Likelihood to Recommend As a SIEM tool for investigations, Exabeam is the best in class. The AI assigns numeric values to observed logs them presents high scores to the analyst in a simple dashboard. We can see what is a real threat and ignore so many false positives. Exabeam is the best SIEM was used from an alert fatigue perspective. The simple interface allows other teams not just InfoSec to utilize the tool; helpdesk for asset diagnoses, HR for staffing questions, etc.
Read full review With around 80 users and 150 devices (including 6 server instances), this solution served us very well, with instant admin notifications and scheduled overall reports. Detection appears extremely reliable, and the memory and CPU footprint of the service seemed less intrusive than Panda, which we had issues running on Terminal Services instances, as it seems to hog excessive memory allocation. Rollout was smooth and we never had an instance of a corrupt installation.
Read full review Pros Fast search times, unlike other competing solutions. The ability for engineers to obtain access to the command line interface for troubleshooting, at least for on-premise deployments. License is suitable for organisations with lots of logs to ingest. Hardware required for on premise deployments is well supported. Read full review Hybrid deployment, can be on-prem or cloud specific, we are using cloud based Central Control Manager capabilities to have control about what happens in the environment No need to have internal infrastructure to host further than your workstations or terminals No need to have dedicated team for security or endpoint protection Maintenance and updates are available just as released, no need to take actions on that side Great capabilities as a connected threat defense platform Endpoint protection features and quality for SMBs Cloud and collaboration platforms compatible including Office 365, Google Mail and On-Cloud Storage Read full review Cons More and better drop-down menus, some items in threat hunter require you know subsets. Less dashboards, combine AA and DL without having separate logins. More complete playbooks are already built out. You have the structure set up for templates like malware and phishing, go further and completely build them out from start to finish, most companies would just use them and not personalize their configurations. Quarterly health checkup diagnostics of systems sent out to users. Read full review Price increases regularly. When you actually want to uninstall the agent, sometimes it will refuse to do so. Luckily TM has a special uninstall tool if needed. Can take awhile to dial in the thresholds against false positives. Read full review Usability Exabeam is very good at processing lots of logs without excessive licensing costs. It has a professional support team that's very quick to resolve any issues and provides custom parsers quickly and enables our analysts to search vast data sets without having to wait long for results to be returned. The product is getting more mature with new features every major release.
Read full review Installation and administration tools are fantastic. I found the endpoint policies to be not intuitive and clunky. The endpoint client was difficult to disable when trying to troubleshoot Apple issues and I often had to uninstall and then reinstall which was very time-consuming. Reporting is very useful and I was impressed with the reports I received.
Read full review Support Rating Exabeam Fusion has so many diffferent out reach meetings, webinars, community virtual coffees, and events that you can always stay abreast of what if happening and get new ideas for use cases. Their support actually answers their phones and can respond in chat instantly. With our cloud deployment Exabeam support teams can instantly see our systems and help us.
Read full review The few times I needed to contact support I was fully satisfied. They worked all the way through the issue, no matter how long it took, and made sure I had a permanent solution. I was pleased with the professionalism, courteousness, and knowledge of the product they were supporting.
Read full review Alternatives Considered Avast was clunky, difficult to roll out, missed loads of malware on machines, and required that we purchase a separate license to install AV on our servers. Trend Micro could not have been any different. You just contact their sales department and get a demo, or even ask for a trial of sorts to test policy creations and client installation. You'll be obsessed with the whole process and the admin dashboard you have access to.
Read full review Return on Investment Reduced time to triage alerts. Reduced number of alerts which need escalation to senior tiers. The ability for analysts to quickly run playbooks for additional information and enrichment. Ability to retain data for longer periods for forensics purposes. Improved search performance compared with other SIEM solutions. Read full review It has stopped several malicious items from getting into our system. It's also saved money over our previous Anti-Virus solution (Kaspersky) Ease of Setup/Use Read full review ScreenShots