This week I’ve been doing a lot of research on SEIM systems both as part of the classes that I’m taking and out of my own curiosity. SEIM sounds like a very powerful and useful tool which I have yet to really play with.
Enter AlienVault’s OSSIM, and all of it’s open-source awesomeness. There is a lot of reasons for why an organization (like Aeatacraft) might consider running it because it is a very capable and you can beat the price of nothing. If you want more enterprise-concentric features such as integration with an existing ticketing system or integration with The open Threat Exchange. Then you will need to consider using the USM Anywhere Cloud Hosted Solution.