Update _posts/2025-03-05-OpenSearch-as-a-SIEM-Solution.md

Co-authored-by: Nathan Bower <[email protected]>
Signed-off-by: DattellConsulting <[email protected]>

Author: DattellConsulting

_posts/2025-03-05-OpenSearch-as-a-SIEM-Solution.md

@@ -48,7 +48,7 @@ Security teams benefit from being able to query recent and historical logs in on
 Data normalization is important for building generalizable detection rules and dashboards that work across different log sources. When aggregating logs from many sources, a commonly encountered challenge is that each source has its own format (different field names and structures). OpenSearch's Security Analytics plugin includes field mappings for common log types.[1](https://opensearch.org/docs/latest/security-analytics/#:~:text=Security%20Analytics%20is%20a%20security,responding%20effectively%20to%20potential%20threats) Additionally, OpenSearch allows users to define mappings and ingest pipelines to normalize data. 
 
 ### <u>Data visualization</u>
-Once logs are indexed and normalized, analysts can create visualizations with OpenSearch Dashboards to enhance situational awareness. For example, users can build charts showing trends of failed logins over time or a geographic map of login locations. 
+Once logs are indexed and normalized, analysts can create visualizations with OpenSearch Dashboards to enhance situational awareness. For example, users can build charts showing trends for failed logins over time or a geographic map of login locations. 
 
 ### <u>Search.</u>
 OpenSearch Dashboards supports interactive querying.  A security analyst can filter the view to a specific timeframe or drill down on a particular host or user to see all related events.