Customer Use Perspective Series Part 2: Selecting a SIEM Vendor Isn’t Easy (But it can be)
Posted by Heather Howland in Retail, Security Intelligence, SIEM
So, you have been given the task of finding a SIEM solution. Not just any solution, but one that is affordable, scalable, easy to deploy and maintain, and creates an impenetrable virtual force-field around your company. Ok, forget that last one.
Does this sound familiar? Your team might be saddled with a looming audit, industry regulations to abide by, overwhelmed by logs, or perhaps having a challenging time monitoring internal and external threats. Whatever the case, it’s clear some new level of intelligence is required to make sense of all that log data and effectively strengthen your security posture.
It just so happens that one of our customers, a worldwide luxury accessory company, had similar challenges and solved many of them by implementing QRadar, which is a next-generation SIEM that we call a Security Intelligence Platform. Of course, while evaluating various solutions, they had several major vendors on their short list. At the time, the industry was dominated by one or two heavyweights, but with a quick and effective POC demonstrating QRadar’s ability to automatically detect log sources and correlate log events with network activity flows at the application layer (such as VoIP, Social Media, and P2P), the decision was made to purchase and deploy QRadar.
Simply put, they wanted a next-generation SIEM and log management solution that integrated easily with their existing infrastructure — rather than adjusting their environment to fit the solution.
If you missed the first post in the series, read why our customer needed a SIEM in the first place. In the next part, we will find out why they chose Q1 Labs over other vendors.
The latest on Cyber Security
Leave a Reply