Security Information Management (SIM) is the industry-specific term in computer security referring to the collection of data (typically log files; e.g. eventlogs) into a central repository for trend analysis. SIM is a relatively new idea, pioneered in 1999 by a small company called netForensics. This is a basic introductory mandate in any computer security system. The terminology can easily be mistaken as a reference to the whole aspect of protecting one's infrastructure from any computer security breach. Due to historic reasons of terminology evolution; SIM refers to just the part of information security which consists of discovery of 'bad behavior' by using data collection techniques. The term commonly used to represent an entire security infrastructure that protects an environment is commonly called Information Security Management (InfoSec).

Definition & Best Practices

Security Information Management is also referred to as or included in SEM (Security Event Management) and SIEM (Security Information and Event Management).

For detailed definitions and examples of SIM, including buying and technical best practices and user implementation examples, visit the Security Information Management (SIM) Resource Guide

External links

• Security Information Management (SIM) Resource Guide 200+ Free online SIM resources including SIM definitions, presentations, buying and technical best practices, user implementations, user and analyst quotes and a free SIM Pocket Guide.

See also

• Data security
• Computer security
• Information Security
• Information Security Department
• Information Security Management
• Information Security Management System
• Security Event Manager