RSA NetWitness Logs and Packets (RSA SIEM) Valuable Features

RamneshDubey
Senior Cyber Security Specialist at a software R&D company with 10,001+ employees
The most valuable features are the packet decoder, log decoder, and concentrator. The packet decoder is capable of collecting the flow, whereas the log decoder is capable of collecting the event. NetWitness offers a hybrid solution that collects both and also uses the concentrator. View full review »
reviewer1263441
IT Security Head with 1,001-5,000 employees
The most valuable feature is that we can create our own connectors for any application, and NetWitness provides the training and tools to do it. With some other solutions, creating custom connectors is very costly. The dashboard is very simple to use. View full review »
Maor Hojberg
Team Leader & Head of MSSP at We Ankor
The most valuable feature is the ability to write rules and triggers for network communication and then being able to investigate based on that. You can see the payload and deconstruct the packets. View full review »
Find out what your peers are saying about RSA, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: March 2020.
408,459 professionals have used our research since 2012.
reviewer1308300
Information Securuty Analyst at a tech services company with 11-50 employees
Performance and reporting are very good. View full review »
AdrianMache
RSA Specialist at a software R&D company with 1,001-5,000 employees
The most valuable features are the integration and ease of use. It is a pretty simple platform that can integrate very well with our system. View full review »
Maor Hojberg
Team Leader & Head of MSSP at We Ankor
It gives the ability to investigate into network traffic in the Net and the organization what we couldn't do before. View full review »
Allan Vargas
IT security specialist at a comms service provider with 201-500 employees
The protection that we get from the firewall is the most valuable aspect that we get from this solution. View full review »
SrManagee3c6
Sr Manager InfoSecurity at a healthcare company with 10,001+ employees
The most valuable features are its * ingestion of logs * raising of alerts based on those logs. View full review »
Allan Vargas
IT security specialist at a comms service provider with 201-500 employees
The most valuable feature is the correlation. It can report in real-time and monitor the management. View full review »
Find out what your peers are saying about RSA, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: March 2020.
408,459 professionals have used our research since 2012.