[Dshield] SEIM Tool recommendation
Joel Esler
joel.esler at sourcefire.com
Fri Feb 1 16:01:27 GMT 2008
Arcsight seems to be the SEIM of choice in most of the places that I
go nowadays. I have taken *some* training on it (ACIA), but not
enough to recommend it.
I do enjoy how they manage their data. Extremely efficient on the db
side.
Joel
On Feb 1, 2008, at 10:47 AM, john.schlichting at osf.ok.gov wrote:
>
> I use QRadar from Q1 Labs. Works very well for me.
>
> /john
>
> list-bounces at lists.dshield.org wrote on 01/31/2008 10:31:43 PM:
>
>> My company is doing an RFP for a SEIM tool. Any recommendation will
>> be
>> highly appreciated .. ARCSIGHT, RSA, Symantec...etc.
>>
>> Regards
>>
>> Bass
>>
--
Joel Esler
joel.esler at sourcefire.com
http://www.joelesler.net
More information about the list
mailing list