Over 600 million security records are fed into our Security Information and Event Management (SIEM) every day from City systems to screen for potential cyber threats. SIEM provides early threat detection of cyber attacks, incident response coordination, post incident investigation, and evidence collection. This mass of security related data also improves system algorithms to detect anomalies and generate actionable and meaningful threat intelligence. The effort is led by the ITA CISO Tim Lee and his team.
L.A. Cyber Defenses Now Consuming Over 600 Million Records Every 24 Hours
June 23, 2017