Chris Petersen to Present Reference Model for SIEM and How New Capabilities Provide Visibility into Enterprise Security Blind Spots
Boulder, Colorado, Sep. 28, 2010 – LogRhythm, the company that makes log data useful, today announced that CTO and Founder Chris Petersen has been invited to present his vision of next generation log and security information event management (SIEM) capabilities at the 2010 CSI Conference. Virtually every regulatory mandate and security standard that IT organizations must comply with requires visibility into the forensic cracks and crevices of a network. Mr. Petersen will outline a new reference model for SIEM that can provide unprecedented levels of visibility and awareness across the entire IT stack.
Mr. Petersen is a recognized industry expert on SIEM, Log Management, log analysis, IT Forensics, and IT security auditing. He has provided information assurance services to Fortune 500 clients as a senior IT consultant for two of the world’s leading consulting firms – PriceWaterhouseCoopers and Ernst & Young. Petersen was also among the first employees at managed security services pioneer Counterpane Internet Security. As a faculty member with the Institute for Applied Network Security, he led intrusion detection and SIEM workshops for Global 1000 enterprises across the United States. Petersen holds a degree in accounting/information systems from Colorado State University.
“The historic approach to SIEM, which focuses on event-only correlation of data, assumes IT and security professionals know what they are looking for and is inherently limited in its scope of visibility,” said Chris Petersen, founder and CTO of LogRhythm. “Next generation log management and SIEM is uniquely positioned to provide a much broader view of threats by collecting more forensic data, filling visibility gaps, reverse engineering the operating environment, and applying a combined analytical approach spanning statistical, behavioral, and correlative techniques. These capabilities are required to effectively and accurately detect sophisticated intrusions like Advanced Persistent Threats and insider threats such as embezzlement, IP theft, etc.”
Mr. Petersen’s session will discuss the shortcomings of the historic approach to SIEM, and explain a new SIEM reference model that provides unprecedented levels of visibility and awareness into the IT environment enabling revolutionary capabilities in the detection of insider threat, misuse, and sophisticated intrusions.
CSI 2010 Conference:
Gaylord National Convention Center-
National Harbor, MD
Friday, October 29, 2010 at 10:00 AM