Select and Implement a SIEM Solution
Optimize IT security management and simplify compliance with SIEM tools.
Onsite Workshop
A poorly selected SIEM selection and implementation process will result in:
- Wasted investments in a wrong-sized SIEM solution
- Weak insight into the organization’s network
- Poor management of incoming threats into your organization’s systems
A properly implemented SIEM product, after careful selection, will allow for:
- Clear understanding of the threats facing your organization’s network
- Critical insight through advanced correlation techniques, which cannot be done by humans alone
- High ROI on your SIEM product through the prevention and detection of security threats
Module 1: Launch the SIEM selection project and analyze SIEM requirements
The Purpose
- Identification of the drivers behind the SIEM procurement.
- Identification of the scope and purpose of the project.
- Discussion of the current state of the SIEM market.
Key Benefits Achieved
- Launch of your SIEM selection project.
- Aligned requirements between IT and the business.
Activities: | Outputs: | |
---|---|---|
1.1 | Identify the drivers behind SIEM |
|
1.2 | Assess fit of SIEM to your organization |
|
1.3 | Complete procurement project charter |
|
1.4 | Collect business requirements and review use cases |
|
Module 2: Shortlist SIEM vendors and plan the procurement process
The Purpose
- Creation of a shortlist based on needs.
- Creation of an RFP for your solution and evaluation of completed RFPs.
- Completion of a contract review to select your SIEM solution.
Key Benefits Achieved
- Shortlist of your vendors based on your requirements.
- Selection of a vendor after writing a successful RFP and reviewing the contract.
Activities: | Outputs: | |
---|---|---|
2.1 | Review of the SIEM Vendor Landscape and shortlisting of vendors |
|
2.2 | Creation of an RFP |
|
2.3 | Evaluation and scoring of sample RFPs |
|
2.4 | Review of final contracts |
|
Module 3: Plan the SIEM implementation
The Purpose
- Creation of metrics needed to assess the final SIEM product.
- Optimization of the SIEM solution design.
- Implementation of unique SIEM capabilities.
Key Benefits Achieved
- Plan of the implementation of the SIEM solution.
- Determination of the evaluation of the final SIEM solution.
- Defined next steps for passing SIEM handling to Operations.
Activities: | Outputs: | |
---|---|---|
3.1 | Creation of an implementation plan |
|
3.2 | Design of the SIEM architecture |
|
3.3 | Implementation of a pilot process |
|