IT Glossary > Security Information And Event Management (SIEM)

Security Information And Event Management (SIEM)

Security information and event management (SIEM) technology provides two main capabilities: security information management (SIM) and security event management (SEM).

Security information management (SIM) provides log management—the collection, reporting and analysis of log data—to support regulatory compliance reporting, internal threat management and resource access monitoring.

Security event management (SEM) processes event data from security devices, network devices, systems and applications in real time to provide security monitoring, event correlation and incident response. The technology can be used to discover activity associated with a targeted attack or a security breach, and is also used to satisfy a wide variety of regulatory requirements.

Contact Gartner

IT Glossary

DEFINING THE IT INDUSTRY

Security Information And Event Management (SIEM)

Gartner Blog Network