Evaluate The Security Operations Company Symantec On - Security Information And Event Management [updated]

If you are a full Symantec shop (SEP, DLP, CASB, Proxy), the SIEM provides remarkable correlation. For example, it can link a malware detection on an endpoint with the network session that downloaded the payload and the DLP alert that fired when data left. This kills alert fatigue.

Symantec, a division of , focuses its security operations strategy on an Integrated Cyber Defense (ICD) platform rather than acting as a standalone SIEM provider. While Symantec previously offered the Symantec Security Information Manager (SSIM) , it has since issued an end-of-sale announcement for that product, leading many customers to migrate to alternative SIEM platforms. If you are a full Symantec shop (SEP,

Based on the evaluation, Symantec's SIEM solution receives a rating of 4.5 out of 5, indicating a strong and comprehensive offering with some minor drawbacks. Symantec, a division of , focuses its security

Since Broadcom acquired Symantec's enterprise division, the roadmap has slowed. Pricing has become rigid. Many small-to-mid sized businesses have been priced out or forced into long-term contracts. The innovation velocity is lower than cloud-native competitors. can it compete?

Symantec's role in a Security Operations Center (SOC) is evaluated based on its ability to feed and integrate with SIEM platforms: Symantec XDR: A Streamlined Approach to Enterprise Security

Is it a true SIEM? And more importantly, can it compete? Here is an operational evaluation of Symantec for SIEM.