With regards to the UI improvements remark, I would urge you to always check the QRadar Apps that are available on the App Exchange portal. For example, with regards to being able to export custom event properties from one QRadar instance to another, please consider the app…

Why only consider AlienVault and LogRhythm? In any case, this is a very open question and I do not see how one could expect anything other than a broad answer... :-(

Good log management solution you can use if you know what you ae looking for. Not a SIEM solution though even though customer should be aiming for solutions that go beyond what a SIEM does, that is, a Security Intelligence platform.

An integrated solution that can help prevent, detect, prioritise, deep dive investigate and remediate incidents.

This is a very broad question and the differences are huge. In a nutshell: - ArcSight (HP) provide a SIEM, - Tenable Network Security provide a Vulnerability Scanner called Nessus.

Hi Kumar I strongly believe that before anyone makes any attempt to compare "SIEM" solutions, he/she must first have a good idea of the present and future needs. Strictly speaking Splunk is not a SIEM solution (you should see it as an advanced log management solution),…

What about using a solution that would allow you to find trouble fast and apply effective vision and clarity to resolve the issue? thx.

That's the problem with the SIEM solutions that have no built-in intelligence.