Are you using a SIEM product? If yes, which one and what has been your experience so far w.r.t  1. Implementation 2. Effectiveness 3. TCO

Top Answer : Elastic SIEM with DIY customizations. 1. Fairly straightforward OOTB. 2. Very.  Does exactly what we ask it to do. 3. TCO is much better than the RSA Security Analytics / Netwitness SIEM it replaced.

Orange Terminal
IT, Educational Services
Elastic SIEM with DIY customizations. 1. Fairly straightforward OOTB. 2. Very.  Does exactly what we ask it to do. 3. TCO is much better than the RSA Security Analytics / Netwitness SIEM it replaced.
0 upvotes
Black Terminal
Engineering, Software
Elastic and Splunk. Easy, effective, but expensive.
0 upvotes