IBM - FEATURED ARTICLES
August 24, 2012
InformationWeek Research Places IBM's SIEM at the Top
By Carolyn J Dawson, TMCnet Contributor
InformationWeek Reports released its latest research report titled, ‘IT Pro Ranking: SIEM’. Results from InformationWeek's latest 2012 Security Information and Event Management Vendor Evaluation Survey have been analyzed. Readers will also be able to choose a Security Information and Event Management, or SIEM system, for their organizations with the help of the report.
The survey carried out by Information Week Reports was conducted among a minimum of 320 business technology professionals that currently use or previously used or assessed security information and event management products in the last year.
In a release, Lorna Garey, content director, InformationWeek Reports said, "Compliance mandates and security best practices require that IT review event logs; it's 101 stuff. But the sheer volume of security data can be overwhelming; our survey asks about 10 major event sources, from firewalls to SANs. To have any hope of spotting anomalies in even a moderately large network requires a SIEM system, and what better way to narrow the shopping list than to listen to what your peers think?"
SIEM users and assessors were asked by InformationWeek to give points to 17 products in two main categories, namely overall performance and SIEM-specific capabilities like instantaneous alerts, search and log management. Eight products from HP/ArcSight, IBM/Q1 Labs, NetIQ, Novell, Quest Software, Splunk (News - Alert), Symantec and Tripwire received an adequate number of responses. As part of the survey, Information Week gave insights on primary drivers for SIEM use, along with issues faced by users with these products and other facets of SIEM operation.
IBM's SIEM system received a 76 percent overall performance score, as compared to Novell (News - Alert) SIEM’s 75 percent score. According to the survey results, 65 percent of the respondents felt that dependability is a crucial feature while assessing SIEM systems.
More than half of the respondents felt that a key source of event data were application servers. In the past one year, Symantec's (News - Alert) SIEM system was either used or assessed by 45 percent of the respondents. While 34 percent of the respondents felt developing of correlation rules as a major issue, only 14 percent of the respondents cited poor acceptance among IT users as a major issue.
Want to learn more about the latest in communications and technology? Then be sure to attend ITEXPO West 2012, taking place Oct. 2-5, in Austin, TX. Stay in touch with everything happening at ITEXPO (News - Alert). Follow us on Twitter.
Edited by Brooke Neuman