The SECUINFRA SIEM Experts Team is specialized in the areas of “Managed SIEM” and “Co-Managed SIEM”.
The team not only performs the classic operational SOC activities such as analyzing and evaluating SIEM alerts or threat hunting, but also designs, implements and operates the SIEM environments. This includes SIEM system maintenance, use case development and enhancement including creation and maintenance of audit log policies and runbooks as well as monitoring of log source connectivity.
As a further added value for our customers, our SIEM experts not only forward detected security incidents, but also support the incident response activities with detailed analysis information and instructions for action.
In contrast to SIEM, log management plays a rather subordinate role in the IT security context. This is not entirely justified, because it offers many advantages that are otherwise associated with the topic of SIEM.
In the course of SIEM implementations, one of the biggest challenges for companies is to answer the question of which attack scenarios should be detected by the SIEM system and how these attack scenarios should be prioritized.