We are Infosecnirvana have posted Evaluating SIEM – What you need to know?. Readers had a lot of good comments on this post and one of the readers – Frank Bijkersma who blogs here came up with an idea to expand the content in the post to make it a Whitepaper which will serve as a good post. So here you go – Evaluating SIEM – Version 2.0.
So here it is. Please feel free to read the guide and let us know your thoughts on it.
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are based on Gartner Magic Q which is what Organizations typically use to select SIEM vendors. The Vendors mentioned here in the deck are :
1. HP ArcSight
2. McAfee Nitro
3. IBM QRadar
4. Splunk SIEM
5. RSA Security Analytic
6. LogRhythm.
If you need any other Vendor evaluation on the parameters mentioned in the deck, please do let us know and we can post them for your use.
We at Infosecnirvana.com have done several posts on SIEM. However, preparing this presentation deck made me realize that this is worth sharing with the community. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below
