P
можно призвать positive technologies ultra next Earth all-in-one sec ueba ng-vm ng-siem
Size: a a a
2022 February 14
Z
да з....ли previous generation не доделали а уже next gen в квадранте
RI
Как миниммум нет Эластика 🙈🙊
P
комрада, ага
Z
зато наше, родное
RI
Нет, кроме шуток - Эластик так-то подходит под определение NGSIEM. Ну напильником немного надо поработать, так они все без напильника не очень
Z
этим бы soar доделать)))
P
тай определение NG*, будь добр
RI
The most powerful capability added to an NG SIEM is the capability to perform automated responses to known threats that are predefined by incident response playbooks.
Unlike their first-generation SIEM solutions, NG SIEMs are capable of pulling event data from applications and systems as well as stacking workflow automation on top of orchestration, such as pushing response actions to devices like firewalls or IPSs (intrusion prevention systems) in response to detected threats.
This makes NG SIEM similar in capability to SOAR technology. And this is why there’s the current confusion in the market.
Finally, NG SIEM solutions have integrated threat hunting capabilities, allowing analysts to uncover suspicious activity and vulnerabilities in their environment, as well as monitor threat intelligence feeds to uncover potential issues, adversaries and indicators of compromise.
Unlike their first-generation SIEM solutions, NG SIEMs are capable of pulling event data from applications and systems as well as stacking workflow automation on top of orchestration, such as pushing response actions to devices like firewalls or IPSs (intrusion prevention systems) in response to detected threats.
This makes NG SIEM similar in capability to SOAR technology. And this is why there’s the current confusion in the market.
Finally, NG SIEM solutions have integrated threat hunting capabilities, allowing analysts to uncover suspicious activity and vulnerabilities in their environment, as well as monitor threat intelligence feeds to uncover potential issues, adversaries and indicators of compromise.
RI
@revolt08 стало тебе теперь легче?
P
Я теперь ещё больше не понимаю почему в списке нет Комрада!
Z
он в другом углу, который тоже не влез.. как pt siem только в противоположном
RI
Ну чисто технически там ещё нет Microsoft и ещё ряда вендоров, попадающих под определение. Нолик прав, опять маркетологи затеяли какую-то дичь.
P
Не может быть два лидера!
Z
Unlike their first-generation SIEM solutions, NG SIEMs are capable of pulling event data from applications and systems as well as stacking workflow automation on top of orchestration, such as pushing response actions to devices like firewalls or IPSs (intrusion prevention systems) in response to detected threats.
Z
сцук
Z
они добавили soar?
Z
и сказали что это ng siem?
P
Историю ngfw вспомни
RI
Может. Осей сколько? Две. Значит лидера два. А ещё может быть спонсор исследования 😉