The world market for Security information and event management (SIEM) was valued last year at 1.5$ Billion, reflecting a 16% rise. This year, by contrast, it is set to grow only by 12.4%, according to Gartner.
In a report released by the company, in which it looked at services and products offered by 15 suppliers. Gartner looked into both the whole perception of the supplier and to its implementing and performing capabilities.
Gartner used interviews with clients that were referred to by suppliers and feedback received from Gartner’s own clients using products that were checked in the report, or those who answered comparative surveys.
The top rated security software is QRadar by IBM, which was placed in the top right quadrant. Gartner’s researchers wrote about it that it analyses behaviors and actions of the business and organizational processes, to determine if they are just simple diversion from norm or a potential threat. “Qradar is characterized by a very low rate of false alarms, a rate that cancels the need to invest precious resources of the security team in handling events that are not in fact threats”, it was written, and also added about the software that “QRadar supplies capabilities such as log management, anomaly analysis, event’s reverse analysis and handling specific vulnerable locations in the system.” The researchers stated in the report the QRadar is fit for medium and large organizations.
Another line of well ranked products was the ArcSight by HP (came in 2nd). The researchers wrote that last year “Arcsight has been one of the most viewed competitor” in this category, but that “the competitions is very much ongoing. HP is supplying a whole suit of capabilities for the operation of the organization’s security center.”
McAfee (from Intel), Splunk and LogRythm were ranked 3rd, 4th and 5th, and the challengers, on the top left quadrant, were RSA (EMC’s security branch) and NetIQ.