(10/10 for packet forensics, 4/10 for cloud log management).
Final thought: If Broadcom invests in cloud scalability and log parsing, Symantec could dethrone the big players. But as of today, it remains the best "second SIEM" you'll ever buy. Do you run Symantec in your SOC? Have you migrated away? Share your experience in the comments. (10/10 for packet forensics, 4/10 for cloud log management)
Is it a true SIEM? And more importantly, can it compete? Here is an operational evaluation of Symantec for SIEM. To understand Symantec’s SIEM, you must understand its heritage. It came from Blue Coat (acquired by Symantec in 2016, then absorbed by Broadcom). Do you run Symantec in your SOC
When security teams hear "Symantec," they typically think of endpoint protection (SEP) or web gateways (ProxySG). But what about Security Information and Event Management (SIEM)? Is it a true SIEM