Doing a decent POC for a SIEM is a pretty easy thing to do from a technical perspective .. but it can be dang hard from a Security Management perspective if the customers' risk assessment processes do not exist or just arent't mature enough. Then scoping the POC is almost…