Services Australia
Implementing SIEM and SOAR Platforms Executive Guidance
Pages
6
Time to read
11 mins
Publication
Language
English
Pages
6
Time to read
11 mins
Publication
Language
English
This guide provides executive-level guidance on the implementation of Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms. It explains the value of these platforms in enhancing visibility and detection of cyber security events, as well as their role in incident response. The document outlines the operational challenges associated with implementing SIEM and SOAR, emphasizing the need for skilled personnel to configure and maintain these systems effectively. Additionally, it presents high-level recommendations for executives, including considerations for in-house versus outsourced implementation, potential hidden costs, and the importance of ongoing training and support. The guide aims to assist decision-makers in understanding the complexities of these technologies and making informed choices regarding their deployment within their organizations. Overall, it serves as a comprehensive resource for organizations evaluating SIEM and SOAR solutions.