Självklart finns "Cloud computing", "Social computing" och Grönt IT med, dvs det som ligger i tiden men det som är relelevant inom säkerhet är "Security – Activity Monitoring" som jag tolkar som logghantering dvs SIEM.

Här följer ett utdrag

"Security – Activity Monitoring. Traditionally, security has focused on putting up a perimeter fence to keep others out, but it has evolved to monitoring activities and identifying patterns that would have been missed before. Information security professionals face the challenge of detecting malicious activity in a constant stream of discrete events that are usually associated with an authorized user and are generated from multiple network, system and application sources. At the same time, security departments are facing increasing demands for ever-greater log analysis and reporting to support audit requirements. A variety of complimentary (and sometimes overlapping) monitoring and analysis tools help enterprises better detect and investigate suspicious activity – often with real-time alerting or transaction intervention. By understanding the strengths and weaknesses of these tools, enterprises can better understand how to use them to defend the enterprise and meet audit requirements."

Läs mer om detta hos Gartner

Inlägget postades torsdag 22 oktober 2009 klockan 15:58 och finns under SIEM. Du kan följa kommentarer till detta inlägg via RSS 2.0 flödet. Du kan lämna en kommentar, eller trackbacka från din egen hemsida.