TrustRadius
RSA Security Analytics is security information and event management (SIEM) from RSA, EMC's security division.https://dudodiprj2sv7.cloudfront.net/product-logos/4M/z9/XBNFB0KTK19A.gifRSA Security Analytics (Netwitness)We use RSA Security Analytics (previously Netwitness) as a network DVR for look back at events. It does full packet capture and reconstruction. For forensic analysis this is invaluable. It has some threat detection capability. The new GUI is significantly better and actually makes menus usable and reduces confusion for new users.,Full packet capture allows look back on security events Packet reconstruction is essential to make sense of packets captured Threat analysis of captured packets provide additional indicators of compromise,GUI was horrible prior to the current version In our experience, support does not proactively stay in contact. No health checks or roadmap presentation. Only an automated email at renewal time. Updates frequently break the box and require support intervention,5,The tool is great and an important part of my tool box The level of administration needed is a little too high Support relationships have to be customer led and promptedRSA SA - Security expertI worked for HCL technologies and was deployed at SBI IT headquarters for implementing their security operations center which involved implementing the tool. They used this tool to manage the security for their entire organizations web gateway . It had a capacity of close to 500000 events per second and had approximately 37000 various security devices linked to the tool .,Easy to use and understand Provides extensive details to analyze the threat with more accuracy It is a smart tool with graphical display of data for easier interpretation,The meta part to form the dashboards were a bit complicated The user interface could be made more understandable,8,Increased efficiency Reduced the number of web attacks and data is more secured Better customer service,RSA enVision and HP Arcsight,SolarWinds Log & Event Manager, IBM Security Network Intrusion Prevention System
Unspecified
RSA Security Analytics
4 Ratings
Score 5.5 out of 101
TRScore

RSA Security Analytics Reviews

RSA Security Analytics
4 Ratings
Score 5.5 out of 101
Show Filters 
Hide Filters 
Filter 4 vetted RSA Security Analytics reviews and ratings
Clear all filters
Overall Rating
Reviewer's Company Size
Last Updated
By Topic
Industry
Department
Experience
Job Type
Role
Reviews (1-2 of 2)
  Vendors can't alter or remove reviews. Here's why.
No photo available
May 02, 2018

User Review: "RSA Security Analytics (Netwitness)"

Score 5 out of 10
Vetted Review
Verified User
Review Source
We use RSA Security Analytics (previously Netwitness) as a network DVR for look back at events. It does full packet capture and reconstruction. For forensic analysis this is invaluable. It has some threat detection capability. The new GUI is significantly better and actually makes menus usable and reduces confusion for new users.
  • Full packet capture allows look back on security events
  • Packet reconstruction is essential to make sense of packets captured
  • Threat analysis of captured packets provide additional indicators of compromise
  • GUI was horrible prior to the current version
  • In our experience, support does not proactively stay in contact. No health checks or roadmap presentation. Only an automated email at renewal time.
  • Updates frequently break the box and require support intervention
Netwitness is an industry leading tool. If you can figure out how to use it, the data is crucial to investigations. The support is improving, but has some distance to cover before they are up to standard for an enterprise level.
Read this authenticated review
Utkarsh Ahuja profile photo
December 03, 2015

RSA Security Analytics Review: "RSA SA - Security expert"

Score 8 out of 10
Vetted Review
Verified User
Review Source
I worked for HCL technologies and was deployed at SBI IT headquarters for implementing their security operations center which involved implementing the tool. They used this tool to manage the security for their entire organizations web gateway . It had a capacity of close to 500000 events per second and had approximately 37000 various security devices linked to the tool .
  • Easy to use and understand
  • Provides extensive details to analyze the threat with more accuracy
  • It is a smart tool with graphical display of data for easier interpretation
  • The meta part to form the dashboards were a bit complicated
  • The user interface could be made more understandable
It is perfectly suited for large organizations aiming for providing web security to the customers or also if they are interested to setup their own security perations center . It is one of the leading security tools in the market and offers comprehensive capability in dealing with web attacks.
Read Utkarsh Ahuja's full review

RSA Security Analytics Scorecard Summary

Feature Scorecard Summary

Centralized event and log data collection (1)
8
Correlation (2)
6.0
Event and log normalization (2)
6.0
Deployment flexibility (1)
8
Integration with Identity and Access Management Tools (1)
7
Custom dashboards and views (1)
9
Host and network-based intrusion detection (2)
8.0

About RSA Security Analytics

RSA Security Analytics is security information and event management (SIEM) from RSA, EMC's security division.

RSA Security Analytics Technical Details

Operating Systems: Unspecified
Mobile Application:No