Category: Operations and Maintenance

The Grass Isn’t Always Greener

It is amazing the number of times I hear of organizations switching from one SIEM platform to another, only to have the exact same problems that caused them to switch in the first place. I am here to tell you that the grass is not always greener on the other side. Some of you might be familiar with the 1993 Harold Ramis film “Groundhog Day”, starring Bill Murray and Andy MacDowell. For those that are not, here is the general theme, a weatherman gets stuck in Punxsutawney, Pennsylvania and relives the same day over and over, only to realize…

HPE ArcSight code analyzed by Russia

What revelations does this bring and what you should do about it. ALBUQUERQUE, NM. – October 3, 2017 – Yesterday Reuters published a special report titled “HP Enterprise let Russia scrutinize cyberdefense system used by the Pentagon.”  The synopsis is that for a software company to sell products to the Russian government, it must be certified by the Federal Services for Technical and Export Control (FSTEC of Russia) and HPE had an “independent” third-party firm, Echelon, with known ties to the Russian Government, evaluate ArcSight source code for vulnerabilities to insure the code was safe for Russian…

The True Cost of Running a SIEM

By Guest Blogger, David Humphrey In this day and age of; “plug-and-play”, the need for instant online gratification, and appliances that encapsulate all of the functionality you need in one convenient shiny wrapper, the idea of installing a SIEM into the corporate environment is not met with that much trepidation.  After all, how bad can it be?  Everything is made to work with everything else out there, and implementing a SIEM should not be that much of a challenge.   The perception that much of our IT management have is that implementing new IT functionality will…

5 Reasons Why Your SIEM May Fail You

Tired of trying to fix your SIEM all by yourself?  Hire the experts. Let’s face it, audits are not fun.  The piles of paperwork, the tedious detail and the crazy questions that seem to come out of left field around reasonable controls just add insult to injury. If you think about it, passing an audit is as much about process as it is about making sure your house is in order. Anyone that has tried to buy or sell a home knows the stress and uncertainty that comes from a home inspection.  Maybe you see…

Stop The Madness!

This March watch the games while we watch your SIEM. March Madness, that one time of year when casual college basketball fans pretend to become expert bracketologists.  Where else can you find the sleep deprived and bleary-eyed fumbling about for coffee and any other stimulant to justify staying up until 2AM to watch the end of a basketball game?  The answer?  In information security.  Case in point; last Sunday, while Oregon and St. Josephs were playing, one of our client’s HP ArcSight ESM environments had a significant issue.  At 11:45PM EDT, their ESM…