Security and Flexibility through SIEM and Monitoring

About the Program

Category: Information Technology (Best in Category)

Year: 2020

In today’s world, Information Security is of paramount importance. From ransomware to denial of service, bad actors are getting more clever and coordinated attacks are becoming more prevalent. With a limited budget, all organizations are finding the best means possible for securing the threat landscape – now, and as it rapidly evolves. The threat landscape has changed from simple perimeter protection to highly complex and pinpoint attacks. As a government agency, Oakland County must protect our citizens’ information - failing to do so would be a breach of public trust. Given the current threat landscape, Oakland County embarked on a project to launch a third party managed SIEM to provide detailed analysis on threat vectors while providing 24x7 support. To accomplish this goal, Oakland County has used a design with software and a third party provider of monitoring tools that provides us the dual capabilities of greater visibility into security events at Oakland County, both on premises and in the cloud visible with one “pane of glass”, as well as to provide compensating monitoring controls to infrastructure that otherwise would need to be vacated in an urgent timeframe – allowing us to better plan and test such a migration.