(Page 2 of 2)
NetIQ's Sentinel was deemed a good fit for organizations that require "large-scale security event processing in highly distributed environments (such as retail)," and Gartner noted it is an "especially good choice for organizations that have deployed NetIQ IAM infrastructure and need security monitoring with an identity context."
AlienVault is the only vendor in this quadrant. "The AlienVault USM platform should be considered by organizations that need a broad set of integrated security capabilities at relatively low cost compared with other commercial offerings, and by organizations that want a commercially supported product that is based on open source," Gartner's report said.
The Niche Players
Topping the list of niche players are SolarWinds and TrustWave. Other vendors in this quadrant are Tibco Software, Tenable Network Security, Event Tracker, AccelOps and BlackStratus.
SolarWinds LEM is a good fit for small- or mid-size companies that require SIEM technology that is easy to deploy as well as companies that use other SolarWinds' operations monitoring components, Gartner said. Trustwave is a good fit for mid-size organizations that require a combination of compliance-oriented services and SIEM technology.
Gartner said in its report that the SIEM market is dominated by just a few large vendors -- HP, IBM, McAfee, EMC (RSA) and Splunk -- that command about 60 percent of market revenue. Other large vendors such as Tibco are also in the mix. There are still a few small vendors that are doing well, but Gartner said there would be "increasing stress on many of the small remaining vendors."
The number one reason businesses are adopting security information and event management technology is to detect data breaches, while compliance remains the secondary motive, Gartner said.
While the SIEM market is mature and competitive, the greatest area of unmet need is effective targeted attack and breach detection, Gartner said. But the situation can be improved with stronger threat intelligence, the addition of behavior profiling and better analytics.
"SIEM is a $1.5 billion market that grew 16 percent during 2013 -- with an expected growth rate of 12.4 percent during 2014," the report said. "During this period, the number of Gartner inquiry calls from end-user clients with funded SIEM projects increased by 12 percent over the previous 12 months."
Posted: 2014-07-06 @ 12:27pm PT
You can also give the charts?
Posted: 2014-07-02 @ 5:51pm PT
This just goes to show how far behind the curve Gartner is. And how selective their client stories are. SIEM is outdated and will be superseded in the near future by open source platforms. Advice to CISOs: save your money, there is no value in SIEM.