Security Information Management

What Does Security Information Management Mean?

Security information management (SIM) is software that automates the collection of event log data from security devices such as firewalls, proxy servers, intrusion detection systems and anti-virus software. This data is then translated into correlated and simplified formats.

Advertisements

SIM products are software agents that communicate with a centralized server, acting as a security console and sending the server information about security-related events. The SIM displays reports, charts and graphs of this information.

Techopedia Explains Security Information Management

SIM also functions as a security event management (SEM) tool. This is an automated tool used on enterprise data networks to centralize the storage and interpretation of logs and events generated by other network software. The software agents can add in local filters to lessen and control the data sent to the server. Security is usually monitored by an administrator, who reviews information and responds to any alerts that are issued. The data that is sent to the server to be associated and examined is translated into a common form, usually XML.

Advertisements

Related Terms

Margaret Rouse

Margaret is an award-winning technical writer and teacher known for her ability to explain complex technical subjects to a non-technical business audience. Over the past twenty years, her IT definitions have been published by Que in an encyclopedia of technology terms and cited in articles by the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine, and Discovery Magazine. She joined Techopedia in 2011. Margaret's idea of a fun day is helping IT and business professionals learn to speak each other’s highly specialized languages.