TrustRadius: an HG Insights company

NetWitness Cloud SIEM

Score6.1 out of 10

3 Reviews and Ratings

Get a Demo

What is NetWitness Cloud SIEM?

NetWitness Cloud SIEM delivers log management, retention, and analytics services in a simplified cloud form. It aims t o eliminate traditional deployment and administration requirements with a simple throughput-based licensing model, to make high-quality SIEM quick and easy to acquire without sacrificing capability or power.

Categories & Use Cases

Key Features

Learn about the best (and worst!) features NetWitness Cloud SIEM has to offer, as determined by TrustRadius' reviewers.
Based on 3 ratings of NetWitness Cloud SIEM's features
View all features

Top Performing Features

  • Correlation

    Correlation of logs and events to pinpoint significant threats

    Category average: 8.4

  • Deployment flexibility

    Ability to tune system to maximize threat detection and minimize false positives

    Category average: 7.7

  • Centralized event and log data collection

    Effectiveness of real-time centralized event and log data collection

    Category average: 9

Areas for Improvement

  • Integration with Identity and Access Management Tools

    Integration with access control tools like Active Directory and LDAP

    Category average: 7.7

  • Custom dashboards and workspaces

    dashboards that can be customized to meet the needs of specific groups

    Category average: 7.9

  • Host and network-based intrusion detection

    Ability to detect both endpoint intrusion and network ingress detection

    Category average: 7.4

Reviews

What users are saying about NetWitness Cloud SIEM.
View all reviews

RSA NetWitness! What you need and more!

Incentivized
Verified User
Manager in Information Technology (1001-5000 employees employees)

Pros

  • Log collection and parsing.
  • Packet collection and parsing.
  • Enhanched analytics and alerting.
  • Robust integration.

Cons

  • Lacking out of the box best practice templates etc. It relies heavily on customization.
  • Lack of up to date threat feeds.
  • Difficult to learn and use initially.

Return on Investment

  • Hard to calculate ROI since it is not revenue based.
  • It is a expensive solution, bit very capable.