> [!question] What's a SIEM? > > A SIEM (Security Information and Event Management system) is a cybersecurity tool that collects and analyzes log data from diverse sources to detect and and enable analysts to respond to security incidents. It provides centralized visibility, real-time monitoring, and aides in strengthening organizations' detection capability.