SIEM
Security Information and Event ManagementDefinition
SIEM is a security solution that aggregates and analyzes log data from across an organization's IT infrastructure to detect anomalies, threats, and security events in real time.
Buyer context
SIEM is where logs and detection rules often live. For managed services, the buyer needs to know whether the provider brings its own SIEM, works inside the buyer's SIEM, charges by data volume, writes detection content, and handles log source onboarding.