On May 13, 2025, the webinar titled “Enhancing Campus Security: Hands-on Wazuh SIEM/XDR Implementation” was conducted via Zoom. The session focused on Wazuh, an open-source platform for security monitoring, threat detection, and incident response. The event was organized by OVPDX-ITDC with the goal of strengthening the cybersecurity posture of the University of the Philippines System and its constituent universities (CUs). This webinar is part of OVPDX-ITDC’s ongoing series of technical capability-building programs aimed at future-proofing UP’s digital assets and critical information infrastructure.
The training was led by Engr. Jhon Zylvin M. Ramos, who currently serves as IT Head, Chief Information Officer, and Chief Information Security Officer at the Department of Science and Technology - Philippine Council for Industry, Energy, and Emerging Technology Research and Development (DOST-PCIEERD). His presentation provided IT security teams across UP with practical insights into deploying and managing Wazuh SIEM and XDR solutions.
Throughout the session, Engr. Ramos detailed the platform’s components, architecture, and functionalities. He conducted a live demonstration of Wazuh server and agent installation, showcasing key navigation features. Additionally, he underscored the significance of configuring security rules within Wazuh to strengthen threat detection and monitoring capabilities.
To further illustrate real-world applications, UP Cebu, which has already implemented Wazuh within its campus, shared its firsthand experience. Mr. Belly Salinas, Senior Systems Administrator at the UP Cebu Information Technology Center, discussed UP Cebu’s approach to utilizing and managing its Wazuh instance.
The webinar was attended by 41 participants from various CU IT offices, alongside representatives from the UP Philippine Genome Center and the UP Intelligent Systems Center. The event concluded with Assistant Vice President for Data Governance, Elvira Lapuz, delivering closing remarks, stressing the importance of cybersecurity and continuous learning in IT security management.