RSA NetWitness Logs and Packets (RSA SIEM) Competitors and Alternatives

Read reviews of RSA NetWitness Logs and Packets (RSA SIEM) competitors and alternatives
Splunk
User
Sr. Production Support Analyst at a energy/utilities company with 501-1,000 employees
Apr 24 2018

What do you think of Splunk?

Primary Use Case Operational intelligence monitoring for several different systems. We collect logs from applications and performance data from hardware, as well as information pulled from databases. • Improvements to My Organization The ability to quickly search logs, performance data, and other inputs has helped tremendously with troubleshooting. The visualizations are easy and well received by business and management users.  • Valuable Features It is ease to integrate with other solutions, like Slack, JIRA, Remedy, etc.  • Use of Solution Three to five years. • Customer Service and Technical Support The user community is extremely beneficial, particularly with Splunk Answers and the Slack User Groups. • Pricing, License Cost and Setup The licensing model can...
AlienVault
Real User
IT Systems Administrator at a financial services firm with 201-500 employees
Dec 14 2017

What is most valuable?

The most useful feature is the customization for alarms, alerts, and reports. AlienVault is situated to be adapted and changed to meet many different needs and use cases, but still being effective at most of them.

How has it helped my organization?

It has streamlined log aggregation and analysis to meet organizational and regulatory needs.

What needs improvement?

Reporting and Windows log collection is the biggest drawback. Reporting is convoluted and difficult at times, although they claim to have hundreds of pre-built reports, very few of them are actually useful for anything but what the USM is... more»
Real User
Group CIO at a tech services company with 501-1,000 employees
Apr 06 2017

What is most valuable?

We are using this SIEM solution, which is pretty good in terms of detecting threats and managing the intelligence for us.

How has it helped my organization?

It gives us more visibility in terms of the threat surface and to proactively look at mitigation measurements, in terms of managing our risks. As our side business is increasing, it gives us a better way to handle of things.

What needs improvement?

In the next release, I obviously would want to see more integration to the cloud-based services such as Microsoft Azure and the other line of business applications, so that we have a comprehensive view on a hybrid cloud stack.

Sign Up with Email