Are you using a SIEM product? If yes, which one and what has been your experience so far w.r.t  1. Implementation 2. Effectiveness 3. TCO

Security & GRCThreat Intelligence & Incident Response
163 viewscircle icon1 Upvotecircle icon3 Comments
Sort by:
VP of IT Operations in Software5 years ago

We keep cycling through different options. The SaaS models for this get expensive fast, or you sacrifice data because of cost.  The on prem or open source options require a lot of dedicated time to configure.

Chief Security Officer in Software5 years ago

Elastic and Splunk. Easy, effective, but expensive.

Principal Information Security Officer in Education5 years ago

Elastic SIEM with DIY customizations.
1. Fairly straightforward OOTB.
2. Very.  Does exactly what we ask it to do.
3. TCO is much better than the RSA Security Analytics / Netwitness SIEM it replaced.

Lightbulb on1

Content you might like

What’s your top barrier to adopting AI-driven pentesting?

Lack of mature vendor solutions42%

Trust in AI accuracy62%

Budget constraints17%

Skills to operate the tools28%

View Results

Why do you think there are so few mature AI-driven autonomous pentesting solutions on the market, and why does this topic seem to generate more hype than in-depth technical discussion?

Read More Comments

Which pitfalls—model bias, false positives/negatives, data quality, regulatory constraints—often impede AI-based security tools, and how can they be mitigated in a financial-services context?

Read More Comments

Which key pentesting capability do current AI-driven vendor solutions most fail to cover?

How often do you review server logs?

Never22%

Rarely46%

Frequently31%

View Results