Name: NetWitness Cloud SIEM
Rating: 6.1 (3 reviews)
Author: RSA Security

Overview

What is NetWitness Cloud SIEM?

NetWitness Cloud SIEM delivers log management, retention, and analytics services in a simplified cloud form. It aims t o eliminate traditional deployment and administration requirements with a simple throughput-based licensing model, to make high-quality SIEM quick and easy to acquire…

RSA NetWitness! What you need and more!

7 out of 10

April 17, 2017

Incentivized

We are using it as RSA Security Analytics (NetWitness) for our SIEM. We do log and packet collection and analysis and generate alerts and …

Read all reviews

Return to navigation

Pricing

View all pricing

NetWitness Cloud SIEM

N/A

Unavailable

What is NetWitness Cloud SIEM?

NetWitness Cloud SIEM delivers log management, retention, and analytics services in a simplified cloud form. It aims t o eliminate traditional deployment and administration requirements with a simple throughput-based licensing model, to make high-quality SIEM quick and easy to acquire without…

Entry-level set up fee?

No setup fee

Offerings

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

5 people also want pricing

Alternatives Pricing

Microsoft Sentinel

$2.46

per GB ingested

What is Microsoft Sentinel?

Microsoft Sentinel (formerly Azure Sentinel) is designed as a birds-eye view across the enterprise. It is presented as a security information and event management (SIEM) solution for proactive threat detection, investigation, and response.

AlienVault USM

$1,075

per month

What is AlienVault USM?

AlienVault® Unified Security Management® (USM) delivers threat detection, incident response, and compliance management in one unified platform. It is designed to combine all the essential security capabilities needed for effective security monitoring across cloud and on-premises environments,…

Return to navigation

Product Details

About
Tech Details

What is NetWitness Cloud SIEM?

The NetWitness Platform is presented as an evolved SIEM and threat detection and response solution that functions as a single, unified platform for security data. It features an analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end.

The NetWitness Platform for XDR helps analysts detect and resolve known and unknown attacks while automating and orchestrating the incident response lifecycle. With these capabilities on one platform, security teams can collapse disparate tools and data into a single interface.

NetWitness Cloud SIEM Technical Details

Operating Systems	Unspecified
Mobile Application	No

Return to navigation

Comparisons

View all alternatives

Compare with

Reviews and Ratings

(3)

Reviews

(1-1 of 1)

Sort By *

Companies can't remove reviews or game the system. Here's why

April 17, 2017

RSA NetWitness! What you need and more!

Verified User

Manager in Information Technology

Banking Company, 1001-5000 employees

Score 7 out of 10

Vetted Review

Verified User

Incentivized

Use Cases and Deployment Scope

We are using it as RSA Security Analytics (NetWitness) for our SIEM. We do log and packet collection and analysis and generate alerts and incidents that flow into RSA Archer Security Operations module. It is a major part of our information security program, and [we] depend on it for managing DLP incidents, Windows event logging and alerting. Our goal is automation, so we automate as much as we can, since we have limited resources, and do not have a 24/7 SOC.

Pros and Cons

Log collection and parsing.
Packet collection and parsing.
Enhanched analytics and alerting.
Robust integration.

Lacking out of the box best practice templates etc. It relies heavily on customization.
Lack of up to date threat feeds.
Difficult to learn and use initially.

Likelihood to Recommend

It is really a robust platform that can be heavily customized to suit requirements. Good for advanced hunting and forensics. Robust automation features.