Security Information and Event Management
A SIEM collects and correlates logs and events from across an organization's systems into one searchable platform. SOC analysts use it to spot patterns that indicate attacks, investigate incidents, and meet compliance logging requirements. It matters because no human can watch thousands of log sources manually; the SIEM makes that data usable.