Top 7 BullS*!t Tactics of SIEM Providers…

We avoid these common bad practices

1. They charge for Events per Second (EPS)
This pushes costs up as you collect more
data, encouraging you to restrict security
information to keep costs under control.

2. They charge you for data volumes
Some SIEM vendors charge for volume licenses. Not
only do they charge EPS but they charge for the
storage of that data and for support too. It’s worth
noting licensing fees increase along with increased
storage too, despite the license remaining the same.

3. Complex GUI and expensive training
Ever wondered why commercial SIEM products look
vastly different from one another and are normally
quite tricky to navigate? It’s so you have to send
people on training run by the provider. . . which
you to have to pay for. Side Note: Our GUI is
opensource and simple and the training is FREE!

4. They tie you into long contracts
Some companies find that long contracts suit their
needs. Side Note: PocketSIEM has a rolling monthly
contract option.

5. Exorbitant lisencing fees
Not only is the licensing model (ESP/Data Volume)
sh!t the actual costs of the software/hardware is
often eye wateringly high.

6. Nothing works out of the box
“Plug-n-play”… Some systems are operational and
serving the intended purpose as soon as they are
plugged in. Most, however, require an investment of
time, skill, experience, and training in order to
write alerts and use cases from scratch, and manage
results. Side Note: PocketSIEM is built with up to
date rulesets and use-cases from day one!

7. Fear selling
Has a vendor ever implied that … “You’ll only be
secure if you buy our thingie-majigarybob”.
Despite what they tell you, most organisations do
not need highly bespoke, nation-state proof, zero
day finding, next level advanced thingie
thingies….

Once you get rid of your current supplier contact us at info@pocketsiem.co.uk