CLOUD-BASED SIEM DATA SECURITY: CHALLENGES AND BEST PRACTICES FOR PROTECTING INFORMATION IN THE CLOUD

Abstract

Security Information and Event Management (SIEM) systems enable enterprises to gather, store, and assess information security across the business IT and notify security teams of any potential threats. With organizations migrating most of their workloads to the cloud, they require these security systems to migrate with them. Cloud-based SIEM (SIEM-as-a-service) bolsters the security of SIEM consumers by offering great flexibility, potency, and convenience to manage security threats across on-premises and cloud averments. Nevertheless, like any other technology, Cloud-based SIEM is faced with challenges and limitations associated with cost, scalability, data management, false positives, and integration. Thus this review explains the various challenges faced by Cloud-based SIEM and the best practices for securing these data infrastructures.