EduSIEM: A Cost-Effective SIEM Platform for Educational Institutions

This paper addresses the challenge of implementing effective Security Information and Event Management (SIEM) solutions in educational institutions, where limited budgets restrict the adoption of commercial security platforms. Existing SIEM systems are often expensive, complex to deploy, and not tailored to the specific requirements of academic environments. To overcome this gap, this paper proposes EduSIEM, a cost-effective and education-focused SIEM platform designed to provide real-time log monitoring, threat detection, and incident management. The system is developed using an open-source technology stack and follows a modular architecture integrating log collection, detection, correlation, and response components. EduSIEM is evaluated through a series of simulated cyber attack scenarios using synthetic but structurally realistic log datasets. Experimental results demonstrate a detection accuracy of 98% with an average alert latency of 2.2 seconds under controlled conditions. However, the evaluation is limited by the use of simulated data, which may not fully represent real-world operational environments. The proposed system highlights the feasibility of deploying scalable and affordable SIEM solutions in resource-constrained educational institutions