Compare and Evaluate

Security Incident and Event Management

Security Incident and Event Management (SIEM) software combines security event management (SEM) which analyzes log and event data in real time to provide threat monitoring, event correlation and incident response – with security information management (SIM) which collects, analyzes and reports on log data.

Data Quadrant report cover

The Data Quadrant is a thorough evaluation and ranking of all software in an individual category to compare platforms across multiple dimensions.

These include:

  • User Satisfaction Rankings
  • Business Value Scores
  • Vendor Capability Comparisons
  • Product Feature Evaluations
Emotional Footprint report cover

The Emotional Footprint is a powerful indicator of overall user sentiment toward the relationship with the vendor, capturing data across five dimensions.

These include:

  • Strategy and Innovation
  • Service Experience
  • Conflict Resolution
  • Product Impact
  • Negotiation and Contract

Still need assistance?

We're here to help you with understanding our reports and the data inside to help you make decisions.

Security Incident and Event Management Data Quadrant
Powered by Info-Tech Research Group
Powered by Info-Tech Research Group

Next Award: April 2021

Latest Award Icon
Security Incident and Event Management Emotional Footprint Awards

Write a review to help crown the next winner in Security Incident and Event Management, then follow us on LinkedIn to get notified about the results. For every approved review you will receive some compensation for your time and effort.

Latest Award: October 2020

Latest Award Icon

See the most recent winners of our SoftwareReviews Data Quadrant Awards. View our Gold Medalists and compare top vendors using our free downloadable reports.

Latest Research

26
Oct

Author: Marc Mazur (Info-Tech)

Chronicle, Alphabet’s enterprise security company, expands its North American partner base with Herjavec Group, its first Canadian partner. Herjavec Group is the first service provider in Canada to be certified in, and provide access to, Chronicle’s security intelligence products.

Security Incident and Event Management Products

Filter by:

Data QuadrantReport

A thorough evaluation and ranking of all software to compare software across every dimension.

Data Quadrant Report report

Emotional FootprintReport

A detailed and unique report that captures a powerful indicator of overall user feeling toward the vendor and product.

Emotional Footprint Report report
Badge Winner
Badge Winner

LogPoint

LogPoint

LogPoint enables organizations to convert data into actionable intelligence, improving their cybersecurity posture and creating immediate business value. Our Modern SIEM, UEBA and Automation and Incident Response solutions, simple licensing model and market-leading support organization empowers our customers to build, manage and effectively transform their businesses.

9.1

Composite Score

9.3

CX Score

+95

Emotional Footprint

93%

Likeliness to Recommend

24

Reviews

Badge Winner
Badge Winner

Fortinet

Fortinet FortiSIEM

FortiSIEM – Fortinet’s Multivendor Security Incident and Events Management solution brings it all together. Visibility, Correlation, Automated Response and Remediation in a single, scalable solution.

8.4

Composite Score

8.7

CX Score

+91

Emotional Footprint

81%

Likeliness to Recommend

29

Reviews

Badge Winner
Badge Winner

Splunk

Splunk Enterprise

Splunk Enterprise makes it simple to collect, analyze and act upon the untapped value of the big data generated by your technology infrastructure, security systems and business applications—giving you the insights to drive operational performance and business results.

8.1

Composite Score

8.6

CX Score

+88

Emotional Footprint

83%

Likeliness to Recommend

59

Reviews

Badge Winner
Badge Winner

IBM

IBM QRadar

IBM® Security QRadar® SIEM consolidates log source event data from thousands of devices endpoints and applications distributed throughout a network. It performs immediate normalization and correlation activities on raw data to distinguish real threats from false positives.

8.0

Composite Score

8.4

CX Score

+85

Emotional Footprint

83%

Likeliness to Recommend

43

Reviews

LogRhythm

LogRhythm Security Intelligence Platform

You need deep, real-time visibility into your entire IT environment to defend your organization from today’s threats. LogRhythm analyzes all of your forensic data. It fills gaps with endpoint and network sensors. With LogRhythm, you get the intelligence and tools you need to protect your network.

7.9

Composite Score

8.1

CX Score

+79

Emotional Footprint

82%

Likeliness to Recommend

18

Reviews

SolarWinds

SolarWinds SIEM: Log and Event Manager

Find attacks and demonstrate compliance immediately. Receive actionable data in less time with a turnkey SIEM. Log & Event Manager is an all-in-one solution deployed as a hardened virtual appliance with built-in rules, filters, and reports.

7.9

Composite Score

8.1

CX Score

+78

Emotional Footprint

83%

Likeliness to Recommend

39

Reviews

McAfee

McAfee Enterprise Security Manager

As the foundation of our security information and event management (SIEM) solution, McAfee Enterprise Security Manager delivers the performance, actionable intelligence, and real-time situational awareness required for organizations to identify, understand, and respond to stealthy threats, while the embedded compliance framework simplifies compliance.

7.7

Composite Score

7.8

CX Score

+75

Emotional Footprint

80%

Likeliness to Recommend

198

Reviews

RSA

RSA NetWitness Suite

RSA Advanced SOC platform helps security teams be more effective in rapidly detecting, visualizing, and responding to threats in real-time or over a continuum beyond traditional point solutions.

7.7

Composite Score

8.0

CX Score

+76

Emotional Footprint

80%

Likeliness to Recommend

25

Reviews

Dell Technologies

Dell Quest InTrust

InTrust enables you to securely collect, store, search and analyze massive amounts of IT data from numerous data sources, systems and devices in one place. Get real-time insights into user activity for security, compliance and operational visibility.

7.3

Composite Score

6.8

CX Score

+60

Emotional Footprint

82%

Likeliness to Recommend

22

Reviews

Badge Winner

ManageEngine

ManageEngine Log360

ManageEngine Log360 is a one-stop comprehensive SIEM solution for all your log management and network security challenges. Defend against internal and external attacks with real-time log collection, analysis, correlation and archiving capabilities.

8.6

Composite Score

9.0

CX Score

+90

Emotional Footprint

88%

Likeliness to Recommend

14

Reviews

EventTracker

SIEMphonic Enterprise

EventTracker, a Netsurion company, empowers organizations to successfully predict, prevent, detect, and respond to cybersecurity threats. The EventTracker SIEM platform unifies machine learning, behavior analytics, and security orchestration. EventTracker offers a suite of SIEM solutions built for any size company or budget. More and more organizations are seeking SIEM-as-a-Service to realize optimal security results. SIEMphonic builds on the EventTracker platform by delivering a Co-Managed SIEM service complete with 24/7 global security operations center (SOC), powered by threat intelligence.

8.2

Composite Score

8.7

CX Score

+92

Emotional Footprint

81%

Likeliness to Recommend

8

Reviews

Badge Winner

Juniper Networks

Juniper Secure Analytics

Market-leading security information and event management (SIEM) that consolidates large volumes of event data from thousands of Juniper and non-Juniper devices, endpoints, and applications in near real time.

8.1

Composite Score

8.2

CX Score

+86

Emotional Footprint

82%

Likeliness to Recommend

10

Reviews

Loggly

Loggly

Loggly offers a cloud-based service that mines tons of log data in real time and reveals what matters, so that you have the insights you need to produce quality code and deliver a great user experience.

7.8

Composite Score

8.4

CX Score

+83

Emotional Footprint

85%

Likeliness to Recommend

7

Reviews

Microsoft

Azure Sentinel

See and stop threats before they cause harm, with SIEM reinvented for a modern world. Azure Sentinel is your birds-eye view across the enterprise. Put the cloud and large-scale intelligence from decades of Microsoft security experience to work. Make your threat detection and response smarter and faster with artificial intelligence (AI). Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs.

7.8

Composite Score

7.6

CX Score

+71

Emotional Footprint

79%

Likeliness to Recommend

9

Reviews

AT&T Cybersecurity

AT&T Cybersecurity Unified Security Management (USM)

We founded AT&T Cybersecurity to help organizations of all shapes and sizes achieve world-class security without the headaches and huge expense of other solutions. And we are passionate about our mission.

7.7

Composite Score

7.8

CX Score

+72

Emotional Footprint

79%

Likeliness to Recommend

17

Reviews

Trustwave Holdings, Inc.

Trustwave SIEM Enterprise

SIEM Enterprise enables organizations to quickly address their compliance requirements and take a proactive approach to their security risk management strategy.

7.5

Composite Score

7.3

CX Score

+71

Emotional Footprint

76%

Likeliness to Recommend

8

Reviews

Tripwire, Inc.

Tripwire Log Center

Tripwire® Log Center®, powered by the new Advanced Log Collector, reliably and securely collects, analyzes and correlates log data from devices, servers, applications and automated security processes to improve security and dramatically simplify compliance.

6.9

Composite Score

7.2

CX Score

+72

Emotional Footprint

74%

Likeliness to Recommend

5

Reviews

Micro Focus

Micro Focus ArcSight Enterprise Security Manager

Tackle cyber threats in real time by using powerful, scalable, and efficient SIEM security software.

6.8

Composite Score

7.4

CX Score

+72

Emotional Footprint

57%

Likeliness to Recommend

5

Reviews

GFI Software

GFI EventsManager

Monitor security-relevant policies, mechanisms, applications and activity to identify security incidents.

--

Composite Score

6.9

CX Score

+62

Emotional Footprint

83%

Likeliness to Recommend

2

Reviews

Accelops

Accelops Security Monitoring (SIEM)

AccelOps’ virtual appliance features an automated discovery-driven approach that shortens the path to comprehensive monitoring and prevents future security blind spots. In real time, we add user and application context to events and provide unparalleled threat monitoring, prioritization and mitigation.

--

Composite Score

--

CX Score

--

Emotional Footprint

--

Likeliness to Recommend

0

Reviews

BlackStratus

SIEM Storm

SIEM Storm™ is our premier security solution for cloud service providers and other MSPs. A single appliance gives you flexible threat visualization and mitigation tools across distributed networks and other multi-tenant environments.

--

Composite Score

--

CX Score

--

Emotional Footprint

--

Likeliness to Recommend

0

Reviews

TIBCO Software

Tibco LogLogic

Log and machine data is being harnessed to provide insight into IT operational efficiencies – and TIBCO LogLogic® uses log and machine data as the fuel for improving Operational Intelligence.

--

Composite Score

6.9

CX Score

+74

Emotional Footprint

67%

Likeliness to Recommend

3

Reviews

CorreLog

CorreLog SIEM Correlation Server and Compliance Management

The CorreLog Server is our flag-ship product, containing the core functionality to implement full SIEM capability for your enterprise. The CorreLog Server provides a standards-based method of collecting all the system log messages of your network using syslog protocol and SNMP traps.

--

Composite Score

--

CX Score

--

Emotional Footprint

--

Likeliness to Recommend

0

Reviews

Cygilant

EiQ SOCVue

SOCVue hybrid SaaS security delivers the best people, process, and technology to ensure continuous security intelligence and effective security monitoring 24x7x365.

--

Composite Score

7.5

CX Score

+87

Emotional Footprint

89%

Likeliness to Recommend

2

Reviews

Extreme Networks

Extreme Networks SIEM

Extreme Networks SIEM is an enterprise solution that consolidates log source event data from thousands of devices distributed across a network, storing every activity in its raw form, and then performing immediate correlation activities to distinguish the real threats from false positives.

--

Composite Score

--

CX Score

+100

Emotional Footprint

78%

Likeliness to Recommend

1

Reviews

Load More

All Research

Latest Research

26
Oct

Author: Marc Mazur (Info-Tech)

Chronicle, Alphabet’s enterprise security company, expands its North American partner base with Herjavec Group, its first Canadian partner. Herjavec Group is the first service provider in Canada to be certified in, and provide access to, Chronicle’s security intelligence products.

Latest Research

5
Aug

Author: Scott Bickley (Info-Tech)

IBM is changing the terms of its ubiquitous Passport Advantage agreement to remove entitled discounts on over 5,000 on-premises software products, resulting in an immediate price increase for IBM Software & Support (S&S) across its vast customer landscape.

Latest Research

23
Jul

Author: Thomas Randall (Info-Tech)

Thinking about choosing a new software vendor but don't know where to start? Narrow down your shortlist by focusing on software that has received an Info-Tech Research Group award. New data from SoftwareReviews shows that organizations reported higher satisfaction when they switched to software that had received an Info-Tech award.

Latest Research

10
Jul

Author: Shastri Sooknanan (Info-Tech)

For organizations that experience time-sensitive incidents that must be resolved in the most optimal and efficient manner, Bomgar (Beyond Trust) and BMC Software may have the solution. The two vendors have teamed up to address a reduction in the time it takes to resolve problematic tickets and assist in lessening the impact of cyber threats to which all organizations are subjected.

Latest Research

19
Jun

Author: Shastri Sooknanan (Info-Tech)

Microsoft’s cloud Security Incident Event Management (SIEM) solution leverages modern day enhancements such as Security Orchestration Automated Response (SOAR), Machine Learning (ML), and Artificial Intelligence (AI).

Latest Research

19
Jun

Author: Shastri Sooknanan (Info-Tech)

In today’s world many security teams require a simplified holistic method to consolidate disparate log data, threat anomalies, and responses. Due to these pressured requirements, organizations across the world are adopting or considering cloud-native Security Information and Event Management (SIEM) solutions.

Latest Research

12
Jun

Author: Marc Mazur (Info-Tech)

KBV Research released its Global Security Information and Event Management (SIEM) Market Forecast report last month. In light of the recent COVID-19 pandemic, the SIEM market report highlights continued growth for the security solution and offers insights into how SIEM will continue to be essential for enterprises going forward.

Latest Research

9
Jun

Author: Marc Mazur (Info-Tech)

As the Security Information and Event Management (SIEM) market continues to grow, organizations now have more options than ever to decide which SIEM is right for them. While SIEM vendors continue to innovate, the final decision often comes down to price. In the second of this five-part series on SIEM pricing, we will dive into pricing by data volume.

Latest Research

11
May

Author: William Wong (Info-Tech)

With its announcement of SvKMS, StorMagic, known for leading-edge storage solutions, has officially entered the security marketplace. SvKMS provides key management for any application that requires encryption in any location – edge, datacenter, or cloud – the proverbial magic bullet for KMS.

Latest Research

24
Apr

Author: Joel Martin (Info-Tech)

The impact of COVID-19, as it became a global pandemic in Q1 of 2020, has affected user sentiment toward software during a growing period of fear, uncertainty, and doubt. To analyze the impact, SoftwareReviews compared Satisfaction (willingness to recommend to a peer), ability to deliver Business Value (fair cost to value), and Likeliness to Renew prior to March 10 and post March 10.

Latest Research

13
Apr

Author: Marc Mazur (Info-Tech)

As the SIEM market continues to grow, organizations have more options than ever to decide which SIEM is right for them. In the first of this five-part series on SIEM pricing, we investigate the different pricing options and what these mean for organizations looking to invest in a SIEM.

Latest Research

19
Dec

Author: Thomas Randall (Info-Tech)

Cisco is beginning to lose patience with its Zoom interoperability after another Zoom security risk: access for the Zoom Connector for Cisco hosted on zoom.us did not require authentication, allowing external users to join a Zoom meeting without password credentials.

Latest Research

21
Aug

Author: Thomas Randall (Info-Tech)

Avaya’s newly released firmware addresses a vulnerability that has survived for 10 years in VoIP phone models configured with H.323 signaling.

Latest Research

14
Aug

Author: Thomas Randall (Info-Tech)

A hacker has compromised 106 million Capital One customers after a data breach. But the real story might be less to do with cloud security itself and more to do with Capital One’s own security engine for cloud services.

Latest Research

22
Jul

Author: Thomas Randall (Info-Tech)

Apple has delivered a silent update to Macs, rectifying a security flaw in its Zoom web-conferencing service.

Latest Research

5
Jul

Author: Marc Mazur (Info-Tech)

Cyberattacks are terrible and require the same dedication to overcome them as would any other disaster response effort. Just like natural disasters, cyberattacks cause millions of dollars in damage, disrupt infrastructure, and impede citizens from their daily lives.

Latest Research

4
Jun

Author: Marc Mazur (Info-Tech)

LogPoint, the next generation SIEM, UEBA, and big data analytics company, continues to expand into the global market outside of its European base.

Latest Research

13
May

Author: Marc Mazur (Info-Tech)

Analysis by Frost & Sullivan recently claimed that the Security Information and Event Management (SIEM) market will grow to $3.23 billion by 2023 as a result of recent advances and greater versatility.

Latest Research

10
May

Author: Marc Mazur (Info-Tech)

Chronicle’s Backstory marks Google’s first foray into the SIEM industry by introducing a SIEM that claims full data retention “forever.” Organizations must weigh the benefits of Backstory’s cloud-based SIEM against their perceptions of Google’s previous data collection practices.

Latest Research

5
Apr

Author: Ken Weston (Info-Tech)

Microsoft is releasing free online courses for artificial intelligence. This is its attempt at remaining relevant in the AI space, so you might as well take advantage.

Latest Research

12
Mar

Author: Scott Bickley (Info-Tech)

VMware is delving deeper into the IT security segment with its recent announcement at RSA 2019, unveiling its Service-defined Firewall product. VMware will be competing with security giants Palo Alto Networks and Cisco, among others, to introduce the new offering that focuses on the internal network by validating good application behavior.

Latest Research

18
Sep

Author: Wesley McPherson (Info-Tech)

Trends in security products supporting humans rather than replacing them.