Watch a conference talk from HITB2024BKK that explores the design and implementation of a multi-tenant Security Information and Event Management (SIEM) system built on Security Onion. Learn how to structure management capabilities for Managed Security Service Providers (MSSPs) using open-source SIEM software that lacks native multi-tenant features. Discover solutions for key challenges including tenant-specific user authorization, consolidated alert management across tenants, and rules management that enables both manual and external rule imports. Follow along as the speakers demonstrate a proof-of-concept implementation using Security Onion, including customizations and real-world testing results. Gain insights into system recovery optimization when dealing with virtual machine resource constraints or attacks, and understand how organizations can leverage this open-source approach for their security operations.