RSA NetWitness Logs and Packets (RSA SIEM) Primary Use Case

RamneshDubey
Senior Cyber Security Specialist at a computer software company with 10,001+ employees
We are a service providing company and this is one of the products that we implement for our clients. The RSA NetWitness Logs and Packets solution is used for Event Stream Analysis (ESA), and we implement use cases based on our customers' needs. For example, suppose the security device is a Palo Alto device then at the policy level, we implement the use cases. These might be things like phishing attacks or a botnet. Most companies follow the GDPR regulations for compliance. We have RSA NetWitness implemented in virtual appliances. View full review »
Hubert Luberek
Information Technology Security Architect at a financial services firm with 5,001-10,000 employees
We use the on-premise deployment model of this solution. Our primary use case of this solution is for malware detection and for reconstruction during the incident and forensic analysis. View full review »
VishalGilatar
IT Security Head with 1,001-5,000 employees
The RSA NetWitness Logs and Packets solution was set up as part of the SOC. It is set up on two sides. One is for the Data Center (DC) side, and the other is for the Disaster Recovery (DR) side. View full review »
Learn what your peers think about RSA NetWitness Logs and Packets (RSA SIEM). Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
442,986 professionals have used our research since 2012.
Maor Hojberg
Team Leader & Head of MSSP at We Ankor
We are no longer using this solution, however, it was used mostly for network monitoring. View full review »
reviewer1372137
IT and Cybersecurity Professional at a financial services firm
Our primary use case is real-time threat prediction so that we can minimize the person-hours of IT security analysts. View full review »
reviewer1308300
Information Securuty Analyst at a tech services company with 11-50 employees
I am currently working in a security operations center and RSA NetWitness Log and Packets is part of our security solution. We use it for log management and anomaly identification. It is used for compliance as well because it has a log archiving capability that will span at least a couple of years. We are also using it to facilitate monitoring and research. View full review »
AdrianMache
RSA Specialist at a computer software company with 1,001-5,000 employees
Our customers are enterprise-level businesses. View full review »
Maurizio Testa
Security Engineer/Architect at Telecom Italia
We are a solution provider and RSA NetWitness is one of the products that we implement for our clients. We also use it ourselves, They primarily use it for threat protection. View full review »
Maor Hojberg
Team Leader & Head of MSSP at We Ankor
We use it as a network tool to alert any anomalies on the network. View full review »
Allan Vargas
IT security specialist at a comms service provider with 201-500 employees
Our primary use case is for the administration of the internal network. View full review »
Pasupuelepi Ram
Analyst at Microland Limited
The primary use case of this solution is for security. We use the UEBA tool. View full review »
SrManagee3c6
Sr Manager InfoSecurity at a healthcare company with 10,001+ employees
We don't have a primary use case. There are many use cases that we have defined based on business needs. View full review »
Allan Vargas
IT security specialist at a comms service provider with 201-500 employees
Our primary use case is for detecting or monitoring the process that we use in devices, servers, or databases. View full review »
Learn what your peers think about RSA NetWitness Logs and Packets (RSA SIEM). Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
442,986 professionals have used our research since 2012.