Securonix Security Analytics Reviews
Securonix Security Analytics is the #1 ranked solution of our top User Behavior Analytics - UEBA tools. It's rated 4.4 out of 5 stars, and is most commonly compared to Splunk - Securonix Security Analytics vs Splunk
- Highest Rating
- Lowest Rating
- Review Length
Showingreviews based on the current filters.
May 28 2019
What is most valuable?There are a number of things that are very useful. What I like most is that the threat models and risk scoring are very accurate and very helpful to the analysts on my… more »
How has it helped my organization?In terms of detecting cyber and insider threats, my primary focus is insider threats. It's excellent at that. The ability for the system to detect events is incumbent upon… more »
What needs improvement?A helpful feature would be an event export. A way to create more substantial summary reports would be nice.
What's my experience with pricing, setup cost, and licensing?We have an annual license. We pay $200,000 for the base licensing and we pay another $50,000 for the software as a service. In terms of any additional costs, it depends on… more »
Which solution did I use previously and why did I switch?We used ArcSight. The IT department had ArcSight deployed as a SIEM, so that was the system I used to create lists like top-ten emails to competitor domains, top-ten… more »
What other advice do I have?The single thing I recommend most is understanding your environment and being able to articulate the risk and threat models. Securonix is very good now, better than when… more »
Which other solutions did I evaluate?We looked at a product from Lockheed Martin which was very analyst-centered. It produced a lot of CSV files as output and required having an analyst who could really pull… more »
Oct 23 2019
What is most valuable?The most valuable feature is being able to look at users' behavioral profiles to see what they typically access. One of the key events that we monitor is people's… more »
How has it helped my organization?We've seen a couple of circumstances where people accessed data, especially in our internal application, and we weren't sure how they did it, because they shouldn't have… more »
What needs improvement?It's tough in some cases for the solution to do it, but we have a lot of users who, because they're engineers and they're bringing down product data - where, at times, a… more »
What's my experience with pricing, setup cost, and licensing?I can't say anything from a numbers standpoint, but we went in on a three-year agreement which has an annual licensing fee, based upon the number of people that we're… more »
Which solution did I use previously and why did I switch?We didn't have a previous solution. On our homegrown system, we made a little bit of a homegrown solution, but the only thing it did was that if somebody had a high number… more »
What other advice do I have?The best advice is to make sure that you understand your use cases. For example, we said we want it to trap a high number of downloads, we want to see if people downloaded… more »
Which other solutions did I evaluate?We did evaluate other options. The main competitor was Exabeam. My manager was the one who did a lot of the investigation of the various tools. At the time, the… more »
Learn what your peers think about Securonix Security Analytics. Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
439,184 professionals have used our research since 2012.
Sep 11 2019
What is most valuable?When we were looking for products for our security monitoring needs, our biggest requirement was that we wanted something based on machine-learning and analytics. If you… more »
How has it helped my organization?The solution's behavior analytics, in terms of detecting cyber and insider threats, are very effective. We are getting actionable results. When I say actionable results… more »
What needs improvement?The UX could be simpler. I know they're working on it. I would like to have one dashboard that has everything in it. We have compliance needs. We have investigation needs… more »
What's my experience with pricing, setup cost, and licensing?A good thing about Securonix is that they don't charge by volume of data or number of devices. I don't have to think twice about what I bring into the system. That was a… more »
Which solution did I use previously and why did I switch?We used QRadar. We switched to Securonix because we wanted something in the cloud. There was just too much work to maintain the previous system. Second, we wanted… more »
What other advice do I have?If you're looking for an analytics-based system, which is what everybody should look at, and if you are thinking of something that provides a quick return on investment… more »
Which other solutions did I evaluate?Rapid7 was one we looked at because it is also cloud-based. From a SIEM perspective, it was not where we expected it to be. We also looked at Splunk but it was too… more »
Aug 15 2019
What is most valuable?* The feature that is most valuable is the fact that it's an open platform, so it allows us to modify policies and tune policies as needed. * There's also a feature called Data Insights which allows… more »
How has it helped my organization?The areas where behavior analytics helps in terms of advanced threats are around some of the rarity-based policies. An example would be if someone is logging in to a machine for the first time… more »
What needs improvement?Securonix implements risk scores based on different policies that are triggered. We've seen some challenges with the risk scores and how they trigger. These are things that Securonix has recognized… more »
Which solution did I use previously and why did I switch?We piloted Exabeam but we didn't go forward with them.
What other advice do I have?From a positive standpoint, with Securonix, or with any UEBA vendor, but specifically Securonix as that's the one that we're using, it definitely overcomes a lot of the challenges with trying to… more »
Which other solutions did I evaluate?We piloted Exabeam but we didn't go forward with them. We looked a little bit at LogRhythm's UEBA capability as well. At the time they were in the beta stages, so we didn't feel comfortable going with… more »
Oct 17 2019
Employee exit report helps us take preventive measures while cloud monitoring gives us SharePoint and Azure visibility
What is most valuable?One of the most valuable features it has is the threat chaining. One of the common issues that we always had was the number of anomalies that we used to get and the number of alerts that we used to… more »
How has it helped my organization?One example of how it has helped our organization is with people who are exiting. We had a lot of issues when people were leaving the organization regarding what documents they were taking and what… more »
What needs improvement?One of the things they can improve on a little bit is the usability side, to make some things simpler. Maybe it's because of their customer base, but the tool does have a lot of knobs, you can turn a… more »
What's my experience with pricing, setup cost, and licensing?We have an annual cloud license. We have a license from our 5.0, so that license just continued. We paid them the extra cloud-hosting costs for a year which were about $300,000. That's basically the… more »
Which solution did I use previously and why did I switch?We used ArcSight. We started off by using ArcSight and Securonix in parallel. Over the years, once Securonix came up with the cloud offering, that was our main pivot point to move to Securonix. There… more »
What other advice do I have?My advice is that you should want the new, best product. I don't want to say there is no other way, but it scales and it works. If you don't have the manpower, if you don't have the technical skills… more »
Mar 25 2020
Puts a lot of contextual information into the events, eliminating individual searches and reducing case research time
What is most valuable?The most important feature is for it to be reliable and scalable so it is able to ingest the amount of logs we need in a timely manner, and then make those logs available to us for search in a very quick, reliable way. Also, since it is capable of doing UEBA — the anomaly detection, with… more »
How has it helped my organization?The benefit we've seen is in reducing the number of alerts from stuff that we can tune out easily. Previously, in the solution we used, there wasn't that flexibility, so we received a lot of alerts that we knew were false positives that we easily just dismissed. But it took somebody's time to look… more »
What needs improvement?Some of the user experience when doing threat-hunting, such as being able to see multiple types of analytics from different log sources in one view, would be beneficial. Right now, there are some limitations around that. So some of the user experience when doing threat-hunting could be improved… more »
What other advice do I have?I would say Securonix is a nine out of 10. The core functionality is the best that I've seen in the market. Being able to execute on ingesting logs, building alerts, looking at anomalies, providing fast search, and being able to provide an extensive history available to search is a huge win for us… more »
May 28 2019
With a lot of data in one console, the time we require to investigate alerts and threats has decreased
What is most valuable?The customizability of the tool is valuable. We are able to customize the use cases and create them easily without a large amount of Securonix assistance. It's very… more »
How has it helped my organization?The behavior analytics of Securonix has helped to prioritize advanced threats for us. We're still working through it, but it has helped. For example, it enables us to… more »
What needs improvement?Other than issues with the training, there have been issues with the encryption. There have also been issues with some of the reporting, minor glitches that they have… more »
What's my experience with pricing, setup cost, and licensing?We pay yearly.
Which solution did I use previously and why did I switch?We did not have a previous solution.
What other advice do I have?The biggest lesson we have learned from using Securonix is to start small. Don't throw everything at it. Start with one single use case and build out. Don't throw all the… more »
Which other solutions did I evaluate?We did a PoC between two solutions and we chose Securonix. The other solution was Exabeam. One of the reasons we went with it is that someone had used Securonix at a… more »
Mar 18 2020
What is most valuable?I see Securonix as a full-featured SIEM. I was looking for a SIEM tool that has traditional SIEM as well as UEBA, and found Securonix to be a good fit for our company, Avalara. Another good thing is that I was looking to move away from tool management. I was looking for software as a service rather than having issues with managing hardware, upgrades, updates. I was trying to step away from that… more »
What needs improvement?There is slight room for improvement in terms of the initial deployment. What I see is that Securonix is more focused on their product. They are expanding, in a big way, the number of customers. So there has to be a number of dedicated teams to jump on and speed up the deployment process. We would like to partner with different teams that can implement and deploy it faster, whose only job is just… more »
What other advice do I have?I would rate the product at eight out of 10 right now, because there are scopes for improvement, operationally as well as technically. But they have definitely come a long way in a very short time, so I really give them eight-plus. There's definitely some scope for improvement operationally, and there are some technical features which need to be added.
See 2 More Securonix Security Analytics Reviews
What is Securonix Security Analytics?
SNYPR is a next-generation security analytics platform that transforms big data into actionable security intelligence. Built on a Hadoop big data security lake, SNYPR combines an open data model, log management, security incident and event management (SIEM), user and entity behavior analytics (UEBA) and fraud detection into a complete, end-to-end platform that can be deployed in its entirety or in flexible, modular components.
Also known asSecuronix
Securonix Security Analytics customers
Download our free Securonix Security Analytics Report and get advice and tips from experienced pros sharing their opinions.
- Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?
- Which is the best SIEM solution for a government organization?
- What Is SIEM Used For?
- What is the difference between IT event correlation and aggregation?
- Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?
- What are the must-haves for a SIEM solution?
- What is the difference between SIEM and SOAR platforms?
- What is the difference between log management and SIEM?
- Are you using a SIEM platform with AWS Cloudwatch?
- What is your SIEM buying cycle like?