Snare Competitors and Alternatives

Read reviews of Snare competitors and alternatives
Av.logo.icon type
AlienVault
F0283eec e8b7 452d 80bb f53c9afca1fb avatar
Real User
Security Architecture and Operations Lead at a university with 1,001-5,000 employees
Jan 25 2017

What is most valuable?

The NIDS/HIDS features have probably been the best features for us in our environment. We've had some open-source options and, while they work, it isn't the same as having commercial support. SIEM is the second-most useful feature.

How has it helped my organization?

We've been able to professionally generate alerts for IDS, SIEM and vulnerabilities where we didn't have those capabilities before.

What needs improvement?

Reporting still needs a lot of work, especially on the vulnerability side. Vulnerability management UI could be improved as well. Vulnerability reports are clunky and difficult to manage. The layout is not really professional or intuitive and... more»
Damian scott avatar 1432837163?1432837161
Consultant
Sr SIEM Consultant at a tech services company with 51-200 employees
Jan 29 2018

What is most valuable?

* Correlation Rule Engine, built-in use cases: QRadar has the highest number of built-in use cases among any SIEM on the market. There are many built-in rules that are enabled by default and easily tunable to meet the specific needs of each... more»

How has it helped my organization?

As a Professional Services consultant, I have heard many reports of how QRadar SIEM

What needs improvement?

Some UI enhancements would be nice, such as exporting custom event properties and the ability to export rules.
Sevone
SevOne
Anonymous avatar x80
Real User
Senior Network Capacity Planner at a tech services company with 1,001-5,000 employees
Aug 25 2017

What is most valuable?

It's given us the ability to create various real-time network performance reports and distribute them to any colleague who can access these reports immediately. They can access them any time without needing their own user account to the system.

How has it helped my organization?

* SevOne threshold monitoring alerts help to improve our network monitoring. * Procedures in troubleshooting were built on predefined SevOne reports.

What needs improvement?

Single device-based baseline monitoring works well in SevOne, but sometimes device independent base-lining in redundant network environments. Software upgrades can be tricky is not easy.
Splunk logo
Splunk
1035dc28 12ce 4481 82cd 37440c1c249e avatar
Real User
Foundation Technology Specialist at a insurance company with 1,001-5,000 employees
May 26 2017

What is most valuable?

The ability to rapidly diagnose problems in production and non-production, across hundreds of log files, is the most valuable feature.

How has it helped my organization?

MTTR is drastically reduced, because the developers and other IT support staff have instant access to log events. People costs are saved by not having to involve the domain developers from multiple teams, when tracing a problem that spans... more»

What needs improvement?

Official training, even CBT, is expensive so not many people are able to get certified. This leads/causes the users to make use of the most basic functionality only. It is a challenge to manage the environment in such a way, that one’s log,... more»
Anonymous avatar x80
Real User
Project manager at IRIDIS Group
Aug 08 2016

What is most valuable?

The key functions for us are the next-gen firewall and network analytics. To ensure the best protection, we need to constantly analyze the situation in the network, as well as internal and external threats, as well as actual AV protection.... more»

How has it helped my organization?

Our company uses a virtual infrastructure. Implementing this product supplements the protection of our infrastructure.

What needs improvement?

The current version of the product is easy to use. Based on my experience, I can't recommend any areas of improvement. It's important, however, to know what you want prior to implementation. Otherwise, it may not meet your future needs based... more»
Emc logo
Dell EMC
Anonymous avatar x80
Real User
Managing Partner at a software R&D company with 11-50 employees
Aug 24 2017

What is most valuable?

It's an event log management solution that gathers event logs from the main Microsoft System, especially for Active Directory, Exchange, and databases. It's mainly used for compliance for the auditors and for our internal controls. It has... more»

How has it helped my organization?

We are now able to run to 27001 ISO and we have also improved our internal security system to track our employees. We can track who has access to what and who has touched what - who, what, when, and where. This information is sent to the... more»

What needs improvement?

I would be very happy if Dell could focus more on the cyberspace. It's network security needs to improved, as these are the most important issues in the 21st century, and they are lacking on this focus at the moment.

Sign Up with Email