. SIEM systems include also alerting and reporting mechanisms, allowing identifying potential fraud and security weaknesses and enabling appropriate response to security incidents.
Alien Vault Unified Security Management (USM)
AlienVault Unified Security Management (USM) goes beyond traditional SIEM software with all-in-one security essentials and integrated threat intelligence so you can accelerate threat detection in your cloud, hybrid cloud, and on-premises environments. Unlike other SIEM software, AlienVault® Unified Security Management™ (USM™) combines powerful SIEM and log management capabilities with other essential security tools—including asset discovery, vulnerability assessment, and intrusion detection—to give you centralized security monitoring.