Exploration of Open Source SIEM Tools and Deployment of an Appropriate Wazuh-Based Solution for Strengthening Cyberdefense

Exploration of Open Source SIEM Tools and Deployment of an Appropriate Wazuh-Based Solution for Strengthening Cyberdefense

연구 분야: Safety

학회: 2024 10th International Conference on Control, Decision and Information Technologies (CoDIT)

In an ever-evolving digital landscape, the significance of robust cybersecurity measures continues to grow. This paper explores the efficacy of fortifying organizational defenses through the adoption of open-source Security Information and Event Management (SIEM) solutions. Through a comprehensive analysis, it is revealed that Wazuh emerges as the optimal choice due to its notable attributes including reliability, cost-effectiveness, high endpoint availability, robust file monitoring capabilities, intrusion detection prowess, and scalability. These findings offer valuable insights for organizations seeking to bolster their cybersecurity infrastructure, empowering them to make informed decisions regarding the integration of Wazuh into their security frameworks.