SIEM Best Practices for Advanced Attack Detection
![Cover Image](https://cdn.ttgtmedia.com/bitpipe/covers/1368540717_549_lg.jpg)
The industry has panned SIEM as overly expensive and under performing technology, and have used the products as glorified compliance reporting engines. But to be clear, it's not a technology problem, it's a process issue. In this tech tip, Securosis analyst Mike Rothman will outline a time tested process to build SIEM policies which actually alert on the attacks you need to protect against.