[Yandex Cloud documentation](../../index.md) > [Yandex SIEM](../index.md) > Concepts > About Yandex SIEM

# Yandex SIEM overview

{% note info %}

This feature is in the [Preview](../../overview/concepts/launch-stages.md) stage. To get access, contact [tech support](https://center.yandex.cloud/support) or your account manager.

{% endnote %}

Yandex SIEM is Yandex Cloud‘s proprietary _SIEM_ (Security Information and Event Management) system for monitoring and analysis of security events in the cloud infrastructure. Yandex SIEM collects and analyzes the cloud infrastructure events to detect anomalies and potential security threats. When Yandex SIEM detects an anomaly, it creates an [alert](../../security-deck/concepts/alerts.md) indicating a potential incident.

## Access to the service {#access}

{% note info %}

You get access to Yandex SIEM in the Security Deck interface in [Cloud Center](https://center.yandex.cloud) after your access request gets approved.

{% endnote %}

In Yandex SIEM, you can access a list of detected incidents and select one to get troubleshooting recommendations with additional context and view the incident details and category. To see the statistics on detected incidents, refer to the dashboard on the service's home page.

For automatic threat detection, Yandex SIEM uses [correlation rules](correlation-rules.md), i.e., sets of conditions by which the system analyzes events and generates alerts. To eliminate false positives, you can configure exceptions for correlation rules.