SIEM Roundup: AWS, Elastic, Splunk, and More

CEO at a tech company with 51-200 employees

Published:Sep 10, 2019

Here are the week’s top briefs about the SIEM market.

Elastic launches free SIEM

Elastic, known for Elasticsearch and other tools, has beta launched a free SIEM solution.

AWS new Security Hub offers SIEM-like capabilities

Customers pay only for the compliance checks performed and security findings ingested, with no charge for the first 10,000 security finding events each month. Read more.

The best way to trial a SIEM solution

Check out the latest advice from the community about how to trial SIEM. Our favorite tips: “I recommend NOT trialing SIEM solutions in a bake-off. You will be comparing several unbaked cakes.” And: “Check if a cloud version of the tool is available. Some SIEM's offer a free trial period for their cloud-based solutions.” And: “Understand your retention requirements: Storage cost!!! You’re capturing events per minute, and it gets expensive.” Read more tips.

Splunk: Logging solution or SIEM?

A Director of Information Security told us in this review: “Before Splunk, I’ve used AlienVault, LogRhthym, ArcSight, and IBM QRadar. As a logging solution, I would say Splunk is probably an eight or nine. If you're talking about SIEM I'd say it's probably about a five.” Agree? Disagree? Post a comment on the review and share your opinion with the community.

That's all for now!

What topics would you like us to include in the next update? Add a comment.

Explore related topics

Security Information and Event Management (SIEM)

Product comparison that may be of interest to you

Splunk Enterprise Security

315 Reviews

USM Anywhere

115 Reviews

Buyer's Guide

Security Information and Event Management (SIEM)

June 2025

Download Free Report

Find out what your peers are saying about Splunk, Wazuh, Microsoft and others in Security Information and Event Management (SIEM). Updated: June 2025.

DOWNLOAD NOW

860,632 professionals have used our research since 2012.

Related Questions

Liam Brandt

Works at Catalyic Consulting (Pvt.) Ltd

Mar 22, 2023

Why do most companies prefer IBM QRadar?

I´m not sure about this affirmation. There are a lot of other tools used.

See 2 answers

Valter Sav

Works at RAS Unipers

Mar 14, 2023

Hi, in my opinion, because it is still the best at giving you visibility of what's happening in your IT infrastructure, and at detecting threats. Visibility and detection may seem simple tasks. but actually, they require a lot of capabilities in understanding, integrating, logging, and alarms from a huge multitude of devices. Such tasks go under the line of log ingestion, normalization, etc., and that is far from easy. QRadar has done a lot of work in that direction. Another aspect is event correlation. And here, either you write the correlation rules yourself, spending $$$$ of professional services, and by the way, it'll take forever to test, implement and maintain up to date, or your access to a very long list of preset correlation rules, that are already available and waiting to be activated. Finally, visibility and threat detection is just the beginning of a journey pointed at becoming aware of what's happening in your IT and taking relevant and effective action. There are several other technologies that have to be used to minimize exposure, and contain, and remediate relations to an attack. I believe IBM has a few of those, that can be integrated. But whichever you use at the end of this journey, if the original feed is not correct, not relevant, or not complete, you missed your goal in the first place.My 5 cents :)VS

Read full answer

Jairo Willian Pereira

Information Security Manager at a retailer with 10,001+ employees

Mar 22, 2023

I´m not sure about this affirmation. There are a lot of other tools used.

Read full answer

Miriam Tover

Service Delivery Manager at PeerSpot

Oct 18, 2022

What is your primary use case for IBM QRadar Advisor with Watson?

The primary use case of this solution is to help customize the workflows and dashboards for our clients in a secure manner.

2 out of 4 answers

reviewer1136397

Team Lead - Information Security at LTI - Larsen & Toubro Infotech

Feb 6, 2022

The use cases that are widely used across the globe are related to ransomware phishing, lateral movement, et cetera.

Read full answer

reviewer1846212

IM Operations Manager at a tech services company with 1,001-5,000 employees

Apr 25, 2022

IBM QRadar Advisor with Watson is aligned with regards to what's happening in the public space in terms of the Phishing attacks that we are seeing prevalent in the market. In the campaigns that which hackers are trying to obtain information, the use cases are very practical. The solution offers quite a bit of protection.

Read full answer

See all 4 answers

Julia Miller

Community Director at PeerSpot

Feb 6, 2025

Top SIEM Solutions & Success Stories: Strengthening Cybersecurity in Diverse Industries

Today, Security Information and Event Management (SIEM) solutions play a pivotal role in bolstering organizational defenses against an array of cybersecurity threats. Through the lens of real-world success stories and an evaluation of top SIEM technologies, this comprehensive article illustrates the transformative impact of SIEM systems across industries and highlights leading solutions, includ...

See 1 comment

Atul-Yadav

Enterprise Cloud and AI Security Architect at a security firm with 10,001+ employees

Feb 6, 2025

Apart from these, Google Chronicle SIEM is also the best solution for threat hunting and threat detection. We can also use Google Chronicle (Google SecOps) as a SIEM tool and even can be integrated with Mandiant ( third-party tool) for real-time threat intelligence. Google Chronicle is a cloud security service in GCP.

Read full comment

Product Comparisons