Overview

Continuous monitoring provides constant awareness of what’s happening on the network and all its connected endpoints. This awareness is provided by sensors installed on endpoints and at various places throughout the network. These sensors generate security alerts and monitor information that a centralized log repository can collect, like a security information and event management solution (SIEM).

Operations of a security information and event management (SIEM) system

An SIEM generates alerts based on certain events that it receives. An SIEM provides the following functionality:

  • Aggregation

  • Alert generation

  • Single pane of glass monitoring

Get hands-on with 1400+ tech skills courses.