take on the role of a cybersecurity engineer at a large organization. The company has grown quickly over the last several years, but the size of the security operations team hasn’t grown at the same rate. After a series of security incidents, your manager has decided it’s time to invest in SIEM technology to help security analysts identify events faster and with more consistency.
You have been tasked with building the case for acquiring a SIEM platform by creating a presentation you will give to IT leadership. The data you gather here will serve two purposes for the organization: it will sell leadership on why a SIEM is necessary and serve as a guide for the procurement team that will ultimately draft a request for proposal (RFP) to send to vendors.
You will need to prepare a PowerPoint presentation with voice-over narration. Your presentation should be between 12-15 slides. Your presentation should cover the following topics:
The challenges you’re hoping to solve with a SIEM platform
How a SIEM will solve those problems
The requirements for the SIEM platform (avoid vendor specifics at this point)
Identify possible hurdles and propose possible solutions or ways those hurdles can be avoided