RSA NetWitness Logs and Packets (RSA SIEM) Valuable Features

Maor Hojberg
Team Leader & Head of MSSP at We Ankor
The most valuable feature is the ability to write rules and triggers for network communication and then being able to investigate based on that. You can see the payload and deconstruct the packets. View full review »
Elias Lefate Tebele
ACD - Level 3 Analyst at a tech services company with 10,001+ employees
* Packet Solution: Allows analyst proactive hunting and alerting on daily sophisticated APTs. * Broker service: Aggregate multiple concentrator devices deployed in various sites which accelerates analyst’s duties. * Archiver – Does log retention for three to five years for forensics purposes or targeted investigations in the future. View full review »
Maor Hojberg
Team Leader & Head of MSSP at We Ankor
It gives the ability to investigate into network traffic in the Net and the organization what we couldn't do before. View full review »
Allan Vargas
IT security specialist at a comms service provider with 201-500 employees
The protection that we get from the firewall is the most valuable aspect that we get from this solution. View full review »
SrManagee3c6
Sr Manager InfoSecurity at a healthcare company with 10,001+ employees
The most valuable features are its * ingestion of logs * raising of alerts based on those logs. View full review »
Allan Vargas
IT security specialist at a comms service provider with 201-500 employees
The most valuable feature is the correlation. It can report in real-time and monitor the management. View full review »

Sign Up with Email