Security Information and Event Management (SIEM) technology

Services

Security Information and Event Management (SIEM) technology

A security information and event management (SIEM) technology can help organizations detect and respond to security threats before causing any damage to their operations. Facing increased variety and volume of threats, staffing security operations teams continues to be a concern for organizations. A single SIEM solution can streamline workflow using multi-source log data to generate a single report that addresses all relevant logged security event.

How can Deloitte help?

Deloitte helps organizations assess and prepare their IT infrastructure, software and third parties by combining classical ethical hacking principles and technical security reviews with advanced services in which we adopt a similar approach to that of an attacker.

Our solutions

Fine-tune Correlation Rules
We team up with your security team to fine-tune the SIEM solution to your organization’s needs by enabling everything by default, observe the behaviour, and identify tuning opportunities to increase detection efficacy and reduce false positives.

Identify Compliance Requirements
We help organizations analyse the solution’s ability to support specific compliance.

Implement Response Plan
Security incidents can only be dealt with in a timely manner using an incident response plan. We can help organizations plan how the staff should be notified following a SIEM alert.

Monitor Access to Critical Resources
A SIEM tool should monitor various aspects of critical resources including privileged and administrative address, unusual user behaviour on systems, remote login attempts and system failure.

Content Development
SIEM solutions use real-time situational awareness for identifying, understanding, and responding to threats, which can detect, prioritize, and manage incidents as one SIEM approach through simplified operations and security remediation.

Our key differentiators

  • With the Deloitte service-delivery model, organizations benefit from seamless integration with their Security Operations Center (SOC) lifecycle management tasks.
  • We work with the latest open-source and commercial technologies. Also, we can also work with any technology an organization might already have deployed.
  • Distinction is based on feedback and ratings from end-user professionals who purchase, implement and/or use data loss prevention (DLP) and SIEM solutions.
For an in-depth exploration
of our cybersecurity expertise
Discover more

Contacts

Andrei Ionescu

Andrei Ionescu

Market Leader Consulting

Partner leading the Consulting and Risk Advisory service lines in the Romania & Moldova practice. Andrei has more than 20 years of experience in risk management, cyber risk, internal audit, fraud mana... More

Ramona Trusculescu

Ramona Trusculescu

Manager

Ramona is a Manager within the Indirect Tax Department of Deloitte Romania. She is currently leading the VAT compliance team, focusing on how to organize the indirect tax compliance processes in the m... More