Security Information & Event Management (SIEM) , Security Operations , Security Operations Center (SOC)

Insights From a Dual-Vendor, SaaS-Based SIEM Implementation

Shweta Kshirsagar of Flipkart on Successfully Deploying a Unified SOC
Shweta Kshirsagar, business information security officer, Cleartrip, a Flipkart Group company

Implementing one SIEM across a large enterprise can be challenging. Trying to implement two different solutions and make them work together is even harder.

See Also: The Evolving MECA Cybersecurity Landscape

Information Security Media Group recently recognized Shweta Kshirsagar, business information security officer at Cleartrip, a Flipkart Group company, at the Dynamic CISO Excellence Awards and Conference in the area of SOC modernization for implementing two SaaS-based SIEM solutions across Flipkart Group's companies. One SIEM tool enables 24/7 alert monitoring for the SOC team, and the other generates compliance reports with longer log retention.

Challenges arose from integrating solutions from different vendors, requiring distinct approaches to log parsing and normalization.

"We ensured minimal impact on device performance by establishing a single point of ingestion, simultaneously streaming logs to both SIEMs. Additionally, role-based access control was designed to cater to different stakeholders' needs," Kshirsagar said.

This approach allowed for simultaneous streaming to multiple SIEM tools, minimizing the strain on device performance and ensuring effective log management.

Kshirsagar led the implementation project during her tenure as the head of cyber defense at Myntra, a Flipkart Group company.

In this video interview with ISMG after its Dynamic CISO Excellence Awards and Conference, Kshirsagar discusses:

  • How Flipkart implemented a unified SOC across all its companies;
  • Keeping costs under control in a SaaS-based SIEM;
  • How to reduce alert fatigue.

Kshirsagar has nearly 20 years of experience in various domains of cybersecurity, including cyber incident response, data protection and privacy, information security audit, and compliance. She has expertise in cyberthreat intel, threat hunting, security investigations, SOC operations and security orchestrations and automation and has managed and executed projects across multiple countries.


About the Author

Shipra Malhotra

Shipra Malhotra

Managing Editor, ISMG

Malhotra has more than two decades of experience in technology journalism and public relations. She writes about enterprise technology and security-related issues and has worked at Biztech2.com, Dataquest and The Indian Express.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.asia, you agree to our use of cookies.