Deployment Guide Series: IBM Tivoli Security Operations Manager 4.1

Network and resource availability is critical to business and service assurance, but organizations can lose millions of dollars per year as a result of malware that brings down corporate resources. Thus, information security is one of the top concerns of every CIO.

To maximize resource and service availability and to protect valuable information, information security teams must be able to recognize and handle security incidents quickly, enforce security policies, and support audit and compliance initiatives.

The problem is that each of these activities involves security data that resides throughout the organization. Enterprises and service providers must access and analyze time sensitive data quickly and efficiently. In today’s complex multi-vendor environment, you must take advantage of an automated and integrated solution. In response to these challenges, the IBM® Tivoli® Security Operations Manager, a SIEM platform improves the effectiveness, efficiency, and visibility of security operations and information risk management.

This IBM Redbooks® publication helps you design and create a solution. This book is a valuable resource for security officers, administrators, and architects who want to understand and implement a SIEM system.

Part 1. Architecture and design
Chapter 1. Business context
Chapter 2. Architecture and components
Chapter 3. Planning for client engagement
Part 2. Deployment and setup
Chapter 4. Technical implementation
Chapter 5. Rules and event classification
Part 3: Appendixes
Appendix A. Statement of work
Appendix B. Creating reports

• IBM System z10 Enterprise Class Technical Introduction, SG24-7515-02
• IBM System z10 Capacity on Demand, SG24-7504-01
• Implementing IBM Tivoli Service Request Manager V7.1 Service Desk, SG24-7579-00

Publish Date
12 November 2008

Rating: Not yet rated

Rate this book

Author(s)

Axel Buecker is a Certified Consulting Software IT Specialist at the International Technical Support Organization, Austin Center. He writes extensively and teaches IBM classes worldwide in the areas of software security architecture and network computing technologies. He holds a degree in Computer Science from the University of Bremen, Germany. He has 21 years of experience in a variety of areas related to workstation and systems management, network computing, and e-business solutions. Before joining the ITSO in March 2000, Axel worked for IBM in Germany as a Senior IT Specialist in Software Security Architecture

• Axel Buecker

Dr. Werner Filip is a professor of the department for Computer Science and Engineering at the University of Applied Sciences Frankfurt am Main, Germany and a Consultant in IT Security. His primary research interests are Systems and Network Management and Applied Security. Prior to joining University of Applied Sciences Frankfurt he worked for 25 years for IBM in various positions, during his last 10 years with IBM as a Consultant in Systems and Network Management at former IBM European Networking Center, Germany. He received a Diploma in Mathematics, and a Doctorate in Computer Science from the Technical University Darmstadt, Germany.

• Dr. Werner Filip

Scott Henley is an IBM Pre-sales Senior IT Specialist. He performs pre-sales support for the IBM Tivoli Security portfolio throughout Asia Pacific. He is an expert in many of the IBM Tivoli Security products, and in recent years has specialized in the Security Information and Event Management space. In his current role at IBM, as an above country expert for the Asia Pacific region, he often travels throughout the Asia and Pacific region speaking with, and assisting IBM clients to get the best value from their investment in IBM security technologies. He is also speaks at various industry conferences on topics such as, Compliance, Risk Management, and Governance. He holds a Bachelors, as well as a Masters Degree with Distinction in Information Technology. He is a CISSP, and holds numerous other Industry and product certificates that he has collected throughout his almost 20 years in the IT Industry.

• Scott Henley

Sujit Mohanty is a Senior Security Specialist with IBM Tivoli specializing in Tivoli Security Operations Manager and ISS products. He has spent a number of years in various areas of information security research (anti-virus, IDPS, vulnerability scanning, and SIEM technologies). He attended the University of Virginia as an undergraduate studying systems engineering.

• Sujit Mohanty

ISBN

0738432105

IBM Form Number
SG24-7439-00

Number of pages
250