IBM Security QRadar SIEM
Features:
- Intelligent insights across environments - provides visibility and applies context to on-prem and cloud-based resources; leverages continuous monitoring for a zero trust approach to security.
- Built-in analytics to accurately detect threats - analyzes network, endpoint, asset, user, risk and threat data to uncover known and unknown threats; speeds time to value.
- Correlation of related activities - identifies and tracks related activities throughout the kill chain; provides end-to-end visibility into a potential incident from a single screen.
- Automatic parsing and normalizing of logs - automatically makes sense of data from disparate sources; provides an easy-to-use editor to quickly onboard custom log sources for analysis.
- Threat intelligence and support for STIX/TAXII - includes threat intelligence from IBM Security™ X-Force®; enables clients to integrate additional threat intelligence feeds via STIX/TAXII.
- Out-of-the-box integration with 450 solutions - provides over 450 integrations, APIs and an SDK to speed data ingestion, drive deeper insights and extend the value of existing solutions.
- Multiple deployment options - offers flexible architecture for varied deployment and scaling needs; can be delivered as hardware, software or VM for on-prem or IaaS environments.
- Highly scalable, self-managing database - streamlines management so teams can focus on operations; no dedicated database admins required, even at scale; helps reduce total cost of ownership.
Rating
0 vote
0