What do you like most about Elastic SIEM?
Thanks for sharing your thoughts with the community!
It is very quick to react. I can set it to check anomalies or suspicious behavior every 30 seconds. It is very fast.
Just the ability to do a lot more than just up-down is nice, which a lot of people take for granted.
The most valuable feature is the speed, as it responds in a very short time.
The most valuable features are the speed, detail, and visualization. It has the latest standards.
The performance is good and it is faster than IBM QRadar.
The most valuable feature is the machine learning capability.
We all know it's really hard to get good pricing and cost information.
Please share what you can so you can help your peers.
I am the technical director of a science and technology division for the government.
Which SIEM solution would deliver the best ability to identify, protect, detect, respond and recover from a cyber attack?
Thanks! I appreciate your help.