Definition

security event (security incident)

Part of the Security management glossary:

A security event is a change in the everyday operations of a network or information technology service, indicating that a security policy may have been violated or a security safeguard may have failed.

The first indication of an event may come from a software-defined alert or by end users notifying a help desk that network services have slowed down. In some organizations, the term security event is synonymous with security incident. In other organizations, events are so common that they are handled automatically by high-end security information and event management (SIEM) vendor products and only those events that require an IT administrator to take action are classified as “incidents.”

This was last updated in October 2012
Posted by: Margaret Rouse

Related Terms

Definitions

  • air gapping

    - Air gapping is a security measure that involves removing a computer or network from any externally connected network physically and also ensuring there is also no wireless connection. The NSA TEMP... (WhatIs.com)

  • Evaluation Assurance Level (EAL)

    - The Evaluation Assurance Level (EAL) is a grade assigned to an IT product or system after completing a Common Criteria security evaluation. (SearchDataCenter.com)

  • acceptable use policy (AUP)

    - An acceptable use policy (AUP) is a policy that a user must agree to follow in order to be provided with access to a network or to the Internet. (WhatIs.com)

Glossaries

  • Security management

    - Terms related to security management, including definitions about intrusion detection systems (IDS) and words and phrases about asset management, security policies, security monitoring, authorizati...

  • Internet applications

    - This WhatIs.com glossary contains terms related to Internet applications, including definitions about Software as a Service (SaaS) delivery models and words and phrases about web sites, e-commerce ...

Ask a Question. Find an Answer.Powered by ITKnowledgeExchange.com

Ask An IT Question

Get answers from your peers on your most technical challenges

Ask Question
  • Security Implementation

    The article you mention "The 60 Minute Network Security Guide (First Steps Towards a Secure Network Environment)” covers a few great and time-proven methods for hardening your system. However, the ...

  • Progressive Incident ID number in Access 2007

    Both can be done, but you would probably prefer option 'b'. In summary you could do it modifying your entry form to add a BeforeInsert event and put some code to get the last code for the current ...

Tech TalkComment

Share
Comments

    Results

    Contribute to the conversation

    All fields are required. Comments will appear at the bottom of the article.