Thoughts on Google Chronicle? Anyone using it or considering it?

Threat Intelligence & Incident Response Security Operations Center (SOC)

1.7k views2 Upvotes3 Comments

Sort by:

Director of IT in Travel and Hospitality3 years ago

We use it extensively. In particular the predictable pricing model makes it attractive.

CTO in Software3 years ago

Not using or considering at the moment, but generally familiar with the service offerings - they are pretty strong.

CIO in IT Services3 years ago

We have started using Google Chronicle internally and offering to our customers. We found the following to be useful
1. Threat Intelligence
2. Threat Hunting
3. Log retention

Compare to other existing SIEM solutions, Chronicle provides a strong powerful threat intel platform that helps our team to investigate alerts in a seamless manner. With 1 year log retention it helps our customer not to worry about the log backup and other related concerns.

Content you might like

Do you have any tips to boost the SOC/security operations team’s visibility into IAM? Have you managed to effectively close that gap at your organization?

Our IT department is refreshing our SLAs and KPIs for Incident Management. I would like to know who is a recognized authority on industry averages for IT Service Management processes for the service desk? Below are examples of what I am looking for an industry average on. P1 95% resolved within 4 elapsed hours P2 90% resolved within 8 service hours P3 85% resolved within 3-5 days P4 85% resolved within 28 days

Have you removed PII or other sensitive data from the products/services at your org that include Log4j?

Yes53%

Not yet – we’re working on it38%

No7%

I don’t know…1%

View Results

Do you have preselected incident response partners in place?

Yes44%

We are currently establishing incident response partners.41%

No, but I expect that may change.11%

No, and I don’t expect that to change.3%