Securonix Next-Gen SIEM is a security information and event management solution designed to provide advanced threat detection, response, and compliance capabilities. It leverages machine learning and big data analytics to offer a comprehensive security platform for modern enterprises.
Securonix Next-Gen SIEM is highly valued by users on PeerSpot for its advanced features and capabilities in threat detection and response. Users appreciate the algorithms that help in detecting complex threats and minimizing false positives. The ability to analyze behavior patterns of users and entities to identify insider threats and anomalies is frequently noted as a significant advantage (referring to UEBA analytics). Built on Hadoop, the solution's scalability is a critical feature, allowing it to manage large datasets efficiently. Users also mention the automation capabilities,
autonomous threat sweeper, ease of searching with the Spotter tool, and integration of all types of data sources.
Users have identified several areas for improvement and request better visualization of log sources and loss of logs, a more dynamic concept for threat detection reports with more context, faster generation of Spotter reports, and regular updates for parsing and geographical location accuracy. Additional significant issue is the complex deployment and configuration process, which can be time-consuming and requires a high level of expertise.
Users have experienced a positive return on investment (ROI) using Securonix Next-Gen SIEM. ROI is visible in terms of metrics obtained from Securonix and the ability to sell its services. The biggest ROI is in the time and manpower saved, with one engineer with expertise being enough to speed up investigations and free up other administrators.
It takes a month for the benefits of the solution to be realized. Users have been able to prevent multiple threats and improve analysts' efficiency by using the contextual information provided by Securonix, resulting in a time savings of about 30%.
Securonix Next-Gen SIEM has become the go-to tool for checking and verifying issues, saving around four to five hours a day. The cloud-native platform of Securonix has minimized the need for infrastructure management, reducing the manpower required. It has also added contextual information to security events, saving significant time compared to using a generic system.
Securonix Next-Gen SIEM's pricing is considered good, affordable, and competitive compared to other brands in the market.
Some reviewers mentioned that the licensing can become more complex when adding more features while still maintaining that the pricing remains reasonable. There are no additional costs outside of the standard licensing fees, except for an initial installation service charge.
Securonix's pricing is pretty good compared to other products like IBM and Splunk, offering clients the opportunity to implement a solution at half the price of other companies. The pricing may vary depending on the model chosen, such as an MSP or a single tenant.
Securonix Next-Gen SIEM's primary use case is for event correlation in cyber SOC services. It is used for security event correlation, behavior-based analysis, and monitoring attempted malware attacks. It is also used for monitoring firewalls, operating systems, active directories, and solutions in the cloud. The deployment of Securonix is on the cloud, with integration with platforms such as Microsoft Azure, Amazon, and the Google Cloud Platform. Additionally, it is used for user-behavior analytics, data loss prevention, and data acceleration. Customization of the platform is done to benefit the organization's specific needs, such as failed access attempts, network issues, and allowed/blocked activities.
The initial setup for Securonix Next-Gen SIEM was generally described as simple and straightforward. The implementation process involved following an interactive manual provided by Securonix and onboarding the necessary sources, which was not considered a complicated task.
The number of employees required for the implementation varied but generally ranged from three to five individuals. Securonix provided guided training and assistance to address any queries or issues during the implementation.
Securonix Next-Gen SIEM is highly scalable and flexible. It offers unlimited scalability in a cloud environment, allowing for easy integration of larger data sources without any difficulties.
The solution can increase its capacity and processing level as needed, making it suitable for taking on new clients. It can seamlessly handle the integration of multiple log sources with the available connectors, and if a connector is not available, integration is not possible, which is a common limitation for all SIEM tools.
The solution also allows for easy scaling by increasing the EPS or allocating more resources to the RIN server, especially in cloud environments. It is considered an excellent option for scalability both for internal users and clients.
Securonix Next-Gen SIEM is praised for its ability to detect configuration mistakes and its value in providing analytics. While there have been occasional instances of instability or slowdown, they are not frequent or significant. The solution has undergone improvements over time, enhancing its stability and functionality.
There's general confidence in the reliability and dependability of Securonix, and the support provided by the vendor has been prompt and effective in resolving any issues.
Securonix Next-Gen SIEM utilizes advanced analytics and machine learning to detect complex threats that traditional SIEM solutions might miss. Its architecture is built on Hadoop, enabling scalability and the processing of large volumes of data in real-time. This allows organizations to gain deep insights into security incidents, prioritize threats, and automate response actions. The solution also includes behavior analytics to detect insider threats and unknown attacks, integrating seamlessly with existing IT infrastructure.
What are the critical features of Securonix Next-Gen SIEM?
What is the ROI expectations?
Securonix Next-Gen SIEM is implemented across various industries, including finance, healthcare, and retail. Its flexibility and advanced analytics capabilities make it suitable for environments with complex security needs. In finance, it helps detect fraud, while in healthcare, it ensures patient data security. In retail, it protects against data breaches and payment fraud.
In summary, Securonix Next-Gen SIEM offers advanced threat detection, scalability, and integration capabilities, making it a robust solution for modern enterprises.
Securonix Next-Gen SIEM was previously known as Securonix Security Analytics.
Dtex Systems, Pfizer, Western Union, Harris, ITG