Seceon Open Threat Management Platform Reviews

With Seceon, you don't need to know too much or do any coding. Most other SIEM products require you to write code to communicate with devices and define specialized queries. Seceon is pre-built and AI/ML-enabled, so you can be in business in days, not weeks. 

I've seen companies struggle to integrate different SIEM tools for months, but with Seceon's POC, they quickly decided to switch. It's very easy to use and understand, has great dashboards, and simplifies things by allowing you to focus on the basics.

It is effective because it has threat intelligence from across the world and constantly checks and updates for new threats. As soon as a threat is detected, it informs or sends an alert so we can find it out much faster and easier.

Remediation capabilities:

It offers remediation capabilities. There are two ways remediation works. 

• One is automatic. 
• The other is manual. 

Remediation activities need to be taken very cautiously. For example, if you have a DDoS attack, you can block traffic from specific IPs or multiple IPs, which is easier to do.

However, if there is an abnormal activity and you don't understand the threat, automatically closing certain ports or IPs may affect the actual business. This platform has automatic remediation capabilities, but any product with automatic remediation needs to be treated cautiously because sometimes automatic actions may harm more than they protect.

Manual remediation is preferable. Once you know the open alert, you can request the firewall or network team to fix the port or IP through a formal change process. Automatic remediation can help at times, but not in every condition.

One drawback is that it becomes so easy to use that users may lose the habit of manual checks and balances. As a security person, you should always worry about potential threats. If you have a very useful and easy tool, you might lose the ability to think differently and critically. 

For example, in a group of ten people, if nine think the same way and one thinks differently, you should consider the tenth person's perspective because they might have valuable insights.

Having a great product is not always beneficial because you may become too dependent on it, which can be problematic in the long term. If you lose your critical thinking skills, you might not recognize when something abnormal is happening. 

While the system will notice, systems can have their own challenges and issues. I'm not criticizing the product itself but emphasizing the importance of not being overly dependent on machines. Similar to what we see with Tesla cars, no matter how advanced, there is always a chance things may not work as expected. So, the users need to prepare for that eventuality.

Seceon Open Threat Management Platform has some add-ons that they sell as part of the whole suite, but not individually. If they sold them individually, they could potentially get more business.

I've been selling it for the last three or four months because we just entered into a partnership with them. 

We are getting a good response from the market. I have sold two and implemented them. 

Any product will not be 100% good or 100% bad. You will have some challenges and minor glitches here and there. How best to address them is what matters. We have seen some minor issues, but those are addressed whenever we raise a ticket with the OEM.

I haven't seen this product installed on 10,000 or 20,000 machines, so I am not sure about its scalability.  This product is aimed at small and medium-sized companies, not huge enterprises. 

I don't know whether it will work on 10,000 devices because I haven't seen it. Up to 5,000 devices are good enough. 

Even for enterprises, I don't think anybody goes beyond a thousand devices. If you have that many, you probably need your own setup and tools. This is a good tool for up to five hundred devices.

More or less, the customer service and support from Seceon are good. Sometimes there is a delay in response, but once we tell them, they take care of it very professionally.

Positive

I have also worked with FortiSIEM. Compared to other vendors, the functionality is different. The competition prices each product, the base product, and add-ons separately. There is one price for the base and another price for each add-on. 

So, if you want the complete suite, you need to pay the base price plus the add-on prices. With Seceon, there is one price for everything. The add-ons they offer are very different from what the competition offers. I don't think there's a comparison. It would not be an apples-to-apples comparison. In that situation, Seceon's price is better.

It's very easy to install. Installation takes very little time. As long as the basic setup is done, we can finish a 50-device installation within a week.

It doesn't require too many resources for an average deployment. One senior person who understands the network architecture and a second person to configure and implement it should be good enough for a 50-person deployment. 

If there are multiple devices, you'll obviously need more, but for 50 people, two engineers are enough: one senior-level architect and one L2 who can configure and add devices to the console.

The solution is mostly cloud-based, so there is no need to maintain it because it's maintained by the OEM. You're just managing it in your instance, so maintenance doesn't require much effort. 

If it's on-premises, then obviously, you need to maintain it, but people don't prefer that because it adds cost.

It is very cost-saving and time-saving because it provides a bird's-eye view of events happening in your environment, summarizing critical events that need attention. You don't need to look at every event, just the critical ones. 

So, you don't need to spend time looking at multiple alerts, which may be false positives. In that respect, this product is much better because it has built-in dashboards. The competition requires you to build dashboards, and anything you want requires you to write code. Coding is simpler, but it still takes effort. 

Here, everything is easy to follow. It's like you get a console. In the old days, you had to enter command-line scripts to access a router. Nowadays, you get a GUI to configure the same things. GUIs make life simpler. Today, competition still uses CLI or command lines for coding, whereas this product gives you a console where very limited coding is required. Thus, it is easy for people to use. 

The pricing is in the mid-range. It's not very expensive, and it's not very cheap, but it's comparable to others. Sometimes, it's cheaper because of their beta pricing, and they give much more than what competitors offer as add-ons. 

Product X comes with everything at one price, whereas Product Y has a base price and additional prices for each add-on. So, the total price of Y increases drastically compared to X. 

Seceon's price might look a little higher at times, but you need to compare apples to apples, considering the base price and add-on prices of other vendors. In that sense, Seceon wins because it has one product with everything included in one cost.

My satisfaction with this product is between seven and eight, which is decent. I cannot give it a perfect ten because there are always some last-minute challenges, but I would rate it a seven to eight, which is a decent rating.

If you want to simplify your monitoring activities and start immediately, Seceon is the best choice.

We are using Seceon Open Threat Management Platform for an SIEM management project for one of our customers.

It has contributed to reducing management costs. The AI features are helping to optimize costs.

It offers a holistic approach with multiple solutions blended into one platform. It's easier to manage using a single dashboard, providing the capability to connect to multiple platforms.

Certain features, such as DLP, need to be improved as they are superficial and not in-depth. Additionally, the non-core features need to increase in depth.

I have been using Seceon Open Threat Management Platform for the last three months.

I rate the stability at nine out of ten, indicating it is very stable.

The product is scalable, and I rate it at nine out of ten.

The support provided by Seceon is very good, responsive, and helpful.

Positive

We chose Seceon because of its multiple functionalities, which make managing customer infrastructure easier. Other solutions like QRadar are good yet very costly.

The initial setup was simple, involving download and deploy steps. The configuration is what takes time.

The deployment was done with the help of the Seceon team, making the process less challenging.

Financially, it has reduced our management cost by 15% to 20%.

The implementation cost is extra, but the license cost is reasonable with no hidden costs.

We considered options like QRadar, which is costly compared to Seceon.

I would definitely recommend Seceon Open Threat Management Platform.

I'd rate the solution seven out of ten.

It is an SIEM solution.

The solution is very cost-effective compared to Splunk and LogRhythm.

The dashboard has always been an issue. The latest version has taken care of most of the shortfalls.

I have been using the solution for almost four years. I am using the latest version of the solution.

The tool’s stability is very good. I rate the stability a nine out of ten.

We have approximately 15 to 20 customers. Our customers are small, medium, and large enterprises. If our customers need any features, we contact Seceon and ask the team to develop them. The tool is very scalable. I rate the scalability a nine out of ten.

The technical support team’s responses are okay. I rate the technical support a seven or eight out of ten.

Neutral

We worked on the open-source platform Security Onion.

The installation is very easy and quick because we have automated the process. We just run the scripts. It can be done within an hour. The configuration and onboarding take time because it depends on the customers. Customers have individual systems that need to be configured to forward logs to the same platform.

The price is quite reasonable. I rate the pricing more than six or seven out of ten.

We are security service providers. We host the tool in the cloud and provide services to the customers. I recommend the solution to others. Seceon is not on Gartner. Overall, I rate the product an eight out of ten.

I use Seceon Open Threat Management Platform for security monitoring. It helps me track logs and events from various devices and take action on critical issues.

The algorithm used in Seceon OTM is clear and logical, categorizing events as needed. This helps us identify and respond to threats effectively. The ability to categorize alerts and the reporting dashboards are valuable features. AI-driven analysis aids in identifying critical alerts, and real-time threat detection improves our response time.              

I haven't encountered any major issues with Seceon OTM. The complexity of the activities and logs is expected, and I appreciate the detailed dashboards.

I have been using Seceon Open Threat Management Platform for the past 1 year.

The solution is stable; I haven't experienced any issues.

I'm not sure about the scalability of Seceon OTM as I haven't tested it yet, but since it's available on virtualized platforms, it should be scalable.

Whenever we require to configure anything or need to have the specific reports from the data available in Sequana, we contact the support and receive a satisfactory result.

Positive

I haven't used similar solutions from other vendors; Seceon OTM is the only one I've worked with.

I find Seceon OTM's pricing to be reasonable, not too high or low, just okay for the market standards. I can't disclose specific figures, we pay on a quarterly basis under a service model. I would rate it eight out of ten. As a customer, I always hope for better pricing options.

I rate the solution a nine out of ten.

For future releases, integrating incident response tools and improving communication on incident reporting could be beneficial. My advice to others considering Seceon is to thoroughly assess their log collection and analysis needs and choose a leading solution in security monitoring.

We use the solution for analysis and reports. 

Seceon Open Threat Management Platform notifies only genuine alerts. It offers plenty of options that are suitable for MSPs. 

The product should improve the triggering rate. 

I have been working with the product for five months. 

I rate Seceon Open Threat Management Platform's stability a seven out of ten. 

I rate the tool's scalability a seven out of ten. 

The support team always responds. 

Positive

The tool's deployment is easy. 

Seceon Open Threat Management Platform saves money because of AI/ML features. 

We used the solution's trial version for two months and later purchased it. 

I rate Seceon Open Threat Management Platform an eight out of ten. 

We use Seceon to analyze equipment and diagnose what's wrong with our devices. 

Seceon helps us take a proactive approach by identifying if, for example, we have too much traffic or utilization is too high. Maybe the number of sessions is approaching the threshold of the router and firewall. We get alerts in advance, and we've configured it so that we get alerts no matter at any time regardless of where we are. 

We only recently started using Seceon, so we aren't taking advantage of all its features yet. We have enabled some proactive alerts about utilization and bottlenecks from high traffic. 

The SOP they provided wasn't great. They offered training over Sherp Virtualization, and the Seceon leadership visited our location to explain everything in detail, but the documentation and training could be better. It isn't as effective as it could be. There's some room for improvement there. 

I have only used Seceon for about six months.

We haven't had any issues so far. 

Seceon is scalable. We can add licenses, hosts, and servers if needed. 

Seceon's support team has been helpful and cooperative so far, helping us to deploy and implement the solution, configure the policies, generate reports, etc. 

The Seceon team handled the initial deployment. In the future, we might take the lead when deploying this on our customers' sites, but they performed the first deployment. The vendor has been responsible for maintaining the solution in the first year, but we will probably take over the maintenance next year. 

The price of Seceon is reasonable.

We spoke to reps from various solutions, including Splunk, before we landed on Seceon. While we didn't see much difference between the solutions in terms of features, we got a better response from Seceon. It was easier to deploy on our end. We were confident it would work effectively on the cloud in our case because we provide SOC as a service. 

I rate Seceon Open Threat Management eight out of 10 overall. It's an excellent product and the support is responsive. The price is reasonable, so it's a perfect fit for a mid-sized organization. Large enterprises can afford a product like Splunk, but Seceon is a good option for a medium-sized company. 

We haven't been using it for too long, and we haven't faced any issues so far. Once we put more load on this infrastructure, we can see the actual output, but it seems like a good product based on the current traffic. 

We are an MSP partner and security is our core element. We use two solutions to ensure compliance and proactiveness. These two solutions are present in Seceon.

You can use different solutions in a single platform which is very easy and attractive for customers.

We are at the client’s end, offering services. They don’t know about security rules and benchmarks. We are working on the discovery and remediation but we don’t really have the intelligence that was available while working with other tools.

The automatic session is impossible to play since it needs to touch Redfin for further analysis. No one has breached our clients.

I have a lot of experience with the solution.

The tool is very stable.

The tech support of the solution is good.

The initial setup depends on the clients who are the end users. Some of the clients understand the cases and playbooks that they need to implement the solution. In those cases, we have to provide very professional assistance to deploy the solution.

The deployment time period also depends on the clients. For medium clients, the deployment takes around one to three months based on the tuning needs.

The solution is cheap and very competitive. It offers good pricing. Other solutions like Palo Alto and IBM are more expensive.

I would rate the solution around eight out of ten.

We are cybersecurity consultants that help companies like large banks with cybersecurity, and Seceon Open Threat Management Platform is one of the tools we use.

I like that it's an AI-based platform. The most valuable feature is that it's a comprehensive solution. Most tools in the marketplace are comprised of miscellaneous items. They fail to provide real-time remediation features. However, with Seceon Open Threat Management Platform, anything you can think of in cybersecurity, like auto-remediation, real-time response, and even on-premise components, is available in a single platform. So, it's perfect for finance and healthcare who don't want to share their data with a third party like the cloud. You can have this on-premise as well. So, the expenditure will be lower as less human intervention is required.

It would be better if they offered global coverage. 

I have been using Seceon Open Threat Management Platform for about two years.

Seceon Open Threat Management Platform is a stable solution.

On a scale from one to ten, I would give stability a nine.

Seceon Open Threat Management Platform is a scalable solution. We have more than 7000 users using this product.

On a scale from one to ten, I would give scalability a ten.

Whenever our customers come to us with an issue, we contact tech support, and they get back to us with a solution within a few hours.

Positive

The initial setup was straightforward. It was the simplest exercise. Once the central collection engine is installed, integrating with other assets takes minutes to a few hours. It just depends on how many you have.

On a scale from one to ten, I would give the initial setup a ten. 

Seceon Open Threat Management Platform is cost-effective because it's a comprehensive platform that offers high availability. 

I would tell potential users to schedule a live demonstration. They should also have proof of concept to make decisions. 

On a scale from one to ten, I would give Seceon Open Threat Management Platform a nine.

We use this solution primarily for event management, cyber threat hunting and threat management. Additionally, we deploy this solution on-premises.

The most valuable features are behaviour analytics, threat intelligence, endpoint detection, and response features.

The product could be improved by including sandboxing capabilities in the next release.

We have been using this solution for two years.

The solution is fairly stable.

The solution is scalable. There are currently four people working with this solution on my team.

We provide technical support as employees to our customers.

The initial setup was straightforward and took approximately two weeks to implement.

The pricing for this solution is reasonable. However, I am unsure of the approximate costs.

We evaluated the Splunk SIEM solution. Splunk as a SIEM solution is good, but Seceon Open Threat Management Platform provides a more straightforward implementation that is better than Splunk. In addition, Splunk offers more flexibility and search capabilities, but Seceon Open Threat Management Platform provides an AI-based platform with machine learning and deep learning capabilities. So, in my opinion, Seceon Open Threat Management Platform is a better solution than Splunk.

I rate this solution an eight out of ten. I advise new users looking to implement this solution to choose Seceon Open Threat Management Platform if they are searching for government compliance and regulatory parts, as it will assist in meeting their requirements or securing the organization's IT assets very quickly for deployment. The solution is good, but more sandboxing capabilities could be introduced into the product.