RSA NetWitness Logs and Packets (RSA SIEM) Valuable Features

RamneshDubey
Senior Cyber Security Specialist at a computer software company with 10,001+ employees
The most valuable features are the packet decoder, log decoder, and concentrator. The packet decoder is capable of collecting the flow, whereas the log decoder is capable of collecting the event. NetWitness offers a hybrid solution that collects both and also uses the concentrator. View full review »
VishalGilatar
IT Security Head with 1,001-5,000 employees
The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it. With some other solutions, creating custom connectors is very costly. The dashboard is very simple to use. View full review »
Maor Hojberg
Team Leader & Head of MSSP at We Ankor
The most valuable feature is the ability to write rules and triggers for network communication and then being able to investigate based on that. You can see the payload and deconstruct the packets. View full review »
Learn what your peers think about RSA NetWitness Logs and Packets (RSA SIEM). Get advice and tips from experienced pros sharing their opinions. Updated: February 2021.
465,339 professionals have used our research since 2012.
reviewer1372137
IT and Cybersecurity Professional at a financial services firm
The most valuable features are the threat prediction and network forensics. For example, if there is any malware on the network, I am able to see who received it and who clicked on it. I like this functionality the most. The deployment of the appliance is easy, where even a non-technical person can configure it. View full review »
reviewer1308300
Information Securuty Analyst at a tech services company with 11-50 employees
Performance and reporting are very good. View full review »
AdrianMache
RSA Specialist at a computer software company with 1,001-5,000 employees
The most valuable features are the integration and ease of use. It is a pretty simple platform that can integrate very well with our system. View full review »
reviewer1442106
Associate Manager Human Resources at a financial services firm with 1,001-5,000 employees
The most valuable features are the packet inspection and the automated incident response. View full review »
Maurizio Testa
Security Engineer/Architect at Telecom Italia
The most valuable feature is the security that it provides. The log-related capabilities are good. It integrates well with other risk-assessment tools. View full review »
Allan Vargas
IT security specialist at a comms service provider with 201-500 employees
The protection that we get from the firewall is the most valuable aspect that we get from this solution. View full review »
Pasupuelepi Ram
Analyst at Microland Limited
What we are mainly using are the RSA Concentrator, RSA Decoder, Archiver, Broker, and Log Decoder. View full review »
SrManagee3c6
Sr Manager InfoSecurity at a healthcare company with 10,001+ employees
The most valuable features are its * ingestion of logs * raising of alerts based on those logs. View full review »
Learn what your peers think about RSA NetWitness Logs and Packets (RSA SIEM). Get advice and tips from experienced pros sharing their opinions. Updated: February 2021.
465,339 professionals have used our research since 2012.