Welcome Serena Central users! CLICK HERE
The migration of the Serena Central community is currently underway. Be sure to read THIS MESSAGE to get your new login set up to access your account.

The importance of being a SIEM Security Use Case

The importance of being a SIEM Security Use Case

 "Every Journey starts with a single step"

A SIEM Security Use Case is this first single step in the, increasingly more important, task of identifying threats in our corporate environment.

We can define a Use Case as a business requirement or a (security) problem that needs to be solved. In order to solve this problem, SIOC Content Developers and analysts need a starting point, direction, a structure, a metodology, an objective; all these provided by a good Use Case definition process.

Micro Focus provides a good SIEM Use Case template for reference that can be leveraged to build Use Cases to detect different threat vectors that will trigger actionable SIEM alerts withing the SIOC incident response workflow.

Labels (2)

DISCLAIMER:

Some content on Community Tips & Information pages is not officially supported by Micro Focus. Please refer to our Terms of Use for more detail.
Comments
Top Contributors
Version history
Revision #:
7 of 7
Last update:
‎2019-11-07 11:25
Updated by:
 
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.