At the moment, Google Chronicle suite lacks for real-time threat intelligence. To overcome this, it needs to be integrated with Mandiant. As an improvement, real-time threat intelligence capability needs to be brought in-built in Google Chronicle suite.
It is still not mature enough. If I create some content, there might be roadblocks, although this could change in the future. As of now, it is an immature solution with potential for improvement. I might face problems during integration, as it has not been deployed on the production suite yet.
Senior Solution Architect at Stichting Inlichtingenbureau
Real User
Top 5
2024-12-23T14:52:00Z
Dec 23, 2024
The graphical user interface could be improved to enhance user experience. Additionally, integrating more sources for threat intelligence and deeper integration with SOAR tools would be beneficial. While improvements in machine learning and AI are ongoing, the current offering is satisfactory.
Find out what your peers are saying about Google, Microsoft, Splunk and others in Security Information and Event Management (SIEM). Updated: March 2025.
Cyber Security & ICT Director at Polish Security Experts Association
Real User
Top 5
2024-01-04T11:59:50Z
Jan 4, 2024
It is challenging to create rules and context of the language. A few areas are difficult to understand for someone who has less experience using the product.
Solution Delivery Lead at a consultancy with 10,001+ employees
Real User
Top 5
2023-11-07T18:29:21Z
Nov 7, 2023
The tool needs to improve tasking packages. Its GUI needs to be improved. The product needs to include time-based filtration. We can only see the alert detection timeline now.
Security Consultant at a tech consulting company with 1,001-5,000 employees
Consultant
Top 20
2023-11-06T09:18:16Z
Nov 6, 2023
The configuration is not optimal. It requires copy and paste of configuration files. Generally, the ingest of logs could be done in simpler and more streamlined ways. The exporting of log information also has room for improvement.
Security Information and Event Management (SIEM) tools offer comprehensive visibility and management of an organization’s security events through real-time analysis and correlation of data from multiple sources.
SIEM solutions provide a centralized platform for managing security alerts and logs from various sources such as network devices, servers, and applications. They help identify and mitigate potential threats by analyzing event data for unusual patterns and correlations. These tools...
At the moment, Google Chronicle suite lacks for real-time threat intelligence. To overcome this, it needs to be integrated with Mandiant. As an improvement, real-time threat intelligence capability needs to be brought in-built in Google Chronicle suite.
It is still not mature enough. If I create some content, there might be roadblocks, although this could change in the future. As of now, it is an immature solution with potential for improvement. I might face problems during integration, as it has not been deployed on the production suite yet.
The graphical user interface could be improved to enhance user experience. Additionally, integrating more sources for threat intelligence and deeper integration with SOAR tools would be beneficial. While improvements in machine learning and AI are ongoing, the current offering is satisfactory.
The tool is perfectly fine, and I have not faced any challenges while using it.
The solution's graphical user interface (GUI) should be more user-friendly.
The tool is a little bit difficult to use compared to Microsoft Sentinel. I use it every day. I needed time to adjust and get used to the solution.
It is challenging to create rules and context of the language. A few areas are difficult to understand for someone who has less experience using the product.
The tool needs to improve tasking packages. Its GUI needs to be improved. The product needs to include time-based filtration. We can only see the alert detection timeline now.
The configuration is not optimal. It requires copy and paste of configuration files. Generally, the ingest of logs could be done in simpler and more streamlined ways. The exporting of log information also has room for improvement.
The product's default dashboard feature has a few limitations regarding availability.