Analyst Report

Security Information and Event Management: A MITRE ATT&CK Framework Competitive Evaluation

ArcSight scores 10/10 in this competitive benchmark report from GigaOm, which evaluated popular SIEM solutions to determine how well each performs in detecting attacks that leverage common techniques recognized by the MITRE ATT&CK Framework.

Report insights include:

  • Methodology for evaluating MITRE ATT&CK technique detection
  • Analysis of four popular SIEM vendors, including ArcSight
  • Implications of the evaluation results
  • Hands-on assessment of each solution, focusing on ease of use and UI effectiveness. 

GigaOm SIEM Competitive Evaluation

Competitive evaluation of popular SIEM solutions, including ease of use, UI effectiveness, and performance in detecting common MITRE ATT&CK techniques.

“ArcSight caught and logged each updated ATT&CK technique.”

“ArcSight impressed us by how easy the system was to use and how well it performed in our tests.”

“L1 analysts with a basic understanding of the ATT&CK framework and little other security domain knowledge can quickly be productive with the ArcSight solution.”

Learn more: read the GigaOm Competitive SIEM Evaluation today.

release-rel-2023-5-2-9075 | Thu May 18 01:07:06 PDT 2023
9075
release/rel-2023-5-2-9075
Thu May 18 01:07:06 PDT 2023
AWS