Information Technology

Gartner Glossary

Security Information And Event Management (SIEM)

Security information and event management (SIEM) technology supports threat detection, compliance and security incident management through the collection and analysis (both near real time and historical) of security events, as well as a wide variety of other event and contextual data sources. The core capabilities are a broad scope of log event collection and management, the ability to analyze log events and other data across disparate sources, and operational capabilities (such as incident management, dashboards and reporting).


Experience Gartner virtual conferences

Master your role, transform your business and tap into an unsurpassed peer network through our world-leading virtual conferences.

Gartner Webinars

Expert insights and strategies to address your priorities and solve your most pressing challenges.