Effectively analyzing large volumes of diverse logs can pose many challenges. Logging and Log Management helps to simplify this complex process using practical guidance and real-world examples. Packed with information you need to know for system, network and security logging. Log management and log analysis methods are covered in detail, including approaches to creating useful logs on systems and applications, log searching and log review.
Comprehensive coverage of log management including analysis, visualization, reporting and more
Includes information on different uses for logs -- from system operations to regulatory compliance
Features case Studies on syslog-ng and actual real-world situations where logs came in handy in incident response
Provides practical guidance in the areas of report, log analysis system selection, planning a log analysis system and log data normalization and correlation
Kevin J. Schmidt is a senior manager at Dell SecureWorks, Inc., anindustry leading MSSP, which is part of Dell. He is responsible for the design and development of a major part of the company’s SIEM platform. This includes data acquisition, correlation, and analysis of log data. Prior to SecureWorks, Kevin worked for Reflex Security, where he worked on an IPS engine and anti-virus software. And prior to this, he was a lead developer andarchitect at GuardedNet, Inc., which built one of the industry’s first SIEM platforms.
He is also a commissioned officer in the United States Navy Reserve (USNR). He has over 19 years of experience in software development and design, 11 of which have been in the network security space. He holds a Bachelor of Science in Computer Science.
Kevin has spent time designing cloud services components at Dell, including virtualized components to run in Dell’s own vCloud. These components are used to protect customers who use Dell’s cloud infrastructure. Additionally, he has been working with Hadoop, machine learning, and other technology in the cloud.
Kevin is co-author of Essential SNMP, second edition (O’Reilly and Associates, ISBN: 978-0-596-00840-6) and also Logging and Log Management: The Authoritative Guide to Understanding the Concepts Surrounding Logging and Log Management (Syngress, ISBN: 978-1-597-49635-3).
Comments about oreilly Logging and Log Management:
This is my first purchase of a Syngress book. It appears to have great content (am still in Chapter 1 after a quick review) but the quantity of language errors is very distracting. It's clear the editing of the book was not adequate. Hopefully this isn't an indication of the general level of quality of the products from Syngress.
In going to the Syngress web site, I was unable to find or report the errors. Obviously, they still have a few things to learn from O'Reilly.
Bottom Line Yes, I would recommend this to a friend