Enterprise Information Technology Services: Home

access and security

Office of Information Security

Security Information and Event Management (SIEM)

The Office of Information Security uses the SEIM to send notices to DNLs when threats are detected. DNLs can use the SIEM to pro-actively monitor their networks for malicious activity.

To give each department an in-depth view of their network activity, our SIEM correlates event logs from multiple devices on campus such as:

  • FireEye
  • Trend Micro OfficeScan
  • the Intrusion Detection and Prevention systems on the Athens campus border
  • SNORT
  • firewalls
  • NeXpose

Access

Screen Shots

This series of screen shots illustrates the richness of information to be found in the SIEM. Click on the caption above each image to open a larger version in a new window.

Figure 1: The SIEM Dashboard

Example screenshot of the SIEM dashboard.

Figure 2: Searching logs in the SIEM

Example log search.

Figure 3: Viewing events in the SIEM

Example shot of screen where events are viewed.

Figure 4: Vulnerabilites Example 1

Screen displaying example vulnerabilities.

Figure 5: Vulnerabilities Example 2

Screen displaying example vulnerabilities.