Sievierinov, О. V.Ovcharenko, M.2021-03-222021-03-222020Sievierinov O. Analysis of correlation rules in Security information and event management systems / О. Sievierinov, M. Ovcharenko // Fourth International Scientific and Technical Conference «COMPUTER AND INFORMATION SYSTEMS AND TECHNOLOGIES», 22-23.04.2020. – Kharkiv: NURE, 2020. – С. 24–25.http://openarchive.nure.ua/handle/document/15014This article discusses the main components of information security systems and information security incident management. The methods of non-signature, as well as signature analysis of rules and decision-making that are used in such systems are considered. The analysis of existing methods of correlation rules. The main types of each method have been identified.encorrelationinformation security managementsignature methodnon-signature methodincident securityevent securitySIEMArticle