| Channel | Publish Date | Thumbnail & View Count | Download Video |
|---|---|---|---|
 | Publish Date not found |  0 Views |
#shorts #siem #soc
FREE Cybersecurity Course for Beginners – https://deft-crafter-265.ck.page/a3e5ab43fc
What is the difference between SIEM and a SOC?
SIEM stands for Security Incident Event Management and is different from SOC because it is a system that collects and analyzes logs sent to it or collected by the various systems in an organization.
It uses threat intelligence to determine if there is anything suspicious in these logs and flags any findings by sending alerts to the SOC.
The acronym stands for Security Operations Center and consists of people, processes and technologies designed to handle security events identified from SIEM log analysis.
Both technologies complement each other, with the SIEM analyzing log data to look for events that require the attention of the SOC team.
SOC team analysts examine alerts from SIEM systems and determine if further escalation is necessary.
Or they may simply be false alarms, where the SIEM alert is not as dangerous as expected and was incorrectly reported by the SIEM system.
For more information on SIEM vs. SOC, see my website for a detailed explanation:
https://cybersecuritykings.com/2020/07/18/what-is-the-difference-between-siem-and-soc/
Please take the opportunity to connect with your friends and family and share this video with them if you find it useful.
