Security information management(SIM) is an industry terminology that is related to information security relating to the gathering of data mainly log files into a central memory for trend analysis.
Generally, SIM products are software agents operating on the computer systems that are to be analyzed and then send the log data to a central server that acts as a “security console.” Typically the console shows charts, reports, and graphs of that information sometimes in real time.
Some software agents can access local filters to manipulate and reduce the data that they send to the server typically from a general point of view you would collect all accounting and auditlogs to ensure you can recreate a security incident.
A person who reviews the consolidated information monitors the security console and responses to any alerts thus occurred. The software agents into a standard form normalize the data that is sent to the server to be analyzed and correlated by usually XML. Then those data are aggregated to reduce their overall size.
The phrasing can without much of a stretch be mixed up as a source of perspective to the entire part of protecting one’s foundation from any computer security rupture. Because of essential reasons for wording development, SIM alludes to merely the piece of data security which comprises of disclosure of ‘terrible conduct’ by utilizing information accumulation systems.
The term regularly used to speak to a whole security base that ensures a situation is generally called data security administration (InfoSec). Security information management can also be termed as log management, and it is completely varying with SEM (Security Event Management) however it matches with a portion of a SIEM (Security Information and Event Management) solution
