In today's dynamic threat landscape, organizations must robust incident response capabilities to reduce the impact of cyberattacks. A Security Information and Event Management (SIEM) system provides a centralized platform for consolidating security logs from diverse sources, enabling immediate threat detection and investigation. By automating incid