What’s In an ‘S’? Should MSSP Be Part of Your MSP?

Level 301

Security information and event management (SIEM) seeks to provide an overview of an organization’s IT security by collecting logs and other security-related documentation for analysis. SIEM systems generally work by gathering security-related events from end-user devices, servers, network equipment, etc., and forwarding events to a central system for inspection and alerting.

Join this session to learn SIEM tools for anti-virus protection, malware protection, web filtering, policy change management, endpoint modeling, email threat protection, vulnerability scanning, intrusion prevention, and log review. In addition to reviewing common tools, we will also discuss how to use intelligent agents to pass only relevant events into ConnectWise for incident response.

Round 3 | Thursday, Nov 09 | 10:15AM - 11:15AM

star_rate Add to Favorites