Gartner identifierar top 10 strategiska teknologier inför 2010
Postad av Radoslav i SIEMSjälvklart finns "Cloud computing", "Social computing" och Grönt IT med, dvs det som ligger i tiden men det som är relelevant inom säkerhet är "Security – Activity Monitoring" som jag tolkar som logghantering dvs SIEM.
Här följer ett utdrag
"Security – Activity Monitoring. Traditionally, security has focused on putting up a perimeter fence to keep others out, but it has evolved to monitoring activities and identifying patterns that would have been missed before. Information security professionals face the challenge of detecting malicious activity in a constant stream of discrete events that are usually associated with an authorized user and are generated from multiple network, system and application sources. At the same time, security departments are facing increasing demands for ever-greater log analysis and reporting to support audit requirements. A variety of complimentary (and sometimes overlapping) monitoring and analysis tools help enterprises better detect and investigate suspicious activity – often with real-time alerting or transaction intervention. By understanding the strengths and weaknesses of these tools, enterprises can better understand how to use them to defend the enterprise and meet audit requirements."
Inlägg (RSS)