UTMStack Como Alternativa de Gestión de Eventos e Información de Seguridad
Keywords:
UTMStack, Wazuth, SIEM, eventos, seguridad y gestiónAbstract
Security information and event management is responsible for collecting security-relevant data
centrally to detect threats or incidents. Thus, it provides security analysis capabilities in real
time or historically on past events by correlating multiple log events. In this sense, this
documentary research is presented on a review of Security Information and Event Management
Systems (SIEM) to determine which is the best formulated alternative for this purpose,
analyzing UTMStack, Wazuth, Ossim and Elasticksearch. Investigation carried out on the main
authors Barquero P. Antonio (2023), Vielberth Manfred (2021) and Espinoza V. Diana J.
(2015). Regarding the methodological aspects, this research is considered documentary type
because information is investigated and compiled from written legal and doctrinal documents
on SIEM technologies. The population was made up of the reviewed literature and therefore
we speak of the documentary population. The technique used was Documentary Observation,
since documentary sources were analyzed, through a general reading of the texts, inquiring into
observations of the facts in the electronic materials consulted. In short, UTMStack is a
comprehensive security platform designed to protect digital assets and ensure information
security in organizations. It offers a wide range of features to deal with various cyber threats,
including malware, phishing, ransomware, among others. Additionally, it integrates with cloud
services and emerging technologies such as ChatGPT, allowing it to adapt to the changing
needs of the security landscape. Together, UTMStack provides a comprehensive and advanced
solution to improve an organization's cybersecurity posture.