Are you using a SIEM product? If yes, which one and what has been your experience so far w.r.t  1. Implementation 2. Effectiveness 3. TCO

Security & GRCThreat Intelligence & Incident Response
163 viewscircle icon1 Upvotecircle icon3 Comments
Sort by:
VP of IT Operations in Software5 years ago

We keep cycling through different options. The SaaS models for this get expensive fast, or you sacrifice data because of cost.  The on prem or open source options require a lot of dedicated time to configure.

Chief Security Officer in Software5 years ago

Elastic and Splunk. Easy, effective, but expensive.

Principal Information Security Officer in Education5 years ago

Elastic SIEM with DIY customizations.
1. Fairly straightforward OOTB.
2. Very.  Does exactly what we ask it to do.
3. TCO is much better than the RSA Security Analytics / Netwitness SIEM it replaced.

Lightbulb on1

Content you might like

Why do you think there are so few mature AI-driven autonomous pentesting solutions on the market, and why does this topic seem to generate more hype than in-depth technical discussion?

Read More Comments

Who has been the best recent-acquirer in cybersecurity? Details and feedback in comments...

Cisco (Duo)15%

Palo Alto (Aporeto, Twistlock, CloudGenix)28%

VMware (Carbon Black)25%

Broadcom (Symantec)10%

Zoom (Keybase)8%

NTT (WhiteHat)5%

F5 Networks (Shape Security)3%

Sumo Logic (JASK)1%

OTHER - share in comments1%

View Results

Which pitfalls—model bias, false positives/negatives, data quality, regulatory constraints—often impede AI-based security tools, and how can they be mitigated in a financial-services context?

Read More Comments

Which key pentesting capability do current AI-driven vendor solutions most fail to cover?

How do you manage data access/policy management across cloud and 3rd party applications?
Include your favorite vendor in the comments.

Cloud Security Posture Management vendors30%

IAM / RBAC vendors41%

Data encryption21%

Data compliance/governance vendors6%

View Results