Liken it to "pouring money down the drain" and "ticking a box for compliance.”
Around two-thirds of security leaders feel that storing data for compliance is a waste of money, whilst only a third of data in SIEMs delivers value for threat detection.
According to research of 300 IT and security professionals by Red Canary, due to SIEM storage costs, 68 percent of IT security decision makers discard low value data and have to hope they won’t regret it.
Mary Writz, SVP of product management at Red Canary, said: “Security teams are already stretched thin, balancing growing data retention requirements with shrinking budgets. Not all data offers equal value for threat detection and response, yet organisations are often required to retain vast amounts of it to stay in compliance.
“SIEMs were historically the most common place to store all this data, but the high costs mean organisations get a low return on investment for any logs that they rarely use. If log sources don’t help security teams to detect threats, organisations shouldn’t pay a premium to store them.”
Written by
Dan Raywood
Senior Editor
SC Media UK
Dan Raywood is a B2B journalist with more than 20 years of experience, including covering cybersecurity for the past 16 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Conference, BSides Scotland, Steelcon and ESET Security Days.
Outside work, Dan enjoys supporting Tottenham Hotspur, managing mischievous cats, and sampling craft beers.
