The best Security Information and Event Management (SIEM) vendors are Splunk, LogRhythm NextGen SIEM,
IBM QRadar, AT&T AlienVault USM and ArcSight.
Splunk is the top solution according to IT Central Station reviews and rankings.
One reviewer writes: "Monitors all machine logins and actions taken on those machines under each user", and another reviewer writes: "It is easy for our developers to use if they want to search their logs. Something should be built into the product that if you're close to your license, then it shuts things down.".
The 2nd best product is LogRhythm NextGen SIEM. A user writes: "Our ability to respond quickly or the time to detect has dropped significantly. There's some things that we see now that we would have never seen",
and another reviewer writes: "It takes good log sources. Needs more integration between the web console and the thick client.".
See our free Buyer's Guide for Security Information and Event Management (SIEM).