Securonix Security Analytics Reviews
May 28 2019
What is most valuable?There are a number of things that are very useful. What I like most is that the threat models and risk scoring are very accurate and very helpful to the analysts on my… more»
How has it helped my organization?In terms of detecting cyber and insider threats, my primary focus is insider threats. It's excellent at that. The ability for the system to detect events is incumbent upon… more»
What needs improvement?A helpful feature would be an event export. A way to create more substantial summary reports would be nice.
What's my experience with pricing, setup cost, and licensing?We have an annual license. We pay $200,000 for the base licensing and we pay another $50,000 for the software as a service. In terms of any additional costs, it depends on… more»
Which solution did I use previously and why did I switch?We used ArcSight. The IT department had ArcSight deployed as a SIEM, so that was the system I used to create lists like top-ten emails to competitor domains, top-ten… more»
What other advice do I have?The single thing I recommend most is understanding your environment and being able to articulate the risk and threat models. Securonix is very good now, better than when… more»
Which other solutions did I evaluate?We looked at a product from Lockheed Martin which was very analyst-centered. It produced a lot of CSV files as output and required having an analyst who could really pull… more»
Oct 23 2019
What is most valuable?The most valuable feature is being able to look at users' behavioral profiles to see what they typically access. One of the key events that we monitor is people's… more»
How has it helped my organization?We've seen a couple of circumstances where people accessed data, especially in our internal application, and we weren't sure how they did it, because they shouldn't have… more»
What needs improvement?It's tough in some cases for the solution to do it, but we have a lot of users who, because they're engineers and they're bringing down product data - where, at times, a… more»
What's my experience with pricing, setup cost, and licensing?I can't say anything from a numbers standpoint, but we went in on a three-year agreement which has an annual licensing fee, based upon the number of people that we're… more»
Which solution did I use previously and why did I switch?We didn't have a previous solution. On our homegrown system, we made a little bit of a homegrown solution, but the only thing it did was that if somebody had a high number… more»
What other advice do I have?The best advice is to make sure that you understand your use cases. For example, we said we want it to trap a high number of downloads, we want to see if people downloaded… more»
Which other solutions did I evaluate?We did evaluate other options. The main competitor was Exabeam. My manager was the one who did a lot of the investigation of the various tools. At the time, the… more»
Find out what your peers are saying about Securonix Solutions, Splunk, Exabeam and others in Security Information and Event Management (SIEM). Updated: January 2020.
390,810 professionals have used our research since 2012.
Sep 11 2019
What is most valuable?When we were looking for products for our security monitoring needs, our biggest requirement was that we wanted something based on machine-learning and analytics. If you… more»
How has it helped my organization?The solution's behavior analytics, in terms of detecting cyber and insider threats, are very effective. We are getting actionable results. When I say actionable results… more»
What needs improvement?The UX could be simpler. I know they're working on it. I would like to have one dashboard that has everything in it. We have compliance needs. We have investigation needs… more»
What's my experience with pricing, setup cost, and licensing?A good thing about Securonix is that they don't charge by volume of data or number of devices. I don't have to think twice about what I bring into the system. That was a… more»
Which solution did I use previously and why did I switch?We used QRadar. We switched to Securonix because we wanted something in the cloud. There was just too much work to maintain the previous system. Second, we wanted… more»
What other advice do I have?If you're looking for an analytics-based system, which is what everybody should look at, and if you are thinking of something that provides a quick return on investment… more»
Which other solutions did I evaluate?Rapid7 was one we looked at because it is also cloud-based. From a SIEM perspective, it was not where we expected it to be. We also looked at Splunk but it was too… more»
Aug 15 2019
What is most valuable?* The feature that is most valuable is the fact that it's an open platform, so it allows us to modify policies and tune policies as needed. * There's also a feature called Data Insights which allows… more»
How has it helped my organization?The areas where behavior analytics helps in terms of advanced threats are around some of the rarity-based policies. An example would be if someone is logging in to a machine for the first time… more»
What needs improvement?Securonix implements risk scores based on different policies that are triggered. We've seen some challenges with the risk scores and how they trigger. These are things that Securonix has recognized… more»
Which solution did I use previously and why did I switch?We piloted Exabeam but we didn't go forward with them.
What other advice do I have?From a positive standpoint, with Securonix, or with any UEBA vendor, but specifically Securonix as that's the one that we're using, it definitely overcomes a lot of the challenges with trying to… more»
Which other solutions did I evaluate?We piloted Exabeam but we didn't go forward with them. We looked a little bit at LogRhythm's UEBA capability as well. At the time they were in the beta stages, so we didn't feel comfortable going with… more»
Oct 17 2019
Employee exit report helps us take preventive measures while cloud monitoring gives us SharePoint and Azure visibility
What is most valuable?One of the most valuable features it has is the threat chaining. One of the common issues that we always had was the number of anomalies that we used to get and the number of alerts that we used to… more»
How has it helped my organization?One example of how it has helped our organization is with people who are exiting. We had a lot of issues when people were leaving the organization regarding what documents they were taking and what… more»
What needs improvement?One of the things they can improve on a little bit is the usability side, to make some things simpler. Maybe it's because of their customer base, but the tool does have a lot of knobs, you can turn a… more»
What's my experience with pricing, setup cost, and licensing?We have an annual cloud license. We have a license from our 5.0, so that license just continued. We paid them the extra cloud-hosting costs for a year which were about $300,000. That's basically the… more»
Which solution did I use previously and why did I switch?We used ArcSight. We started off by using ArcSight and Securonix in parallel. Over the years, once Securonix came up with the cloud offering, that was our main pivot point to move to Securonix. There… more»
What other advice do I have?My advice is that you should want the new, best product. I don't want to say there is no other way, but it scales and it works. If you don't have the manpower, if you don't have the technical skills… more»
May 28 2019
With a lot of data in one console, the time we require to investigate alerts and threats has decreased
What is most valuable?The customizability of the tool is valuable. We are able to customize the use cases and create them easily without a large amount of Securonix assistance. It's very… more»
How has it helped my organization?The behavior analytics of Securonix has helped to prioritize advanced threats for us. We're still working through it, but it has helped. For example, it enables us to… more»
What needs improvement?Other than issues with the training, there have been issues with the encryption. There have also been issues with some of the reporting, minor glitches that they have… more»
What's my experience with pricing, setup cost, and licensing?We pay yearly.
Which solution did I use previously and why did I switch?We did not have a previous solution.
What other advice do I have?The biggest lesson we have learned from using Securonix is to start small. Don't throw everything at it. Start with one single use case and build out. Don't throw all the… more»
Which other solutions did I evaluate?We did a PoC between two solutions and we chose Securonix. The other solution was Exabeam. One of the reasons we went with it is that someone had used Securonix at a… more»
Aug 22 2019
Identifies threats that would not have otherwise been identified, but needs better integration with ServiceNow
What is most valuable?The machine-learning algorithms are the most valuable feature because they're able to identify the "needle in the haystack." Also, the solution's behavior analytics in terms of detecting cyber and… more»
How has it helped my organization?It's helped identify risky and/or malicious behavior that otherwise would probably have been overlooked. An example would be flight-risk behavior, meaning employees who are planning to leave the firm… more»
What needs improvement?There is room for improvement in the product's integration with ServiceNow and in the reporting features.
Which solution did I use previously and why did I switch?We did not have a previous solution.
What other advice do I have?I'm not an engineer, I'm a consumer of the tool. It's doing what it's been asked to do. It's really all about use cases and having the data. You have to have your use cases well-defined and make sure… more»
Which other solutions did I evaluate?The only other solution that I believe we looked at was Splunk's UBA. It wasn't Splunk at the time and it wasn't mature enough at the time.
User Assessments By Topic About Securonix Security Analytics
Securonix Security Analytics Questions
What is Securonix Security Analytics?
SNYPR is a next-generation security analytics platform that transforms big data into actionable security intelligence. Built on a Hadoop big data security lake, SNYPR combines an open data model, log management, security incident and event management (SIEM), user and entity behavior analytics (UEBA) and fraud detection into a complete, end-to-end platform that can be deployed in its entirety or in flexible, modular components.
Also known asSecuronix
Securonix Security Analytics customers