McAfee Named a Leader in Gartner Magic Quadrant for Security Information and Event Management

By on

This blog post was written by Karl Klaessig.

In June, Gartner, Inc. published its annual Magic Quadrant for Security Information and Event Management (SIEM), which evaluates vendors who offer SIEM products on both the ability to execute and completeness of vision. And this year, McAfee holds a spot in the leader’s quadrant.

As the threat landscape continues to expand at an astounding rate, organizations need to be even more nimble when it comes to early detection. It’s no longer a question of if, but when in terms of a security breach—meaning IT security teams must be able to analyze security event data in real time in addition to collecting, storing, analyzing and reporting on log data after an incident has occurred. The increased adoption of SIEM technology is being driven by these new challenges and compliance requirements.

Early breach discovery is one of the most important features SIEM vendors need to offer businesses, and at McAfee we understand that achieving this requires effective user activity, data access and application activity monitoring. To combat the looming specters of advanced evasion techniques (AET) and advanced persistent threats (APT), SIEM solutions must include a combination of real-time security monitoring, historical analysis, and support for incident investigation and compliance reporting tools.

With these next-generation cyber threats in mind, we took a different approach to SIEM with the McAfee Enterprise Security Manager (ESM) solution. In addition to the security information management (SIM) and SEM functions, we also offer a range of specialized add-on products and an extensive security portfolio to give customers better context around vulnerabilities, endpoints, and automated response and blocking.

  • Monitor database and application activity at the packet level by using the Database Event Monitor (DEM) and Application Data Monitor (ADM) add-ons.
  • Use flow data and statistical anomaly tracking in big data Hadoop connectors to populate watch lists for correlation and enrich SIEM data queries.
  • Stay in line with requirements for database application monitoring and industrial control systems with the new suite of regulatory compliance reports for McAfee ESM.

To learn more about how McAfee® ESM can benefit your organization, visit our website.

SIEM_MQ

Gartner, Inc., “Magic Quadrant for Security Information and Event Management,” by Kelly M. Kavanagh, Mark Nicolett, Oliver Rochford June 25, 2014. This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from McAfee. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

About the Magic Quadrant

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose

Leave a Comment

Similar articles

Here's some cool trivia for you: What profession currently has a zero-percent unemployment rate, pays an average of $116,000 a year, and is among the top in-demand jobs in the world? A lawyer? A pharmacist? A finance manager, perhaps? Nope. The job we're talking about is a cybersecurity specialist and, because of the increase in cyber ...
Read Blog
I’m proud to say that McAfee has received recognition from our customers with the 2018 Gartner Peer Insights Customers’ Choice for the Security Information and Event Management (SIEM). This is a recognition of high satisfaction from a number of reviews by verified end-user professionals. To ensure fair evaluation, Gartner maintains rigorous criteria for recognizing vendors ...
Read Blog
In security operations, we frequently talk about the difficulties in separating the signal from the noise to detect legitimate threats and disregard false alarms. Data overload is a common problem and triage becomes a critical skill to hone and develop. As the chief information security officer (CISO) for McAfee, I am aware at multiple levels ...
Read Blog