March 2016 – David Johnston CISO of BlueScope discusses his work with Kustodian and SIEMonster
The Open source SOC project has been a great experience from its earliest beginnings. Starting out on a whiteboard to a fully-fledged solution, with 7×24 SOC monitoring, SIEM correlation and alerting. Whilst the open source path had its challenges I was in need of a cost effective solution and I was just not able to pay the large licensing fees that mainstream vendors were demanding. By having it designed and developed exactly the way BlueScope required, I could then get the full security picture across a large complex organisation that I possibly wouldn’t have had with an out of the box commercial solution.