We changed our name from IT Central Station: Here's why

Elastic SIEM Primary Use Case

JM
Director of Engineering at a tech services company with 201-500 employees

We want to track and to respond to our security incidents. That's the main reason we use it, to analyze and see like what all the incidents that are happening. We also deploy it for some of our clients.

View full review »
SA
Consultant at a computer software company with 5,001-10,000 employees

There are around 150 pre-built use cases. One of the major use cases is when somebody tries to fiddle with logs, Elastic SIEM creates an alert because logs are the most critical things from the security aspect. For example, I have more than 1,000 terminals, which can be desktops, laptops, or any sort of servers. If somebody tries to delete Windows logs, Elastic SIEM immediately generates an alert indicating that somebody is trying to fiddle with the logs. Elastic SIEM sends me a pop-up message as well as an email.

View full review »
SA
Consultant at a computer software company with 5,001-10,000 employees

This is a log aggregation tool and we are using it for security purposes.

There are 145 pre-built use cases, but we are still making some ourselves. One we built is an alarm for log deletion. For example, if a hacker tries to delete the log from a bank machine then it will raise an alarm immediately. A second use case is an alert for too many false login attempts, perhaps indicating a brute-force attack.

View full review »
Learn what your peers think about Elastic SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: January 2022.
564,599 professionals have used our research since 2012.
TW
I.T. Manager at a healthcare company with 51-200 employees

We plan to use it to analyze the data that we're pumping into it from Active Directory and from firewalls, then we'll pass that information onto our own external SOC.

View full review »
JJ
CEO at a tech services company with 51-200 employees

We use Elastic SIEM for security and analytics.

View full review »
KE
Cyber Security Consultant at a tech services company with 51-200 employees

Elastic SIEM is used to monitor and deal with system log files.

View full review »
Learn what your peers think about Elastic SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: January 2022.
564,599 professionals have used our research since 2012.