NetIQ Sentinel Competitors and Alternatives

The top NetIQ Sentinel competitors are
  • Splunk
  • ArcSight
  • IBM QRadar
Read reviews of NetIQ Sentinel competitors and alternatives
ArcSight Logo
Micro Focus
it_user256617
Real User
Sales Engineer at a tech services company with 1,001-5,000 employees
Jan 29 2017

What is most valuable?

It is easy to use when we created some dashboards for analytics. ArcSight allows you to create a dashboard and provides... more»

How has it helped my organization?

It makes things easy when I create a new alert.

What needs improvement?

They need to improve the Web UI, similar to how it is done with Splunk. ArcSight is still using a Java app to do... more»

What's my experience with pricing, setup cost, and licensing?

The licensing should come with EPS format, and not with EPD format.

Which other solutions did I evaluate?

We previously used RSA enVision. We had issues with the report generation.

What other advice do I have?

You need to first know the SIEM concept. SIEM can grow significantly, so you need to understand how to use a collector... more»
Mathieu Dorckel
Consultant
Cybersecurity Engineer Consultant at a tech services company with 501-1,000 employees
Jun 11 2018

What is most valuable?

The correlation and the parsing are important features, since it is very important for a SIEM to have a good... more»

How has it helped my organization?

Previously, we had to do a lot of debugging when we wanted to change our firewall policy to find out which rule was... more»

What needs improvement?

The weak signal detection with QRadar needs improvement. You can detect what you know, but what is unknown to the rule... more»

What's my experience with pricing, setup cost, and licensing?

Think what you will integrate into QRadar. It is a SIEM. You need to send it logs, but not everything. Pricing (based... more»

Which other solutions did I evaluate?

My service since the beginning has been to only sell and manage QRadar.

What other advice do I have?

Think scalability and make sure your product can be integrate into QRadar.
Splunk Logo
Splunk
reviewer859770
User
consultant at a non-profit with 1,001-5,000 employees
Apr 24 2018

What is most valuable?

Personally, I like the capability of removing sensitive data before it goes into Splunk. I also like the ease with which dashboards can be created.

How has it helped my organization?

Splunk has give us the capability to easily track problems and their status. Our security operations team has been able to use it to track where people login and what they do on those machines.

What needs improvement?

I like Splunk. The only thing which can be improved is that they are too subjective on whom their Splunk4Good initiative can be applied. They market it as you only need to be a nonprofit, but there is more to it.

Sign Up with Email