SIEM Roundup: AWS, Elastic, Splunk, and More


Here are the week’s top briefs about the SIEM market.

 

Elastic launches free SIEM

Elastic, known for Elasticsearch and other tools, has beta launched a free SIEM solution.

 

AWS new Security Hub offers SIEM-like capabilities

Customers pay only for the compliance checks performed and security findings ingested, with no charge for the first 10,000 security finding events each month. Read more.

 

The best way to trial a SIEM solution

Check out the latest advice from the community about how to trial SIEM. Our favorite tips: “I recommend NOT trialing SIEM solutions in a bake-off. You will be comparing several unbaked cakes.” And: “Check if a cloud version of the tool is available. Some SIEM's offer a free trial period for their cloud-based solutions.” And: “Understand your retention requirements: Storage cost!!! You’re capturing events per minute, and it gets expensive.” Read more tips.

 

Splunk: Logging solution or SIEM?

A Director of Information Security told us in this review: “Before Splunk, I’ve used AlienVault, LogRhthym, ArcSight, and IBM QRadar. As a logging solution, I would say Splunk is probably an eight or nine. If you're talking about SIEM I'd say it's probably about a five.” Agree? Disagree? Post a comment on the review and share your opinion with the community.

 

That's all for now!

What topics would you like us to include in the next update? Add a comment.

 

0 Comments
Guest