Compare RSA NetWitness Logs and Packets (RSA SIEM) vs. SQRRL

Cancel
You must select at least 2 products to compare!
Most Helpful Review
Find out what your peers are saying about Splunk, IBM, Securonix Solutions and others in Security Information and Event Management (SIEM). Updated: January 2021.
456,719 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pricing and Cost Advice
"It's a per gigabyte cost for ingestion of data. For every gigabyte that you ingest, it's whatever you negotiated your price for. Compared to other contracts that we've had for cloud providers, it's significantly less.""We have an OEM agreement with Devo. It is very similar to the standard licensing agreement because we are charged in the same way as any other customer, e.g., we use the backroom.""We have seen ROI. We have seen cost savings in maintenance, upkeep, and support.""I'm not involved in the financial aspect, but I think the licensing costs are similar to other solutions. If all the solutions have a similar cost, Devo provides more for the money."

More Devo Pricing and Cost Advice »

"The licenses are good but the cost is very expensive.""This is a pricey solution; it's not cheap.""We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment.""Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day.""Our license is for one year."

More RSA NetWitness Logs and Packets (RSA SIEM) Pricing and Cost Advice »

Information Not Available
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
456,719 professionals have used our research since 2012.
Questions from the Community
Top Answer: Even if it's a relatively technical tool or platform, it's very intuitive and graphical. It's very appealing in terms of… more »
Top Answer: We have an OEM agreement with Devo. It is very similar to the standard licensing agreement because we are charged in the… more »
Top Answer: There's always room to reduce the learning curve over how to deal with events and machine data. They could make the… more »
Top Answer: The user interface is a little bit difficult for new users and it needs to be improved. It takes a lot of time to… more »
Top Answer: I am currently working in a security operations center and RSA NetWitness Log and Packets is part of our security… more »
Ask a question

Earn 20 points

Popular Comparisons
Compared 54% of the time.
Compared 17% of the time.
Compared 9% of the time.
Compared 4% of the time.
Compared 4% of the time.
Compared 58% of the time.
Compared 42% of the time.
Also Known As
LogtrustRSA Security Analytics
Learn
Devo
RSA
SQRRL
Video Not Available
Overview

Devo is the only cloud-native logging and security analytics platform that releases the full potential of all your data to empower bold, confident action when it matters most. Only the Devo platform delivers the powerful combination of real-time visibility, high-performance analytics, scalability, multitenancy, and low TCO crucial for monitoring and securing business operations as enterprises accelerate their shift to the cloud.

If you’re relying on log data to detect and prevent cyber threats, you’re in trouble. Attackers increasingly evade detection of log-centric security and network monitoring tools. But logs combined with full packet, endpoint NetFlow data are proven to provide the essential details for early threat detection. Here’s a closer look at our solution.

Sqrrl's Threat Hunting Platform enables organizations to target, hunt, and disrupt advanced cyber threats. Sqrrl unites link analysis, User and Entity Behavior Analytics (UEBA), and multi-petabyte scalability capabilities into an integrated solution. Sqrrl reduces attacker dwell time by detecting adversarial behavior faster and with fewer resources through the use of machine learning, and enables effective threat hunting. As an incident response tool, it enables analysts to investigate the scope, impact, and root cause of an incident more efficiently and thoroughly than ever before.

Offer
See Devo in Action

See how Devo allows you to free yourself from data management, and make machine data and insights accessible.

Learn more about RSA NetWitness Logs and Packets (RSA SIEM)
Learn more about SQRRL
Sample Customers
United States Air Force, Rubrik, Critical Start, NHL, Panda Security, Telefonica, CaixaBank, OpenTextLos Angeles World Airports, ReplyAmazon, CA, Cloudera, Dell, Eucalyptus, Fusion-io, Hortonworks, IBM, MapR, Nutanix, Pentaho, Pivotal, Splunk, Cyphort
Top Industries
VISITORS READING REVIEWS
Computer Software Company27%
Comms Service Provider24%
Financial Services Firm6%
Government6%
REVIEWERS
Comms Service Provider33%
Financial Services Firm33%
Computer Software Company22%
Healthcare Company11%
VISITORS READING REVIEWS
Computer Software Company36%
Comms Service Provider22%
Financial Services Firm5%
Government5%
No Data Available
Company Size
VISITORS READING REVIEWS
Small Business48%
Midsize Enterprise14%
Large Enterprise38%
REVIEWERS
Small Business24%
Midsize Enterprise18%
Large Enterprise59%
No Data Available
Find out what your peers are saying about Splunk, IBM, Securonix Solutions and others in Security Information and Event Management (SIEM). Updated: January 2021.
456,719 professionals have used our research since 2012.

RSA NetWitness Logs and Packets (RSA SIEM) is ranked 10th in Security Information and Event Management (SIEM) with 12 reviews while SQRRL is ranked 37th in Security Information and Event Management (SIEM). RSA NetWitness Logs and Packets (RSA SIEM) is rated 7.0, while SQRRL is rated 0.0. The top reviewer of RSA NetWitness Logs and Packets (RSA SIEM) writes "Good support, powerful decoders and concentrator, but the dashboard is not reflecting events in real-time ". On the other hand, RSA NetWitness Logs and Packets (RSA SIEM) is most compared with IBM QRadar, Splunk, ArcSight Enterprise Security Manager (ESM), LogRhythm NextGen SIEM and RSA enVision, whereas SQRRL is most compared with IBM QRadar and Splunk.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.