Coming October 25: PeerSpot Awards will be announced! Learn more

RSA NetWitness Logs and Packets (RSA SIEM) Pros

Mahesh Suryawanshi - PeerSpot reviewer
Program Manager at EGYANAM TECH
It's quite economical compared to other solutions in the market.
View full review »
MR
Senior Assistant Vice President at a financial services firm with 1,001-5,000 employees
I can have enterprise security, email security, next generation firewall security log, HIDS and NIDS logs, etc. all on the same dashboard. It makes it easy to pinpoint or correlate our server to this. I can find out if there is lateral movement. This is the biggest advantage of this solution.
View full review »
IO
Solution Specialist- Data Protection at a tech services company with 11-50 employees
The packet capture aspect of it is a valuable feature because it is quite different from a traditional SIEM solution that only carries out investigations based on captured logs.
View full review »
Buyer's Guide
RSA NetWitness Logs and Packets (RSA SIEM)
September 2022
Learn what your peers think about RSA NetWitness Logs and Packets (RSA SIEM). Get advice and tips from experienced pros sharing their opinions. Updated: September 2022.
635,987 professionals have used our research since 2012.
MdZaman - PeerSpot reviewer
Deputy Manager at JTI (Japan Tobacco International)
The solution is really scalable for the high-end power, enterprise customer.
View full review »
RR
Senior consultant Cybersecurity
The development of use cases on the SSA console is quite user friendly. This means that the security analyst or the researcher does not have to learn another language.
View full review »
ST
Manager at a comms service provider with 10,001+ employees
The most valuable feature of RSA NetWitness Logs and Packets are the alerts and correlations tools.
View full review »
Seakr Dg - PeerSpot reviewer
Security Operations Manager at a computer software company with 1,001-5,000 employees
The newer 11.5 version that my team is using has found it to have good mapping.
View full review »
Sandeep Sehrawat - PeerSpot reviewer
Information Technology Security Consultant at Sify Technologies
Setting up NetWitness is straightforward. There are multiple connectors, including standard and specialized connectors. One purpose of the connectors is the enhanced capability integrate the custom applications. NetWitness comes with E6 appliances and application images that we use for the initial configurations and for the OS stack information. From there, you can consider the correlation rules, integrate the different log sources, and easily create correlation rules and backlog reports.
View full review »
Rahul Patel - PeerSpot reviewer
Cyber security Lead at a manufacturing company with 1,001-5,000 employees
Offers a good wireless feature.
View full review »
AR
Associate Manager Human Resources at a financial services firm with 1,001-5,000 employees
The most valuable features are the packet inspection and the automated incident response.
View full review »

RSA NetWitness Logs and Packets (RSA SIEM) Cons

Mahesh Suryawanshi - PeerSpot reviewer
Program Manager at EGYANAM TECH
The initial setup is complex. There are other solutions that are easier to implement.
View full review »
MR
Senior Assistant Vice President at a financial services firm with 1,001-5,000 employees
Sometimes, it gives me static when integrating Windows-based systems. It should produce a precise log of sorts as to where the problem is. For example, a few days ago because of the McAfee application firewall, I couldn't get access to the particular Windows machine. So, my team and I had to figure out by ourselves that there was a virus responsible for the obstacle. This solution should trigger a meaningful log or message indicating the reason the user or implementer can't get into the machine.
View full review »
IO
Solution Specialist- Data Protection at a tech services company with 11-50 employees
There are instances where you try to run the reports and then it does not give you the desired outcome.
View full review »
Buyer's Guide
RSA NetWitness Logs and Packets (RSA SIEM)
September 2022
Learn what your peers think about RSA NetWitness Logs and Packets (RSA SIEM). Get advice and tips from experienced pros sharing their opinions. Updated: September 2022.
635,987 professionals have used our research since 2012.
MdZaman - PeerSpot reviewer
Deputy Manager at JTI (Japan Tobacco International)
The solution should have more integration capabilities with different platforms.
View full review »
RR
Senior consultant Cybersecurity
The threat detection capability and centralizing and upgrading capability need to be improved. The threat alert capability needs to be improved as well because there is some lag time at present. They need to work on their database search too.
View full review »
ST
Manager at a comms service provider with 10,001+ employees
RSA NetWitness Logs and Packets can improve the threat level aspect, it is lacking compared to other solutions. Whenever any hacking activity or any other threat factor occurred they used to provide the coverages very fast when comparing RSA NetWitness Logs and Packets. I heard the other three solutions, from a discussion with my team members who had experience in other solutions, they used to say that. Whenever any issues happened across the globe RSA NetWitness Logs and Packets are a little bit slow improving those detection mechanisms.
View full review »
Seakr Dg - PeerSpot reviewer
Security Operations Manager at a computer software company with 1,001-5,000 employees
The multi-tenant capabilities are lagging compared to IBM QRadar.
View full review »
Sandeep Sehrawat - PeerSpot reviewer
Information Technology Security Consultant at Sify Technologies
Nowadays, their support is a little subpar compared to other solutions. I rate RSA support six out of 10.
View full review »
Rahul Patel - PeerSpot reviewer
Cyber security Lead at a manufacturing company with 1,001-5,000 employees
Technical support could be improved.
View full review »
AR
Associate Manager Human Resources at a financial services firm with 1,001-5,000 employees
More customizability is required, which is something that they need to improve on.
View full review »
Buyer's Guide
RSA NetWitness Logs and Packets (RSA SIEM)
September 2022
Learn what your peers think about RSA NetWitness Logs and Packets (RSA SIEM). Get advice and tips from experienced pros sharing their opinions. Updated: September 2022.
635,987 professionals have used our research since 2012.