the State of Security

event management

Thumbnail image for SIEM Alone Won’t Save Us from the Holiday Noise (or the Fruit Cake!)

SIEM Alone Won’t Save Us from the Holiday Noise (or the Fruit Cake!)

by Crystal Miller

Holidays are great at revealing the lies we tell ourselves. The wish lists are long, the calendar is overbooked and yet we are still smiling. We depend and blindly trust that our data is logged and our events are managed on our devices.  In the case your cell phone goes missing, would you be able to [...]

Read More

Using PCI Compliance As a Business Driver

by Cindy Valladares

Here at Tripwire we get many great customer success stories, so I’ve decided to start a series of blog posts that bring those stories to you. This week’s post focuses on a The Logic Group, a large payment processor in the UK. Organization The Logic Group solutions process in excess of three billion credit and [...]

Read More

The Evolution of Security Information and Event Management (SIEM)

by Cindy Valladares

A few weeks ago, eIQnetworks commissioned a survey of security professionals. According to the press release, “the SIEM approach of relying entirely on logs and other event-based information to effectively address modern enterprise threats is now dead.” There was a lot of reaction from analysts, bloggers and influencers on the ‘SIEM is dead’ affirmation. Here [...]

Read More

Cancer and security breaches

by Dwayne Melancon

I’m a cancer survivor, and it strikes me that cancer and IT security breaches have something in common: early detection is crucial. You see, 11 years ago, I caught my cancer (malignant melanoma) fairly early, it was treated quickly, and I’ve had no recurrence since then. This was possible because a) my wife noticed something [...]

Read More

RSA 2010: Proving the Worth of Security Metrics with Real-World Data

by David Spark

David Spark here reporting for Tripwire at the 2010 RSA Conference in San Francisco. Your organization is measuring an endless stream of data. You could get buried trying to look at it all. The question is, “Why are you looking at it all?” Shouldn’t you just be looking at the good stuff? The stuff that [...]

Read More

RSA 2010: If you don’t look at your log data, how are you going to catch data breaches?

by David Spark

David Spark here reporting for Tripwire at the 2010 RSA Conference in San Francisco. I spoke with Bob Russo, General Manager of the PCI Security Standards Council, about the common practice of companies turning on their server logs, just because they need to for compliance, and then never actually looking at it. It’s kind of [...]

Read More

← Previous Entries