RSA NetWitness Logs and Packets (RSA SIEM) vs Symantec Advanced Threat Protection

RSA NetWitness Logs and Packets (RSA SIEM) is ranked 5th in Advanced Threat Protection with 3 reviews vs Symantec Advanced Threat Protection which is ranked 8th in Advanced Threat Protection with 1 review. The top reviewer of RSA NetWitness Logs and Packets (RSA SIEM) writes "We can investigate incidents based on logs and raw packets". The top reviewer of Symantec Advanced Threat Protection writes "Real-time threat analysis is quick, takes action immediately". RSA NetWitness Logs and Packets (RSA SIEM) is most compared with Splunk, IBM QRadar and ArcSight. Symantec Advanced Threat Protection is most compared with FireEye, Palo Alto Networks WildFire and Proofpoint Enterprise Protection.
Cancel
You must select at least 2 products to compare!
+Add products to compare
Most Helpful Review
Use Symantec Advanced Threat Protection? Share your opinion.
Advanced threat protection report from it central station 2018 05 05 thumbnail
Find out what your peers are saying about Palo Alto Networks, CyberArk, FireEye and others in Advanced Threat Protection.
270,485 professionals have used our research since 2012.

Quotes From Members Comparing RSA NetWitness Logs and Packets (RSA SIEM) vs Symantec Advanced Threat Protection

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
Pros
Alerting Module: It provides real-time event processing language on all the logs/packets stream for advanced alerting, i.e., using SQL LIKE statements.Possibility to investigate incidents based on logs and raw packets, such as extracting files sent over the network

Read more »

Real-time threat analysis is quick and takes action on threats immediately.The great advantage in using this product is it creates multiple services.Currently we have 800-plus nodes connected with this solution, without any issues. The solution is scalable.

Read more »

Cons
Health monitoring of the event sources and devices.The system architecture is complex and sometimes it’s hard to troubleshoot potential problems.

Read more »

There are some ‎features that would add value to this product. One of them would be a graphical presentation of threats that the system has encountered.It should be able to collect information if the agent is disabled.It also needs network-based threat protection for shared folders and files.

Read more »

Pricing and Cost Advice
The new pricing and licensing mechanisms are fair. I would advise always to get the full solution (i.e., not only Logs).It’s cheaper to run virtual machines in a VMware environment.

Read more »

Pricing is good. It is nice to have a great product at a fair price.

Read more »

Advanced threat protection report from it central station 2018 05 05 thumbnail
Find out what your peers are saying about Palo Alto Networks, CyberArk, FireEye and others in Advanced Threat Protection.
270,485 professionals have used our research since 2012.
Ranking
RANKING
Views
6,371
Comparisons
4,416
Reviews
3
Followers
901
Avg. Rating
7.7
Views
3,534
Comparisons
2,954
Reviews
1
Followers
361
Avg. Rating
8.0
Top Comparisons
Top ComparisonsSee more RSA NetWitness Logs and Packets (RSA SIEM) competitors »See more Symantec Advanced Threat Protection competitors »
Also Known As
Also Known AsRSA Security Analytics
Website/Video
Website/VideoRSA
  • Vendor 7910 screenshot 1526975413
Symantec
  • Vendor 8074 screenshot 1524948548
OverviewQuestionmark icon
Overview

If you’re relying on log data to detect and prevent cyber threats, you’re in trouble. Attackers increasingly evade detection of log-centric security and network monitoring tools. But logs combined with full packet, endpoint NetFlow data are proven to provide the essential details for early threat detection. Here’s a closer look at our solution.

Symantec Advanced Threat Protection is a single unified solution that uncovers, prioritizes, and remediates advanced attacks. The product fuses intelligence from endpoint, network, and email control points, as well as Symantec’s massive global sensor network, to stop threats that evade individual security products. It leverages your existing Symantec Endpoint Protection and Symantec Email Security.cloud investments, so it does not require the deployment of any new agents. You can deploy a new installation of Symantec Advanced Threat Protection and start to discover suspicious activity in under an hour. Using the proven technology in Symantec Insight reputation based detection, Symantec SONAR behavioral analysis with the new Symantec Cynic sandbox and file analysis platform, Symantec Advanced Threat Protection provides better detection and prioritization than other vendors, allowing security analysts to “zero in” on just those specific security events of importance.

OFFER
Learn more about RSA NetWitness Logs and Packets (RSA SIEM)
Learn more about Symantec Advanced Threat Protection
Sample Customers
Sample CustomersLos Angeles World Airports, ReplyECI
Top IndustriesQuestionmark icon
Top Industries
VISITORS READING REVIEWS
Financial Services Firm
20%
Energy/Utilities Company
16%
Comms Service Provider
15%
Retailer
13%
No Data Available
Company SizeQuestionmark icon
Company Size
VISITORS READING REVIEWS
Small Business
18%
Midsize Enterprise
20%
Large Enterprise
63%
No Data Available
Advanced threat protection report from it central station 2018 05 05 thumbnail
Find out what your peers are saying about Palo Alto Networks, CyberArk, FireEye and others in Advanced Threat Protection.
Download now
270,485 professionals have used our research since 2012.
We monitor all Advanced Threat Protection reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.

Sign Up with Email