Try our new research platform with insights from 80,000+ expert users

Pros & Cons summary

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Securonix Next-Gen SIEM provides detailed user behavior analysis and event rarity insights to enhance threat detection and reduce false positives.
Its machine learning algorithms effectively pinpoint critical threats, often described as finding the 'needle in the haystack'.
Users benefit from strong incident management capabilities, allowing them to open and resolve cases directly within the platform based on the analytics of user activities.
The platform offers high customizability and flexibility, enabling users to tailor use cases without extensive assistance.
Securonix Next-Gen SIEM integrates various data sources seamlessly, enabling comprehensive and efficient data analysis and correlation.

CONS

Securonix Next-Gen SIEM faces challenges with risk score triggers, which require ongoing improvements.
There are integration issues with ServiceNow and room for improvement in reporting features.
The platform requires enhanced incident response capabilities and improved parsing for new data sources.
Deployment complexity necessitates dedicated teams for initial setup, impacting efficiency.
There are issues with data instability related to time customization and injector performance that need attention.
 

Securonix Next-Gen SIEM Pros review quotes

GS
May 22, 2019
What I like most is that the threat models and risk scoring are very accurate and very helpful to the analysts on my team. They help highlight the most important things for them to look at.
JM
Oct 23, 2019
The most valuable feature is being able to look at users' behavioral profiles to see what they typically access. One of the key events that we monitor is people's downloading of objects... It's very easy to see people's patterns, what they typically do.
AV
Jun 27, 2019
When we were looking for products for our security monitoring needs, our biggest requirement was that we wanted something based on machine-learning and analytics. If you go with rules, it can raise a lot of noise. Securonix, with its UEBA capability, had the best analytics use-cases.
Learn what your peers think about Securonix Next-Gen SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,649 professionals have used our research since 2012.
SM
Jul 25, 2022
Risk scoring was nice. We could exactly see which user had the highest risk score, and then we could pick it up and work on it.
ER
Aug 5, 2019
The feature that is most valuable is the fact that it's an open platform, so it allows us to modify policies and tune policies as needed. There's also a feature called Data Insights which allows us to create different dashboards on specific things of interest for us.
AC
Oct 17, 2019
One of the most valuable features it has is the thread chaining. One of the common issues that we always had was the number of anomalies that we used to get and the number of alerts that we used to get. But with this approach of thread chaining, we've found the false-positive rate has decreased very significantly. That was something that we never could have achieved before.
Ibrahim Albalawi - PeerSpot reviewer
Jul 31, 2022
The detection of threats and reduction of false positive alarms as compared to other solutions are valuable features. It has improved threat detection response and reduced a lot of noise from false positives as compared to our previous SIEM solutions.
JS
Sep 29, 2022
We can customize our use cases with the tools provided by Securonix. It is an excellent tool that can ingest data in different ways and is very flexible.
IG
Oct 11, 2022
SNYPR has a bundle of features. It has the UEBA feature that tells you about the behavior of a person or entity. In the tool itself, there is an incident management feature, which is definitely valuable.
Sebastian Velazquez - PeerSpot reviewer
Sep 29, 2022
The most valuable feature is what Securonix calls enrichment. Securonix is very powerful because of all the data it can process and automatically enrich. The actionable intelligence it provides is one of its benefits, due to the processing capacity it has.
 

Securonix Next-Gen SIEM Cons review quotes

GS
May 22, 2019
A helpful feature would be an event export. A way to create more substantial summary reports would be nice.
JM
Oct 23, 2019
We have a lot of users who, because they're engineers and they're bringing down product data - where, at times, a top-level product could be 10,000 or 15,000 objects - it's difficult for us to determine what should be a concern and what shouldn't be a concern. We work with the Securonix folks to try to come up with better ways to identify that.
AV
Jun 27, 2019
We have compliance needs. We have investigation needs. And we have situations where an analyst needs to look at threats. These three things require a different view of how they look at the threats. What would be good is to have Securonix create three different views of their Security Command Center so that, depending on the persona of the person logging in, they'd get the relevant data they need and not see everything.
Learn what your peers think about Securonix Next-Gen SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,649 professionals have used our research since 2012.
SM
Jul 25, 2022
When they did upgrades or applied patches, sometimes, there was downtime, which required the backfill of data. There were times when we had to reach out and get a lot of things validated.
ER
Aug 5, 2019
Securonix implements risk scores based on different policies that are triggered. We've seen some challenges with the risk scores and how they trigger. These are things that Securonix has recognized and they've been working with us to help improve things.
AC
Oct 17, 2019
One of the things they can improve on a little bit is the usability side, to make some things simpler... The tool does have a lot of knobs, you can turn a lot of things on and off and you can change things. Sometimes, it can become a little overwhelming. They should remove some confirmation options and make it simpler for the less mature customers and people who are still trying to grasp it.
Ibrahim Albalawi - PeerSpot reviewer
Jul 31, 2022
The incident response area should be improved.
JS
Sep 29, 2022
Securonix could open up information regarding the indicators of compromise or cyber-threat intelligence database that they use. The idea is that they share what threats they are detecting.
IG
Oct 11, 2022
Sometimes, there is instability in the data in terms of the customization of the time. I have sometimes observed discrepancies in the data, which is something they should work on. They should bring more stability to time customization. If we are seeing a particular data, when we change the time zone, there should be the same data. There should not be any discrepancy.
Sebastian Velazquez - PeerSpot reviewer
Sep 29, 2022
The analytics-driven approach for finding sophisticated threats and reducing false positives is positive and good, but the platform requires a more dynamic concept. Everything is a bit static.