This talk explains one of the ways to build an Security Incident and Event Management (SIEM) solution with FOSS tools.
Also, this will cover:
* Things to consider while building a solution
* Some lessons learnt
* Pros and cons of using it versus buying a commercial solution
This post was submitted by prathap.