Elastic SIEM Primary Use Case

reviewer1341687
Director of Engineering at a tech services company with 201-500 employees
We want to track and to respond to our security incidents. That's the main reason we use it, to analyze and see like what all the incidents that are happening. We also deploy it for some of our clients. View full review »
reviewer1393731
Consultant at a computer software company with 1,001-5,000 employees
This is a log aggregation tool and we are using it for security purposes. There are 145 pre-built use cases, but we are still making some ourselves. One we built is an alarm for log deletion. For example, if a hacker tries to delete the log from a bank machine then it will raise an alarm immediately. A second use case is an alert for too many false login attempts, perhaps indicating a brute-force attack. View full review »
reviewer1269834
I.T. Manager at a healthcare company with 51-200 employees
We plan to use it to analyze the data that we're pumping into it from Active Directory and from firewalls, then we'll pass that information onto our own external SOC. View full review »
Find out what your peers are saying about Elastic, Splunk, Fortinet and others in Security Information and Event Management (SIEM). Updated: October 2020.
443,152 professionals have used our research since 2012.
reviewer1331592
CEO at a tech services company with 51-200 employees
We use Elastic SIEM for security and analytics. View full review »
reviewer1247235
Cyber Security Consultant at a tech services company with 51-200 employees
Elastic SIEM is used to monitor and deal with system log files. View full review »
Find out what your peers are saying about Elastic, Splunk, Fortinet and others in Security Information and Event Management (SIEM). Updated: October 2020.
443,152 professionals have used our research since 2012.