Last updated at Tue, 26 Dec 2023 19:13:06 GMT
If you’re currently tackling an active SIEM project, it’s not easy to dig through libraries of product briefs and outlandish marketing claims. You can turn to trusted peers, but that’s challenging in a world where most leaders aren’t satisfied with their SIEM, even after generous amounts of professional services and third-party management. Luckily, Gartner is no stranger to putting vendors to the test, especially for SIEM, where since 2005 they’ve released a yearly quadrant that ranks the top SIEM tools. A fun blast from the past...
-Gartner Magic Quadrant, Marc Nicolett, Amrit T. Williams, 2005
Well, change is in the air. Humanity has come a long way in analyzing big data—yes, even security data too. Today’s leading SIEMs come standard with pre-built detections that expose both attacks and misconfigurations, without continuous query writing and tuning. SaaS architecture empowers IT Operations and Infosec of all sizes to get up and running in hours, without the tedious, costly side of centralized log management. Being recognized as a "Visionary" in this critical space reaffirms our continued investment in understanding both how attackers operate and the needs of overwhelmed security teams.
Gartner kicks off our description with:
“Rapid7’s SIEM offering InsightIDR is delivered as-a-service via the Rapid7 Insight platform. The solution consists of the InsightIDR service, as well as EDR agents and honeypots for deception activities (both included, but optional to use). The solution provides core SIEM features like log collection and management, threat detection rules and correlations, dashboards, case management and workflow and reporting...”
