Try our new research platform with insights from 80,000+ expert users

AWS Security Hub vs i-SIEM [EOL] comparison

Amazon Web Services (AWS) and Cybereason are both solutions in the Security Information and Event Management (SIEM) category. Additionally, 90% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 100% of Cybereason users who would recommend it.
AWS Security Hub
Read 19 AWS Security Hub reviews
  • 6,278 Views
  • 5,219 Comparison Views
90% willing to recommend
i-SIEM [EOL]
Read 1 i-SIEM [EOL] review
    100% willing to recommend
     

    Comparison Buyer's Guide

    Download the report
    Executive SummaryUpdated on Oct 7, 2024

    i-SIEM EOL and AWS Security Hub compete in the realm of cybersecurity solutions. AWS Security Hub is perceived to have the upper hand due to its extensive features and integration within AWS services.

    Features: i-SIEM EOL offers robust threat detection capabilities, integration with various security tools, and strong pricing. AWS Security Hub provides a comprehensive security view across AWS accounts, combines threat intelligence and security alerts, and features seamless integration within AWS environments.

    Room for Improvement: i-SIEM EOL could enhance real-time monitoring, alert customization, and user interface. AWS Security Hub needs improvements in third-party integrations, data aggregation, and customer service efficiency.

    Ease of Deployment and Customer Service: i-SIEM EOL is known for a straightforward deployment process and responsive support. AWS Security Hub ensures seamless deployment within AWS environments but requires better customer service interactions.

    Pricing and ROI: i-SIEM EOL is cost-effective, offering a reasonable return on investment, ideal for budget-conscious users. AWS Security Hub, although more costly, promises significant long-term value due to its features and scalability, beneficial for larger organizational needs.

    DOWNLOAD THE COMPLETE REPORT
    To learn more, read our detailed Security Information and Event Management (SIEM) Report (Updated: October 2024).
    Buyer's Guide
    Security Information and Event Management (SIEM)
    October 2024
    Download the complete report
    Helped 814,649 peers since 2012
     

    Categories and Ranking

    AWS Security Hub
    Average Rating
    7.6
    Reviews Sentiment
    7.7
    Number of Reviews
    19
    Ranking in other categories
    Security Information and Event Management (SIEM) (7th), Security Orchestration Automation and Response (SOAR) (5th), Cloud Security Posture Management (CSPM) (14th)
    i-SIEM [EOL]
    Average Rating
    9.0
    Number of Reviews
    1
    Ranking in other categories
    No ranking in other categories
     

    Featured Reviews

    CobusFrey - PeerSpot reviewer
    Apr 8, 2024
    Not only does it easily integrate with third-party tools but also allows auto synchronization of logs
    AWS Security Hub has advanced quite a bit over the last couple of years. The features are quite rich now. Before purchasing, one should develop an understanding of the product. I believe AWS Security Hub is one of the most friendly solutions for integration with third-party tools. I find the integration of AWS Security Hub to be the easiest with tools from Microsoft and a bit difficult with Google solutions. AWS Security Hub is compliant in many different ways. The development business I am part of is SOC compliant for AWS Security Hub, while the banks our organization works with have been PCI compliant for AWS Security Hub for three years. I would definitely recommend AWS Security Hub to others, yet I would also inquire about their purpose and knowledge of cloud solutions. If you know how to use AWS Security Hub, it can be a great solution to work with. The solution is more suitable for people working in the cloud instead of on-premises. I would rate AWS Security Hub a nine out of ten.
    Read full review
    DC
    Jun 14, 2020
    The alert fatigue and false positive rates have just plummeted, which is really exciting.
    empow has a few areas of improvement as with any other technology, such as continuing to drive innovation in the dashboard. While we've been extremely impressed with the dashboard's ease of use, flexibility, ability to drill down deeply, and focus very intently on an area of interest, there will always be opportunities to be more innovative and open it up to a wider audience than just the operations group, for example. With reporting, there is always a desire to have custom reporting for every client of empow. Relative to keeping up with the sheer pace of cloud-native technologies, it should provide more options for clients to deploy their technologies in unique ways. This is an area that I recommend that they maintain focus.
    Read full review

    Quotes from Members

    We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
     

    Pros

    "Cloudposse is a valuable feature as it guarantees my security."
    "Very good at detection and providing real-time alerts."
    "Finding out if your infrastructure is secure is a valuable feature."
    "AWS Security Hub has very good integration features. It allows for AWS native services integration, and it helps us to integrate some of the services outside of AWS. They have partners, such as Amazon Preferred Network Partners (APN). If you have different security tools around APN, we can integrate those findings with AWS Security Hub reducing the need to refer to different portals or different UIs. You can have AWS Security Hub act as a single common go-to dashboard."
    "Currently, our organization utilizes AWS for various purposes, including SaaS (Software as a Service), PaaS (Platform as a Service), and hosting applications in the cloud. We develop our applications and use AWS services as a platform for basic functions and secondary development needs. Additionally, we rely on PaaS for accounting services. Approximately, 50% of our applications are hosted in the cloud environment, making it a significant part of our current setup."
    "One of the most effective features of AWS Security Hub is the easy access to a dashboard with a ready-to-use security score."
    "Easily integrates with third-party tools"
    "It's a security posture management tool from AWS. Basically, it identifies misconfigurations, similar to Trusted Advisor but on a larger scale."
    More AWS Security Hub pros
    "As a result of the automation, we are able to manage SIEM with a small security team. I'm in a unique position where we have been growing the security organization quite rapidly over the last three and a half years. But, as a direct result of the empow transition and legacy collection of tools towards the empow platform, we've been able to keep that head count flat. We've been able to redirect a lot of the security team's time away from the wash, rinse, repeat activities of responding to alarms where we have a high degree of confidence that they will be false positives, adjusting the rules accordingly. This can be a bit frustrating for the analyst when they have to spend hours a day dealing with these types of probable false positives. So, it has helped not only us keep our headcount flat relative to the resources necessary to provide the assurances that our executives expect of us for monitoring, but allows our analyst team to spend the majority of their time doing what they love. They are spending their time meaningfully with a higher degree of confidence and enjoying getting into the incident response type activity."
     

    Cons

    "It is not flexible for multi-cloud environments."
    "The telemetry doesn't always go into the control center. When you have multiple instances running in AWS, you need a control tower to take feeds from Security Hub and analyze your results. Sometimes exemptions aren't passed between the control tower and Security Hub. The configuration gets mixed up or you don't get the desired results."
    "AWS Security Hub should improve the time it takes to update. It takes a long period of time when updating. It can take 24 hours sometimes to update. Additionally, when integrating this solution with more security tools, takes time."
    "Although AWS Security Hub does a periodic scan of your overall infrastructure, it doesn't do it in real time."
    "The solution should be easier to learn and use"
    "Many findings are too generic or irrelevant to the environment, which can lead to false positives."
    "From an improvement perspective, there is a need to add more compliance since, right now, AWS Security Hub only provides four to five compliances to control the tool."
    "The solution will only give you insight if you have configure rule enabled. It should work more like Prisma Cloud and Dome9 which have a better approach."
    More AWS Security Hub cons
    "Relative to keeping up with the sheer pace of cloud-native technologies, it should provide more options for clients to deploy their technologies in unique ways. This is an area that I recommend that they maintain focus."
     

    Pricing and Cost Advice

    "There are multiple subscription models, like yearly, monthly, and packaged."
    "The price of the solution is not very competitive but it is reasonable."
    "The price of AWS Security Hub is average compared to other solutions."
    "The pricing is fine. It is not an expensive tool."
    "AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."
    "Security Hub is not an expensive solution."
    "AWS Security Hub's pricing is pretty reasonable."
    "I don't have to put up with any longer with these hypercomplex licensing agreements. Every time I want to add some additional reporting as a compliance centric or regulatory specific, e.g., GDPR, PCI, or Sarbanes-Oxley, many providers would have an additional license for this, which felt a bit ridiculous to me. With the simplified licensing architecture, there were no hidden "gotchas" down the road with empow. Something I have experienced with other providers that I've worked with in the past."
    "With a higher degree of fidelity in the alarms, we were able to avoid adding additional resources to our teams. We take into account the cost of security resources in the market and the significantly higher fidelity from the alarms that are being generated. This drove down our costs with our MSSP. It drove down my cost for human capital internally. It drove down our need to have multiple resources supporting the underlying infrastructure and health and maintenance of empow as a platform from several resources down to one. Therefore, human capital costs were significantly reduced. Our operating expenses were significantly reduced. Our capital costs were significantly reduced while tripling our capacity and our run rate reduced. It was almost a "too good to be true" situation. Fortunately, for us, it worked out very nicely."
    report
    See which vendors are best for you
    Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
    See recommendations
    814,649 professionals have used our research since 2012.
     

    Comparison Review

    it_user186927 - PeerSpot reviewer
    Feb 16, 2015
    Cybereason vs. Interset vs. SQRRL
    Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…
    Read full review
     

    Top Industries

    By visitors reading reviews
    Computer Software Company
    15%
    Financial Services Firm
    13%
    Manufacturing Company
    9%
    Government
    7%
    Computer Software Company
    19%
    Financial Services Firm
    13%
    Real Estate/Law Firm
    11%
    Healthcare Company
    11%
     

    Company Size

    By reviewers
    Large Enterprise
    Midsize Enterprise
    Small Business
    No data available
     

    Questions from the Community

    Which is better - Azure Sentinel or AWS Security Hub?
    We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
    See all answers
    What do you like most about AWS Security Hub?
    The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud.
    See all answers
    What needs improvement with AWS Security Hub?
    Many findings are too generic or irrelevant to the environment, which can lead to false positives. It can be challenging to suppress or turn off these findings. Turning specific findings on or off ...
    See all answers
    Ask a question
    Earn 20 points
     

    Comparisons

    Microsoft Sentinel vs AWS Security Hub Logo
    Microsoft Sentinel vs AWS Security Hub
    Compared 38% of the time
    Wiz vs AWS Security Hub Logo
    Wiz vs AWS Security Hub
    Compared 12% of the time
    Prisma Cloud by Palo Alto Networks vs AWS Security Hub Logo
    Prisma Cloud by Palo Alto Networks vs AWS Security Hub
    Compared 11% of the time
    Microsoft Defender for Cloud vs AWS Security Hub Logo
    Microsoft Defender for Cloud vs AWS Security Hub
    Compared 6% of the time
    Google Chronicle Suite vs AWS Security Hub Logo
    Google Chronicle Suite vs AWS Security Hub
    Compared 6% of the time
    More AWS Security Hub Competitors
    AlienVault OSSIM vs i-SIEM [EOL] Logo
    AlienVault OSSIM vs i-SIEM [EOL]
    Compared 46% of the time
    More i-SIEM [EOL] Competitors
     

    Product Reports

    Buyer's Guide
    AWS Security Hub
    November 2024
    AWS Security Hub reportDownload AWS Security Hub product report
    Buyer's Guide
    Security Information and Event Management (SIEM)
    October 2024
    i-SIEM [EOL] reportDownload i-SIEM [EOL] product report
     

    Also Known As

    SQRRL
    No data available
     

    Learn More

    Amazon Web Services (AWS)
    Cybereason
     

    Overview

    AWS Security Hub is a comprehensive security service that provides a centralized view of security alerts and compliance status across an AWS environment. It collects data from various AWS services, partner solutions, and AWS Marketplace products to provide a holistic view of security posture. With Security Hub, users can quickly identify and prioritize security issues, automate compliance checks, and streamline remediation efforts. 

    The service offers a range of features including continuous monitoring, threat intelligence integration, and customizable dashboards. It also provides automated insights and recommendations to help users improve their security posture. Security Hub integrates with other AWS services like Amazon GuardDuty, AWS Config, and AWS Macie to provide a unified security experience. Additionally, it supports integration with third-party security tools through its API, allowing users to leverage their existing security investments. 

    With its user-friendly interface and powerful capabilities, AWS Security Hub is a valuable tool for organizations looking to enhance their security and compliance posture in the cloud.

    i-SIEM [EOL] delivers comprehensive monitoring and threat detection capabilities suitable for today's security challenges. It integrates with existing systems, enabling efficient threat analysis and response for knowledgeable users.

    i-SIEM [EOL] offers advanced security analytics and seamless integration with security infrastructure, making it a favored choice among technology professionals. Its intuitive design caters to efficient threat management. Users appreciate its capability to process large data volumes for timely threat detection and remediation. The platform ensures effective incident response through automated processes, assisting professionals in maintaining robust security postures.

    What are the key features of i-SIEM [EOL]?
    • Advanced Threat Detection: Utilizes real-time analytics for identifying potential security threats.
    • Integration Capabilities: Easily connects with diverse security tools for a cohesive security strategy.
    • Automated Incident Response: Facilitates swift responses to security incidents to mitigate risks.
    What benefits and ROI can i-SIEM [EOL] offer?
    • Reduced Security Risks: Proactively identifies and addresses vulnerabilities before exploitation.
    • Operational Efficiency: Automation reduces manual workload and minimizes error.
    • Cost-Effectiveness: Streamlines processes to lower overall security management costs.

    i-SIEM [EOL] is implemented across industries like finance, healthcare, and manufacturing, where security and compliance are critical. Its flexibility in handling specific industry requirements makes it suitable for enhancing security postures and operational efficiency.

     

    Sample Customers

    Edmunds, Frame.io, GoDaddy, Realtor.com
    University of Oklahoma, Donnelley
    Buyer's Guide
    Security Information and Event Management (SIEM)
    October 2024
    Download Free Report
    Find out what your peers are saying about Splunk, Microsoft, Wazuh and others in Security Information and Event Management (SIEM). Updated: October 2024.
    DOWNLOAD NOW
    814,649 professionals have used our research since 2012.

    We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.