chapter2 final draft

Running Head: SIEM INTELLIGENCE IN CYBERSECURITY 1

SIEM APPLICATION IN CYBERSECURITY 5

The proposed topic

This project proposed the application of SECURITY INFORMATION AND EVENT MANAGEMENT(SIEM) in cybersecurity. This topic will explore the various benefits and opportunities within the topic considering the prevention of cyber-related incidents and attacks within the business setting. Over the years, businesses have progressed through the application of various technologies to meet consumer demands. These developments have offered businesses the ideal framework for accomplishing their goal, considering efficiency and reliability. However, numerous challenges have been witnessed considering business operations, success and reliability. These challenges relate to data and information security. Cyber-attacks have been reported involving numerous agencies, bodies and areas within the corporate sector (Fakiha, 2020). The quest for reliable interventions to handle cybersecurity challenges has prompted many businesses to research the best futuristic strategies to implement (Onwubiko & Ouazzane, 2019). Businesses that combine security and event management tasks create a framework that promotes efficiency in preventing breaches and strengthening their reliability. Therefore, using SIEM systems can help businesses collect information from multiple sources to supplement the management teams on the best intervention to consider following a reported incident from an information system dimension.

Plan of study

This study will focus on literature exploration. Using a literature analysis will help the researchers gather information about cybersecurity interventions' history and their effectiveness. Further, this approach will make it possible to collect vital data related to the application of SIEM systems within the business setting to prevent data breaches and strengthen security. Additionally, the literature review will empower the audience with sufficient information about the best strategies to leverage SIEM systems to prevent cyber-attacks.

Purpose of study

The purpose of this study is to gather insight into the potential benefits associated with using SIEM systems within the business environment from a cybersecurity perspective. These systems offer the ideal framework for collecting and presenting data from diverse areas to a central point to benefit the management in events coordination and cybersecurity strengthening. In addition, this study will gather evidence from the past literature to document the potential benefits that the systems will offer in preventing or managing cybersecurity challenges and goals.

Research question

This study will be governed by pillars through which data will be collected and analyzed. The primary research questions governing and guiding this project are:

RQ1: What is the effectiveness of applying SIEM systems in the corporate setting to manage cybersecurity challenges?

RQ2: What is the possibility of SIEM systems providing futuristic cybersecurity solutions to redundant problems over the existing approaches?

What gap are you filling?

The proposed project addresses one of the primary gaps in information systems management. As a result, many businesses have suffered breaches targeting crucial data and information systems. Numerous research projects have been executed to create solutions to prevent data breaches and cybersecurity incidents within the business sector. However, their effectiveness has been affected by the lack of a foundation for understanding the attack vectors and adapting to the new approaches used by perpetrators. Therefore, this solution will provide the ideal intervention for preventing cybersecurity challenges like data breaches within the business environment considering real-time data analysis from multiple dimensions to influence automated or manual response to anomalies through traffic analysis.

Methodology

This qualitative study will collect information from diverse sources (Aspers & Corte, 2019). The study will collect theoretical data about the current and previous cybersecurity challenges witnessed within the business sector. On the same note, the collected data will provide the ideal intervention for approaching information security management and resilience in the future, considering the coordination of stakeholders actions concerning cybersecurity challenges prevention (Majeed, ur Rasool, Ahmad, Alam & Javaid, 2019). On the same note, using a qualitative approach will provide the ideal approach for understanding the effects of the current cybersecurity challenges in response to the research questions mentioned above (Mohajan, 2018).

References

Aspers, P., & Corte, U. (2019). What is qualitative in qualitative research. Qualitative Sociology, 42(2), 139-160.

Fakiha, B. S. (2020). Effectiveness of Security Incident Event Management (SIEM) System for Cyber Security Situation Awareness. Indian Journal of Forensic Medicine & Toxicology, 14(4).

Majeed, A., ur Rasool, R., Ahmad, F., Alam, M., & Javaid, N. (2019). Near-miss situation based visual analysis of SIEM rules for real-time network security monitoring. Journal of Ambient Intelligence and Humanized Computing, 10(4), 1509-1526.

Mohajan, H. K. (2018). Qualitative research methodology in social sciences and related subjects. Journal of Economic Development, Environment and People, 7(1), 23-48.

Onwubiko, C., & Ouazzane, K. (2019). Challenges towards building an effective cybersecurity operations centre. International Journal on Computational Science & Applications, 4(1), 11-39.