Splunk, Veracode and Whitehat Security outperform
According to 451 Research's new Voice of the Enterprise: Information Security quarterly study, more than 32% of the enterprises surveyed name Splunk as their primary Security Information and Event Management (SIEM) platform provider. In the 451 Research Vendor Window, enterprises rated Splunk highest especially for querying capability and the ease of integrating new data feeds. Intel Security is the second highest rated vendor based on evaluations from its 380 existing customers.
As expected, spending on security remains strong with 44% of enterprise security managers expecting to increase their budget in the next 90 days. Only 4% of enterprises are decreasing security spending. While security budgets are stable or increasing for almost all organisations, security managers reported significant obstacles in fully realising the benefits of SIEM solutions because of lack of staff expertise (44.4%) and inadequate staffing (27.8%). Given this challenge, only a little over half, 56.9%, of enterprises are able to devote more than one professional to their SIEM implementation and monitoring.
41% of respondents noted 'hackers with malicious intent' as their top security concern over the past 90 days, followed by navigating compliance requirements (37%). As a consequence, 23% of security managers noted that compliance requirements were a key driver in getting projects approved, second only to risk assessment cited by 25% of respondents.
"SIEM solutions hold a lot of promise as the centralised solution for unlocking all the secrets held in the logs of enterprise systems and marrying them with the use of threat intelligence," said Daniel Kennedy, Research Director for Information Security...