Gartner defines SIEM as a technology that aggregates data produced by security devices, network infrastructure and systems, and applications. Products in the security information and event management (SIEM) market analyze security event data and network flow data in real time for internal and external threat management. They collect, store, analyze and report on log data for incident response, forensics and regulatory compliance. Vendors in this space are continually improving threat intelligence and security analytics. Companies are looking to adopt this technology in order to detect threats and breaches, and by compliance needs. Early breach discovery requires effective user activity, data access and application activity monitoring.
Companies placed by Gartner in the Leaders Quadrant have been the most successful in building an installed base and establishing a revenue stream from the SIEM market. Leaders also typically have a high share of the market and high revenue growth. They’ve also demonstrated superior vision and execution for emerging and anticipated requirements of the market. What’s more, they’ve garnered positive customer feedback for their SIEM products, as well as service and support of those products.
There are three new vendors (Dell, Exabearn and Securonix) and four existing vendors (IBM, Splunk, LogRhythm, McAfee) in Leaders quadrant.
Four vendors are in Leaders quadrant: IBM, Splunk, LogRhythm, McAfee
Three vendors are in Visionaries: Rapid7, Securonix, Exabeam
Gartner placed five companies in the leaders quadrant: IBM, Splunk, LogRhythm, HPE, Intel Security.