Are you fed up with the never-ending games and deceptive tactics used by security information and event management vendors? It's time to take control and make informed decisions. That's why we have decided to launch a series of blog posts to help educate you on how to identify and effectively counter vendor gimmicks. Our goal is to provide you with the knowledge and information you need to make the best decisions for your organization's security needs. Join us as we explore the often confusing world of SIEM vendors and equip you with the knowledge to make the right choices.
Vendors often make false promises in the world of SIEM. Two of the most common are 'Our SIEM is free' and 'Up to'. However, when you look at the details, you realize that once it is in production and using real data, the SIEM is not free at all and the cost can be quite expensive. For example, 'Our SIEM allows up to 1,000,000 events per second' may not be true when it is in production, as it may drop events before reaching the upper limit.
Everyone involved in the procurement of cybersecurity solutions, from customers and prospects to security organizations, CISOs, and people responsible for procurement, are all tired of the games vendors play and the tricks they use to confuse them into buying more than they need at a higher price than they would like. We are committed to helping you avoid these gimmicks and providing you with the outcomes you need at an optimized total cost of ownership. We have created this blog series to warn you about these tricks and give you ways to recognize and avoid them.
We will also discuss the sales playbooks and methodologies used by vendors, as I have a unique perspective on this having worked for market-leading SIEM and threat detection, investigation, and response vendors. Vendors are usually well-intentioned when they bring their solutions to market, but they also need to generate revenue to stay in business. This can lead to them using tricks and gimmicks to try and get more money from customers.
When looking at cloud-delivered SIEM vendors, make sure you understand the shared responsibility model and ask questions about authentication, encryption standards, and secrets management. Be aware of the use of 'Up to' when it comes to criteria that are important to you, as this can mean something very different in practice.
Finally, make sure you understand the product limitations and the extensibility of the platform. If a vendor says 'Up to 1M EPS' and you realize it is really 100,000 EPS, this may not be a problem if all you need is 1,000 EPS. However, be aware that the vendor may be making similar claims in other areas, so be on the lookout for other criteria that are important to you.
We hope this blog series will help you to recognize and avoid the tricks and gimmicks used by vendors, and to choose a partner that puts your needs first and refuses to engage in these games.
This Cyber News was published on www.exabeam.com. Publication date: Tue, 07 Feb 2023 18:00:03 +0000