Operations Company Symantec On Security Information And Event Management — Evaluate The Security

In a modern SOC, you wouldn't replace your log aggregator with Symantec. Instead, you would use it as a next to your primary SIEM. Feed the alerts from Symantec into your main SIEM, but keep Symantec as the "video replay" system for deep investigation.

Final thought: If Broadcom invests in cloud scalability and log parsing, Symantec could dethrone the big players. But as of today, it remains the best "second SIEM" you'll ever buy. Do you run Symantec in your SOC? Have you migrated away? Share your experience in the comments. In a modern SOC, you wouldn't replace your

When security teams hear "Symantec," they typically think of endpoint protection (SEP) or web gateways (ProxySG). But what about Security Information and Event Management (SIEM)? In a modern SOC