Introduction to SIEM | TryHackMe
📰 Medium · Cybersecurity
Learn the basics of SIEM and its importance in security operations, and understand how to collect and analyze logs from various sources
Action Steps
- Define SIEM and its role in security operations
- Identify different types of log sources, including host-centric and network-centric logs
- Understand the features of SIEM, such as centralized log collection and real-time alerting
- Explore log sources and ingestion methods, including Windows Event Viewer
- Configure a SIEM system to collect and analyze logs from various sources
Who Needs to Know This
This micro-lesson is beneficial for SOC analysts, security engineers, and anyone interested in learning about SIEM and its applications in cybersecurity
Key Insight
💡 SIEM is a core security solution that collects, standardizes, and correlates logs from various sources to detect malicious activities
Share This
Introduction to SIEM: Learn how to collect, analyze, and detect malicious activities with Security Information and Event Management systems #SIEM #Cybersecurity
Key Takeaways
Learn the basics of SIEM and its importance in security operations, and understand how to collect and analyze logs from various sources
Full Article
Title: Introduction to SIEM | TryHackMe
URL Source: https://medium.com/@aruldeshwal1/introduction-to-siem-tryhackme-c6426b2e35ff?source=rss------cybersecurity-5
Published Time: 2026-04-19T18:07:54Z
Markdown Content:
# Introduction to SIEM | TryHackMe. Task 1 - Introduction: | by Aruldeshwal | Apr, 2026 | Medium
[Sitemap](https://medium.com/sitemap/sitemap.xml)
[Open in app](https://play.google.com/store/apps/details?id=com.medium.reader&referrer=utm_source%3DmobileNavBar&source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fmedium.com%2F%40aruldeshwal1%2Fintroduction-to-siem-tryhackme-c6426b2e35ff&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
[](https://medium.com/?source=post_page---top_nav_layout_nav-----------------------------------------)
Get app
[Write](https://medium.com/m/signin?operation=register&redirect=https%3A%2F%2Fmedium.com%2Fnew-story&source=---top_nav_layout_nav-----------------------new_post_topnav------------------)
[Search](https://medium.com/search?source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fmedium.com%2F%40aruldeshwal1%2Fintroduction-to-siem-tryhackme-c6426b2e35ff&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)

# Introduction to SIEM | TryHackMe
[](https://medium.com/@aruldeshwal1?source=post_page---byline--c6426b2e35ff---------------------------------------)
[Aruldeshwal](https://medium.com/@aruldeshwal1?source=post_page---byline--c6426b2e35ff---------------------------------------)
Follow
4 min read
·
Just now
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fvote%2Fp%2Fc6426b2e35ff&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40aruldeshwal1%2Fintroduction-to-siem-tryhackme-c6426b2e35ff&user=Aruldeshwal&userId=c7b6724a9acf&source=---header_actions--c6426b2e35ff---------------------clap_footer------------------)
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fbookmark%2Fp%2Fc6426b2e35ff&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40aruldeshwal1%2Fintroduction-to-siem-tryhackme-c6426b2e35ff&source=---header_actions--c6426b2e35ff---------------------bookmark_footer------------------)
[Listen](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2Fplans%3Fdimension%3Dpost_audio_button%26postId%3Dc6426b2e35ff&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40aruldeshwal1%2Fintroduction-to-siem-tryhackme-c6426b2e35ff&source=---header_actions--c6426b2e35ff---------------------post_audio_button------------------)
Share
**Task 1 - Introduction:**
* SIEM (Security Information and Event Management system): a core security solution for a SOC analyst.
**Task 2- Logs Everywhere, Answers Everywhere:**
* Log sources: host-centric (occur within or are related to the host) and network-centric log sources (generated when the hosts communicate with each other or access the internet).
Press enter or click to view image in full size

**Task 3 - Why SIEM?**
* SIEM collects logs from various types of log sources, standardizes their format into a consistent one, correlates them, and detects malicious activities using detection rules.
* Features of SIEM: centralized log collection, normalization and correlation of logs, real-time alerting, and dashboards and reporting.
**Task 4 - Log sources and ingestion:**
* Log sources: the devices on the network that generate logs.
* Windows Event Viewer: Records every event that can be vi
URL Source: https://medium.com/@aruldeshwal1/introduction-to-siem-tryhackme-c6426b2e35ff?source=rss------cybersecurity-5
Published Time: 2026-04-19T18:07:54Z
Markdown Content:
# Introduction to SIEM | TryHackMe. Task 1 - Introduction: | by Aruldeshwal | Apr, 2026 | Medium
[Sitemap](https://medium.com/sitemap/sitemap.xml)
[Open in app](https://play.google.com/store/apps/details?id=com.medium.reader&referrer=utm_source%3DmobileNavBar&source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fmedium.com%2F%40aruldeshwal1%2Fintroduction-to-siem-tryhackme-c6426b2e35ff&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
[](https://medium.com/?source=post_page---top_nav_layout_nav-----------------------------------------)
Get app
[Write](https://medium.com/m/signin?operation=register&redirect=https%3A%2F%2Fmedium.com%2Fnew-story&source=---top_nav_layout_nav-----------------------new_post_topnav------------------)
[Search](https://medium.com/search?source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Fmedium.com%2F%40aruldeshwal1%2Fintroduction-to-siem-tryhackme-c6426b2e35ff&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)

# Introduction to SIEM | TryHackMe
[](https://medium.com/@aruldeshwal1?source=post_page---byline--c6426b2e35ff---------------------------------------)
[Aruldeshwal](https://medium.com/@aruldeshwal1?source=post_page---byline--c6426b2e35ff---------------------------------------)
Follow
4 min read
·
Just now
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fvote%2Fp%2Fc6426b2e35ff&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40aruldeshwal1%2Fintroduction-to-siem-tryhackme-c6426b2e35ff&user=Aruldeshwal&userId=c7b6724a9acf&source=---header_actions--c6426b2e35ff---------------------clap_footer------------------)
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fbookmark%2Fp%2Fc6426b2e35ff&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40aruldeshwal1%2Fintroduction-to-siem-tryhackme-c6426b2e35ff&source=---header_actions--c6426b2e35ff---------------------bookmark_footer------------------)
[Listen](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2Fplans%3Fdimension%3Dpost_audio_button%26postId%3Dc6426b2e35ff&operation=register&redirect=https%3A%2F%2Fmedium.com%2F%40aruldeshwal1%2Fintroduction-to-siem-tryhackme-c6426b2e35ff&source=---header_actions--c6426b2e35ff---------------------post_audio_button------------------)
Share
**Task 1 - Introduction:**
* SIEM (Security Information and Event Management system): a core security solution for a SOC analyst.
**Task 2- Logs Everywhere, Answers Everywhere:**
* Log sources: host-centric (occur within or are related to the host) and network-centric log sources (generated when the hosts communicate with each other or access the internet).
Press enter or click to view image in full size

**Task 3 - Why SIEM?**
* SIEM collects logs from various types of log sources, standardizes their format into a consistent one, correlates them, and detects malicious activities using detection rules.
* Features of SIEM: centralized log collection, normalization and correlation of logs, real-time alerting, and dashboards and reporting.
**Task 4 - Log sources and ingestion:**
* Log sources: the devices on the network that generate logs.
* Windows Event Viewer: Records every event that can be vi
DeepCamp AI