25Ara
vulnerability scanner report to SIEM
Our partners require such configuration as
vulnerability scanner A (well-known in CIS area)
SIEM B (leaders of the market)
And they should perform a scan of the network, get a report then forward it to the SIEM supposedly to challenge the findings against IOCs.
They insist to get the report into the SIEM -- we don't want to argue with them.
Does challenging the report against IOCs via SIEM sound right to you?
