I am currently running Sophos Endpoint Security and Control, v10
This is what is advertised the LEM can do with Sophos:
- Collects, normalizes, & analyzes log data & performs real-time, in-memory event correlation
- Delivers immediate, actionable intelligence for security, compliance, & operational issues
- Includes built-in Active Responses for automated threat remediation, & incident response
- Provides advanced search & data visualization for fast forensic analysis, & anomaly detection
I tried find information on how to set this up with no luck. Anybody know where I can find information to do this?
Thanks!
David