Finally a SIMPLE and EASY to use SIEM/SOAR solution :) One you will ENJOY using (really!!)
April 20, 2022
Finally a SIMPLE and EASY to use SIEM/SOAR solution :) One you will ENJOY using (really!!)
Score 10 out of 10
Vetted Review
Verified User
Modules Used
- Exabeam Advanced Analytics
- Exabeam Cloud Connectors
- Exabeam Data Lake
- Exabeam Incident Responder
- Exabeam Cloud Platform
Overall Satisfaction with Exabeam Fusion
It is our SIEM and SOAR tool. We use it for all investigations. We use it for log retention and complance reporting. We use it for all alerting and InfoSec ticketing. With its simplicisty our help desk uses it to diagnose issues with user assets quickly and easly with very little training.
Pros
- Simple graphical interface
- Plan text searching, no need to know another coding language
- Very very fast response
- All saved logs up to 7 years instantly searchable
- Not cold or frozen buckets for years old logs
Cons
- More and better drop-down menus, some items in threat hunter require you know subsets.
- Less dashboards, combine AA and DL without having separate logins.
- More complete playbooks are already built out. You have the structure set up for templates like malware and phishing, go further and completely build them out from start to finish, most companies would just use them and not personalize their configurations.
- Quarterly health checkup diagnostics of systems sent out to users.
- The simple automated response has allowed us to respond to thousands of more alerts a day.
- From a phishing perspective, Exabeam can recognize a threat and automatically remove it from all mailboxes effected before an analyst can see it on a dashboard.
- With the cloud deployment, Exabeam handles almost all admin duties for the tool themselves versus us having to spend 10 to 20 hours a month just keeping our old cloud-based SIEM healthy and up to date.
Do you think Exabeam Fusion delivers good value for the price?
Yes
Are you happy with Exabeam Fusion's feature set?
Yes
Did Exabeam Fusion live up to sales and marketing promises?
Yes
Did implementation of Exabeam Fusion go as expected?
Yes
Would you buy Exabeam Fusion again?
Yes
Exabeam Fusion Feature Ratings
Using Exabeam Fusion
Pros | Cons |
---|---|
Like to use Relatively simple Easy to use Technical support not required Well integrated Consistent Quick to learn Convenient Feel confident using Familiar | None |
- The setup was amazing, it pulled logs from our EDR that was already deployed, thus we were 85% set up in 10 mins.
- Simple API ingestion.
- Exabeam DL just works, unlike other SIEM logging systems that never fully work and require constant maintenance.
- Raw log search from DL rather than AA.
- Compliance reporting for log retention is not a simple report option, takes several tasks to complete.
Comments
Please log in to join the conversation