So I posted this question on today’s VLOG before you mentioned the forums.
I wanted to ask do you guys recommend a SIEM solution for your clients?
Do you think a SIEM solution should be part of a minimum standard security model?
When would you recommend a SIEM?
What SIEM would you recommend? Is it Co-Managed?
Has anyone here used Netsurion EventTracker?
I know Solarwinds recommends Secuvant but it’s kinda pricey. I also know you get what you pay for. Anyone have any experience with them?