Badges
20 Points
7 Years
User Activity
Over 3 years ago
Answered a question: What SOC product do you recommend?
@Evgeny Belenky, I found Stellar to be quite intriguing.
I would also recommend McAFee’s new console for centralizing and coordinating a well-deployed enterprise solution.
Over 3 years ago
Answered a question: What is your opinion of IBM QRadar?
I found QRadar as a very workable SIEM. It also works seamlessly with the IBM SOAR solution
Integrating with the right EDR makes it a formidable solution for monitoring the health of your environment, and offers potential responses to mitigate threats.
There is a trade-off…
Over 3 years ago
Answered a question: What SOC product do you recommend?
For tools I’d recommend:
-SIEM- LogRhythm
-SOAR- Palo Alto XSOAR
Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic
Also, remember that any EDR/XDR should integrate to the SIEM/SOAR and a strong threat…
About 7 years ago
Contributed a review of LogRhythm SIEM: Give us the insight needed to understand when threats are recon or an attack
Reviews
About 7 years ago
LogRhythm SIEM