SIEM is a configurable security system of record that aggregates and analyzes security event data from on-premises and cloud environments. SIEM assists with response actions to mitigate issues that cause harm to the organization and satisfy compliance and reporting requirements.
Vendor Strengths and Cautions
Devo:Devo is a Visionary in this Magic Quadrant. The Devo Platform, a cloud-native SIEM solution, appeals to enterprises with large datasets, in addition to midsize organizations that have mid- to high-maturity security operations center (SOC) teams. Devo offers three packages: Intelligent SIEM Starter, Intelligent SIEM and Intelligent SIEM+, and is licensed based on the volume of data ingested. The majority of Devo’s SIEM customer base is composed of organizations in North America, while the smallest number is located in Latin America. In the last year, Devo has made enhancements in advanced behavior analytics, investigation, automation and orchestration. Devo is investing in its AuDRA AI for playbook development.