Utilising the Elastic Stack with ArcSight SIEM and Kafka

A recommendation for using Elasticsearch 5.x for larger time-data analytics: indices & a tiered architecture with 3 different types of nodes, called “Hot-Warm”.

In this blog series we will provide an overview of how to extend and complement the capabilities of your existing SIEM to create an effective security analyt...