One of the most difficult tasks facing government CIOs is being able to detect and deter the myriad threats against agency networks and sites. The other difficult task they face is being able to sort through the reams of data sheets, product spec sheets, and marketing materials to determine the best solution to support the agency in pursuit of its mission. According to this recent article by Scott Montgomery, vice president and chief technology officer of public sector at McAfee, the Department of Defense (DoD) has made this task a little easier through the creation of the Unified Capabilities Approved Product List (UC APL), which includes McAfee’s SIEM solution, Enterprise Security Manager, the first SIEM product to undergo testing and secure DoD approval.
When solution selection is simplified by DoD’s seal of approval based on testing by DISA, agencies can be assured that the SIEM solution they choose is not only a strong event management system, but one that is mission-ready.
As Scott points out in his piece, SIEM is essential to ensure security in the age of big data because they enable network analysts to “keep pace with network demands and be able to detect threats in real time.” To read more about why SIEM solutions provided an enhanced level of cyber security in the age of big data click here…
Scott Montgomery is vice president and chief technology officer of public sector at McAfee. You can catch up with Scott over on his blog.