Extracting logs.......Please wait........

0 %
avatar
Steven Butterworth
Detection Engineer.
Noise Killer.
Log Tamer.
  • Base:
    United Kingdom
  • City:
    Manchester
  • Clients:
    Global
Splunk ES
LogScale
Detection Engineering
Alert Tuning
Parser Builds
CRIBL
Use Case Dev
Data Normalisation
SIEM Architecture
  • Vetted, Gov/Defence
  • Log Strategy
  • SIEM Strategy
  • DevSecOps Delivery

Tag: Log Normalisation

October 16, 2025 / Case Study
When CIM Mapping Goes Sideways: Lessons from a Broken Detection

🔎 Introduction Everything looked good on paper:✅ The detection rule was written.✅ The sourcetype was CIM-mapped.✅ The data model was…

Read more
Case Study : Taming the 21,000-Alert-a-Day SIEM
October 6, 2025 / Case Study
Case Study : Taming the 21,000-Alert-a-Day SIEM

How I helped restore clarity and control to a chaotic Splunk ES environment

© 2025 LogSmith • SIEM Detection Engineering by Steven Butterworth
Email: steven@ukitguru.com