Securonix Next-Gen SIEM pros and cons

Risk scoring was nice. We could exactly see which user had the highest risk score, and then we could pick it up and work on it.

The detection of threats and reduction of false positive alarms as compared to other solutions are valuable features. It has improved threat detection response and reduced a lot of noise from false positives as compared to our previous SIEM solutions.

I rate the technical support a nine out of ten. They're friendly. Whenever we have a P1 issue, we write an email and our issue is resolved in one or two hours.

Its console is very easy to use and configure. It is very intuitive for our use cases. App integrations are also pretty nice.

The most valuable feature is that it works on user behavior and event rarities.

There aren't any positive aspects of the solution. It was a complete failure. There are no redeeming features.

The solution is stable and scalable.

When they did upgrades or applied patches, sometimes, there was downtime, which required the backfill of data. There were times when we had to reach out and get a lot of things validated.

The incident response area should be improved.

It takes too long to generate Spotter reports. For example, a 90-day report is around 100 megabytes. That takes a while, but a one-day report can be generated in a few seconds. We would be happy if they sped up the process.

It could be improved a little bit more for admin users. There should be more administrative options related to security for admin users. For example, for forensic purposes, the admin should be able to stop a specific user from erasing some information. I would be helpful in certain situations, such as during an internal fraud.

Parsing needs to be improved. Every time we integrate a new, specific data source, we face a lot of problems in parsing, even for the old data source.

We thought they were going to be a great product, however, they're actually not great at all as an MSP.

We would like to see better integration with other products.