Improving security management with SIEM
Organizations within their risk management activities implement a SIEM (Security Information and Event Management) systems to ensure information security. These systems evaluate data from applications within the IT environment of the organization and based on that decide whether there is a security incident or not. The authors of the article are dealing with the possibilities of improving SIEM systems and also propose a method based on filtering of SQL queries to achieve better performance characteristics of these systems.
Martin is auditor of information security according to ISO 27001. He has worked as an IT consultant at KPMG, where he worked on security projects for major companies in the telecommunications industry and the public sector. Before that he worked at Atos IT Solutions and Services, s.r.o., Where he also participated in security projects, he was responsible for implementation of information security management system according to ISO 27001 and optimizing processes of information security management.
Besides his job duties he is dedicated to postgraduate studies at the Faculty of Informatics and Statistics at the University of Economics.
Zora is dedicated to project management, IT quality management (including information security). She has extensive practical experience in the management of large-scale implementation projects, where in addition to the implementation of application software solved the problems of system integration and security from the companies such as Unipetrol , Siemens IT Solutions and Services or ATOS IT Services and Solutions. She is currently docent in the Department of Applied Informatics at the University of South Bohemia in the Ceske Budejovice and the Faculty of Informatics and Statistics, University of Economics.
Libor is head of the Department of Applied Science at the University of South Bohemia in the Ceske Budejovice. He was involved in architecture and safety of several IT projects in banking and telecommunications. He deals mainly with the security of telecommunication systems. He is also the auditor of security of information systems according to ISO 27001.
He has written a number of publications in the field of computer network security, digital signature and PKI. Led joint cross-border project between the University of South Bohemia and the University of Passau in Digital Humanities.