March 10, 2010

Security Information Management (SIM) Success Stories and Case Studies

Examples, insight and guidance from expert users at organizations who have implemented Security Information Management (SIM, including SEM/SIEM). Benefit from these users' SIM-specific lessons learned, mistakes and tips while learning about SIM costs, benefits and technical implementation details. These success stories and case studies are some of the most popular Resources in the SIM Resource Guide.

A Practical Application of SIM/SEM/SIEM Automating Threat Identification
A 39-page Resource on the key aspects of SIM implementation, including two case studies. From the Resource: "In this case, using a SIEM allows the company's security team (2 people in an IT staff of 5), to respond to 170 critical and major alerts per day (likely to decrease as the worst offenders are firewalled out, and the worst offenses dealt with), rather than nearly 400,000."
David Swift, SANS Institute

Career Education Corp. Gets Smart on IT Security
An in-depth look at an organization's success implementing SIM. Includes detailed implementation information and quantification of benefits including, "Among the many benefits of CEC's estimated $ 400,000 [SIM] investment are SOX compliance and comprehensive reporting, combined external and internal threat management, improved security-threat response time, and increased ROI on IT resources."
Michael Gabriel, Career Education Corporation

Centralizing and Analyzing Security Events: Deploying Security Information Management Systems
A clear and interesting look into Towson University's SIM deployment. Includes results, impact and recommendations. Case study starts on silde 16. SIM benefits from the presentation include, "Greatly reduces false positives, defines effective mitigation responses, provides quick and easy access to audit compliance reports, ability to visualize attack path, ID source of threats, and make precise recommendations for removal of threats."
Lynn Ray, Towson University

« 1 | 2 | 3 | 4 | next »