According to Gartner, “Security operations teams require a platform to detect, investigate and respond to threats consistently, carry out threat-hunting processes, automate enrichment activity and remotely activate mitigation steps”. The modern SIEM has been evolving to incorporate many additional capabilities, including security orchestration, automation and response (SOAR); user entity and behavior analytics (UEBA); threat intelligence platforms (TIPs); and case management.
In this report Gartner analysts defined and assessed 3 Use Cases and 9 SIEM capabilities across a highly complex landscape. Securonix is among the three highest scoring vendors for all Use Cases: Out-of-the-Box SIEM (3.92/5); Customizable SIEM (3.98/5); and Threat Detection, Investigation and Response (3.96/5).
We believe that this validates our investment in our cloud-based SaaS SIEM solution. Integrating threat detection, incident investigation, and response has delivered dividends for security operations and insider threat teams at hundreds of our enterprise and midmarket customers.
We encourage you to download a complimentary copy of the report to find out more.
Critical Capabilities for Security Information and Event Management, by Mitchell Schneider, Andrew Davies, Pete Shoard, published 22 November 2022.
GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.