As David mentioned above, there are many good SIEM products available. The challenge is, in the environment as described, is getting the value out of it if you run it yourself. There is a lot of overhead when it comes to running a SIEM, especially for the uninitiated and…

Splunk is a great tool that can be used for a lot of business analysis. If I were looking for a SIEM between the two, I would choose QRadar, although I am not fan of it. Like Splunk, to get a lot of value and granular detail beyond the canned reports, you need someone who…