Find out what your peers are saying about Splunk, IBM, Wazuh and others in Security Information and Event Management (SIEM).
I have seen a return on investment with Exabeam Fusion SIEM, and it is worth the money.
Exabeam offers more machine learning models that detect anomalies.
The one example that I provided was worth significant attention, as the FBI and other organizations became involved, so I am assuming it was really important.
Purview saved us from potential lawsuits and the loss of confidential information, preventing legal issues.
Even with TAM support from Exabeam, many issues go unresolved.
I would rate Exabeam Fusion SIEM support team a nine out of ten; I do not give anyone a perfect score.
I also had the chance to look at the documentation, and the documentation is good.
Premium support provides excellent service, but it can be challenging for customers who cannot afford it.
Overall, I had a few issues, so I would rate the service a nine for Purview.
I believe Exabeam Fusion SIEM is excellent regarding scalability, and I would rate it at approximately an eight out of ten.
Regarding Exabeam's scalability and how well it adapts to its customers' needs, I would rate it an eight.
The capability of creating policies to facilitate detections and responses improved.
I believe Microsoft Purview Insider Risk Management scales well with the growing needs of the organization.
These problems were not frequent, and the last six to eight months have been stable.
Regarding stability, I would rate Exabeam Fusion SIEM at approximately eight to eight and a half out of ten because it is very stable.
Overall, I think Exabeam's stability level is good.
We have experienced minimal downtime, with Microsoft resolving issues within five to ten minutes maximum.
I would assess the stability and reliability of Microsoft Purview Insider Risk Management as having improved.
The correlation rules are excellent.
Exabeam's integration capabilities are not good, as Exabeam has a very limited number of integrations and no out-of-box integration.
Exabeam needs to improve its documentation and provide more customization for dashboards and case management.
I feel Microsoft Purview Insider Risk Management can be improved by being able to identify patterns and practices of users to determine whether or not they fit the normal use case of a developer, an architect, and other roles.
Microsoft should introduce an intermediate tier below E5 that covers all P1 licenses, as customers often need coverage across the entire M365 suite.
It could be improved in terms of producing reports to provide information to the C-suite or others.
The pricing for Exabeam Fusion SIEM is not cost prohibitive, but it was a little more than I initially thought.
I appreciate that Exabeam Fusion SIEM has so many rules built in, approximately eight hundred and fifty, and almost five hundred fifty integrations along with the behavior histograms.
Exabeam's UEBA is the most valuable feature that I have found so far.
The product offers useful features like the dashboard, timeline, and session views, which enhance our security tools.
It has saved us money on lawsuits and the loss of important confidential information that could lead to legal issues.
We were able to remediate the fact that we had a North Korean spy working for us.
The scoring mechanism is exceptional because it eliminates the need to reinvent criteria for identifying risks, misconfigurations, or vulnerabilities.
| Product | Mindshare (%) |
|---|---|
| Exabeam | 1.6% |
| Splunk Enterprise Security | 7.1% |
| IBM Security QRadar | 5.2% |
| Other | 86.1% |
| Product | Mindshare (%) |
|---|---|
| Microsoft Purview Insider Risk Management | 14.3% |
| Varonis Platform | 11.4% |
| Proofpoint Insider Threat Management | 11.4% |
| Other | 62.9% |
| Company Size | Count |
|---|---|
| Small Business | 12 |
| Midsize Enterprise | 5 |
| Large Enterprise | 7 |
Exabeam offers intuitive interfaces, detailed dashboards, and powerful analytics to enhance security investigations. Its machine learning detects complex threats with automation streamlining tasks for efficiency and integration with AWS.
Exabeam stands out with its robust cybersecurity management capabilities, offering advanced user behavior analytics and incident detection tools. Security teams can use its systems to monitor events, create investigative timelines, and analyze log data. While praised for easy use, it benefits from initial training for optimal utilization. Challenges include the need for better flexibility, cost-management, and enhanced AI integration. However, it facilitates seamless AWS integration, real-time updates, and vulnerability prioritization within business contexts. Improvements in dashboard customization and overall performance, especially in UI and log ingestion, could enhance usability.
What are Exabeam's key features?Exabeam is widely used across industries such as finance and government for cybersecurity management. Organizations leverage its capabilities for integrating logs, protecting sensitive environments, and supporting compliance efforts. Its tools aid in detecting anomalies and managing security operations within infrastructures effectively.
Microsoft Purview Insider Risk Management helps organizations identify and manage potential internal threats by utilizing advanced analytics and insights to minimize risk.
With a focus on addressing internal threats, Microsoft Purview Insider Risk Management employs sophisticated analytics to proactively detect and manage risks. It offers context-rich insights to protect data, helping businesses maintain compliance and safeguard their information. By implementing mechanisms to predict potential risks, it aids in preventing data loss and ensures that sensitive information remains secure.
What are the most important features of Microsoft Purview Insider Risk Management?In industries like finance and healthcare, where data sensitivity is critical, adopting Microsoft Purview Insider Risk Management can be crucial. For example, financial institutions utilize this tool to detect and mitigate fraudulent activities, while healthcare providers leverage its capabilities to protect patient data, ensuring compliance with data protection regulations. Its implementation varies across industries but consistently focuses on securing valuable information and reducing risk exposure.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
