Badges
55 Points
8 Years
User Activity
About 6 years ago
Answered a question: Which would you recommend to your boss, IBM QRadar or Splunk?
None are "log management" tools, and Splunk is not SIEM nor is the Enterprise Security add on. When you state "log management" I can infer log retention, historics, data analysis, so I think that the question needs to be further refined to make sense of what you're asking…
Answers
About me
Security professional slash wearer multiple hats, red (penetration testing), green (DFIR) and blue (defense). I no longer publicly disclose the companies I work for - but feel free to ask.
Specialties: Pentesting, DFIR, net forensics (packet fun), system forensics, mobile forensics. Covert Network Attacks, Covert Network Exploitation, Information Assurance, Information Operations, Threat Analytics.
Security Research with exploitable discoveries on IBM, Microsoft, Cisco, F5, VMWare, SAP, Adtran, etc.