Netresults and Scorecard: Security Information and Event Management

alt text

Click Here

Get information about your IP

IP Information

50+ On-demand DNS and network tools

Clear Choice Test

Security Information and Event Management

Introduction|Are SIEM and log management the same thing?|How we did it|Slideshow|Test archive

Product	QRadar	TriGeo SIM	Cinxi
Vendor	Q1 Labs	TriGeo Network Security	High Tower Software
Price	$19,000	$19,000	$18,000
Pros	Well-rounded product; mature correlation engine; includes geographical lookups.	Easy to use; has such additional functions as built-in intrusion detection; good for small businesses.	Very easy to use; has built-in ticketing system; good user interface.
Cons	User interface and feature organization still a bit rough.	Expensive once you start adding extra features.	Reporting and ad hoc querying remain quite weak.
Score	3.3	2.9	2.9

Product	Security Manager	Eventia	SecureVue
Vendor	NetIQ	Check Point Software	eIQ Networks
Price*	$850 per device monitored*	$16,000	$50,000
Pros	Useful data-manipulation tools; integrates with performance-and availability-monitoring tools.	Natural addition for existing Check Point customers; provides essential features.	Capable of importing performance and change-control information; unique visualization tool; excellent parser toolkit.
Cons	Complex; installation is taxing; immature syslog listener, poor ad-hoc-query functions.	DoesnÕt support as many devices as others do; no grouping mechanisms.	User interface is painful; limited access to correlation logic.
Score	2.7	2.5	2.5

Category	Weight	Q1 Labs QRadar	HighTower Cinxi	TriGeo TriGeo SIM	NetIQ Security Manager	Check Point Eventia	eIQ SecureVue
Event reduction	20%	4.0	3.0	2.0	3.0	2.0	2.0
Ad hoc querying	20%	3.0	2.0	4.0	2.0	2.0	2.0
Reporting	20%	3.0	2.0	3.0	3.0	2.0	2.0
User interface	20%	3.0	4.0	2.5	3.0	3.0	2.0
Installation	10%	3.0	3.0	3.0	3.0	3.0	3.0
Device support	10%	4.0	4.0	3.0	2.0	4.0	4.0
Total score		3.3	2.9	2.9	2.7	2.5	2.5

Scoring key: 5: Exceptional; 4: Very good; 3: Average; 2: Below average; 1: Subpar or not available.

Manage your IT more effectively.- CA
See, Accelerate, and Secure Applications. Blue Coat. Control is Yours.- Blue Coat
Keep your server and telecom closets cool with self-contained spot air conditioners.- MovinCool
Managed Application Delivery Services for Your Enterprise- Akamai Technologies
IBM: Green IT- IBM
Dodge network management blunders with app delivery assurance tools. - ExtraHop Networks
Realize significant productivity gains by migrating to Windows Vista.- Dell Computer Corporation
F5 Virtualization Solution Center- F5 Networks
Think your data is safe? Think again. It's time to Outthink the Threat. Get eBook now.- Trend Micro
Advance your wireless network to 802.11n. Learn How!- Cisco Systems Inc

RESEARCH CENTERS:
Applications-Standards | Applications Vendor Solutions | CRM / ERP | Databases | Directories | Grid Computing | .Net | RFID | SOAP | Web Services | Video | VoIP | Acceleration | Gigabit Ethernet | LAN Standards | Management | NAC | Identity management | Patch Management | Microsoft Security | Privacy | Security Standards | Viruses & worms | Web Security | Backup-Recovery | Data Center | Desktop Management | Grid | Server Blades | Servers Desktops | Telework | Handhelds & PDAs | Home Networking | Online Games | InfiniBand | Storage Virtualization | Virtualization | Vendor News | Bankruptcy | Earnings | Lawsuits | Layoffs | Standards | Start Ups | Vendor Markets | Education | Financial | Healthcare | HIPAA | Manufacturing | Retail | Service providers | PDAs & handhelds | Wireless Standards | Wireless Switches | All Company Profiles | Cisco Subnet | Microsoft Subnet | Download Library | Cell Phone Scan

About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW

Copyright, 1994-2008 Network World, Inc. All rights reserved.