Badges

70 Points
6 Years

User Activity

Over 3 years ago
IBM QRadar - because of ease of deployment and management. Plus the cost for expansion is much higher with Splunk. But if money is not an object and you have tech savvy security people go for Splunk. It's the best in class for log management and correlation
Over 3 years ago
By pure market rankings Symantec is a much better product and has a higher detection rate than MS Defender. However, if your environment is development heavy or file usage heavy, the impact on performance will be high when using Symantec EP and going to Defender is a…
About 6 years ago
Commented on Qradar vs. ArcSight
Glen, the conclusion is that, for every situation, the choice of SIEM is different. In my opinion, ArcSight is better when you have a lot of complicated integrations, use cases, however, QRadar is a much better all rounder.
Over 6 years ago
Gartner Magic Q for 2014 actually lists both Cisco and FortiGate as Challengers with FortiGate scoring better than Cisco. Cisco ASA has been the mainstay of Enterprise Firewalls for a long time, however, compared to the amount of features Firewalls flaunt today, Cisco…
Over 6 years ago
Contributed a review of IBM QRadar: Qradar vs. ArcSight
Over 6 years ago
RSA Envision is no longer being sold as a SIEM by EMC. Instead they have moved on to Security Analytics (SA) based on the acquired Netwitness platform. RSA Envision is more of a Log Management tool than SIEM. I would recommend to see the entire comparison between various…

Reviews

Answers

Over 6 years ago
Security Information and Event Management (SIEM)

Comments

About 6 years ago
Log Management

About me

Dynamic 9 years of IT career, reflecting progressive experience and performance in the computer and Internet industries. Specialized in providing cutting-edge solutions to traditional Security issues; establishing strategic ideas in various domains and demonstrating self-motivation, creativity, and initiative to achieve both personal and corporate goals. Have extensive expertise in Information Security, Network Security, Cloud Security, Compliance, Solution Consulting, Implementation and Operations.
• Demonstrated capacity to implement innovative security programs and solutions that drive awareness, decrease threat exposure, and strengthen organizations’ security posture.
• Hands-on experience leading all stages of Security Infrastructure implementation, including requirements definition, design, architecture, testing, and operationalization.
• Extensive knowledge of IT Service Management workflow and principles
• Extensive knowledge in Network Security Monitoring, Security Event Management, Information Security Management and Securing the Cloud
• Experienced in building process and technological maturity in Security Operations and Management for both Cloud Enterprises as well as Traditional Enterprises
• Outstanding leadership abilities; able to coordinate and direct all phases of project or Operations based efforts while managing, motivating, coordinating and leading teams.
• Adept at developing effective security policies and procedures, project documentation and milestones, and technical/business specifications with overall experience in security operations, systems engineering, business governance, research, and security management.

Specialties: Masters in Computer Information Systems (Information Security Concentration) from Boston University.

Qualified Network/Information Security Specialist augmented with industry certifications from SANS, CISCO, CHECKPOINT, ITSM, ISO etc