Compare RSA NetWitness Logs and Packets (RSA SIEM) vs. RSA enVision

RSA enVision is ranked 20th in Security Information and Event Management (SIEM) with 1 review while RSA NetWitness Logs and Packets (RSA SIEM) is ranked 13th in Security Information and Event Management (SIEM) with 9 reviews. RSA enVision is rated 7.0, while RSA NetWitness Logs and Packets (RSA SIEM) is rated 6.8. The top reviewer of RSA enVision writes "Good management features but it should have better integration abilities ". On the other hand, the top reviewer of RSA NetWitness Logs and Packets (RSA SIEM) writes "Good support, powerful decoders and concentrator, but the dashboard is not reflecting events in real-time ". RSA enVision is most compared with Splunk, RSA NetWitness Logs and Packets (RSA SIEM) and IBM QRadar, whereas RSA NetWitness Logs and Packets (RSA SIEM) is most compared with Splunk, IBM QRadar and ArcSight.
Cancel
You must select at least 2 products to compare!
Most Helpful Review
Use RSA enVision? Share your opinion.
Find out what your peers are saying about Splunk, LogRhythm, IBM and others in Security Information and Event Management (SIEM). Updated: February 2020.
398,259 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
The most valuable feature is the management features. It's capable of managing large enterprises.

Read more »

The most valuable features are the integration and ease of use.The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it.The most valuable features are the packet decoder, log decoder, and concentrator.It's fully scalable. There is no limit. Of course, the license limits per day the number of terabytes. In my opinion, it's very flexible.The most valuable feature is the ability to write rules and triggers for network communication, and then being able to investigate based on that.The most valuable features are its ingestion of logs and raising of alerts based on those logs.Their technical support responds quickly and are knowledgable.The most valuable feature is the correlation. It can report in real-time and monitor the management.

Read more »

Cons
The integration could be easier, it should support more products.

Read more »

The documentation is not as structured as I would like, personally, and I think that it can be improved and made much more user-friendly.The initial setup is very complex and should be simplified.Log aggregation is an issue with this solution because there are a huge number of alerts in a single instance.They should implement algorithms to digest that data and produce additional, more advanced reporting, alerting and support of internal security teams.The system looks like it is a mix of a bunch of different systems, and nothing looked like it was quite together.I'd like to see improvement in its ease of use. It's basically unusable. It's overly complex.The initial setup was complex because it takes a lot of time to complete the implementation.The implementation needs assistance.

Read more »

Pricing and Cost Advice
Information Not Available
Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day.We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment.This is a pricey solution; it's not cheap.The licenses are good but the cost is very expensive.It is cheap.

Read more »

report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
398,259 professionals have used our research since 2012.
Ranking
Views
1,105
Comparisons
900
Reviews
1
Average Words per Review
231
Avg. Rating
7.0
Views
6,772
Comparisons
4,461
Reviews
9
Average Words per Review
474
Avg. Rating
6.8
Top Comparisons
Compared 49% of the time.
Compared 12% of the time.
Also Known As
RSA Security Analytics
Learn
RSA
RSA
Overview

The RSA enVision platform provides a centralized log management service that enables organizations to simplify their compliance programs and optimize their security incident management. The RSA enVision solution facilitates the automated collection, analysis, alerting, auditing, reporting, and secure storage of all logs.

If you’re relying on log data to detect and prevent cyber threats, you’re in trouble. Attackers increasingly evade detection of log-centric security and network monitoring tools. But logs combined with full packet, endpoint NetFlow data are proven to provide the essential details for early threat detection. Here’s a closer look at our solution.

Offer
Learn more about RSA enVision
Learn more about RSA NetWitness Logs and Packets (RSA SIEM)
Sample Customers
BPS (SUISSE), Hypovereinsbank Germany, MAX Hamburgers, Infoplex, Neotel, TelusLos Angeles World Airports, Reply
Top Industries
No Data Available
VISITORS READING REVIEWS
Software R&D Company30%
Comms Service Provider17%
Financial Services Firm10%
Government6%
Find out what your peers are saying about Splunk, LogRhythm, IBM and others in Security Information and Event Management (SIEM). Updated: February 2020.
398,259 professionals have used our research since 2012.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.