Badges
40 Points
10 Years
User Activity
Over 7 years ago
Commented on Built-in rules are enabled by default and tunable to meet the specific needs of each organization.
With regards to the UI improvements remark, I would urge you to always check the QRadar Apps that are available on the App Exchange portal. For example, with regards to being able to export custom event properties from one QRadar instance to another, please consider the app…
Over 7 years ago
Answered a question: Between AlienVault and LogRhythm, which solution is suitable for Banks in Gulf Region
Why only consider AlienVault and LogRhythm? In any case, this is a very open question and I do not see how one could expect anything other than a broad answer... :-(
About 8 years ago
Answered a question: What are some of the best features and use-cases of Splunk?
Good log management solution you can use if you know what you ae looking for. Not a SIEM solution though even though customer should be aiming for solutions that go beyond what a SIEM does, that is, a Security Intelligence platform.
Almost 9 years ago
Answered a question: What are the must-haves for a SIEM solution?
An integrated solution that can help prevent, detect, prioritise, deep dive investigate and remediate incidents.
Over 9 years ago
Answered a question: What are the main differences between Nessus and Arcsight?
This is a very broad question and the differences are huge.
In a nutshell:
- ArcSight (HP) provide a SIEM,
- Tenable Network Security provide a Vulnerability Scanner called Nessus.
Almost 10 years ago
Answered a question: RSA-EMC vs. other SIEM products?
Hi Kumar
I strongly believe that before anyone makes any attempt to compare "SIEM" solutions, he/she must first have a good idea of the present and future needs. Strictly speaking Splunk is not a SIEM solution (you should see it as an advanced log management solution),…
Over 10 years ago
What about using a solution that would allow you to find trouble fast and apply effective vision and clarity to resolve the issue? thx.
Over 10 years ago
Answered a question: Has anyone got experience in deployment of a SIEM solution?
That's the problem with the SIEM solutions that have no built-in intelligence.
Articles
Answers
Over 7 years ago
Security Information and Event Management (SIEM)
Almost 9 years ago
Security Information and Event Management (SIEM)
Over 9 years ago
Security Information and Event Management (SIEM)
Over 10 years ago
Security Information and Event Management (SIEM)
Comments
Over 7 years ago
Log Management
Over 10 years ago
Network Troubleshooting