Implementing Best Practices to Achieve Compliance and Defend Against Persistent Threats

An Interview with Nemertes Research -- Podcast

Podcast Summary: Implementing Best Practices to Achieve Compliance and Defend Against Advanced Persistent Threats
Length: 7:43

• Introduction - Ted Ritter, Senior Research Analyst, Nemertes Research
• Relationship between compliance and security (0:22)
• Log management is not enough to meet compliance and defend against APTs (1:12)
• What to consider beyond just deploying Security Information and Event Management (SIEM) (3:07)
• Implement your own SIEM or use a cloud-based SIEM? Plus the value of SIEM (4:27)
• Key takeaways and advice (6:28)

About the Speaker

Ted Ritter is a Senior Research Analyst with Nemertes Research, where he conducts research, advises vendor and end-user clients, develops research reports and delivers strategic seminars.

A Certified Information Systems Security Professional (CISSP), Ted leads Nemertes' research on cloud, virtualization and data center with an emphasis on compliance, risk management, and business continuity/disaster recovery. He is also one of Nemertes' dedicated experts on virtualization security, Internet infrastructure, efficient data centers and Green IT.

>> Listen to the podcast

 

 

Frequently Asked Questions

Below are some commonly asked questions related to Implementing Best Practices to Achieve Compliance and Defend Against Advanced Persistent Threats. Please click on a question below to read the answer.

• Are log collection and periodic reviews enough to meet compliance?
• Is cross-platform correlation simply integration with user information as some Security Information and Event Management (SIEM) vendors would like us to believe, or should we expect more?
• What should I look for in a Security Information and Event Management (SIEM) and consider in implementing a SIEM?