{"id":2345,"date":"2018-12-06T11:03:35","date_gmt":"2018-12-06T15:03:35","guid":{"rendered":"https:\/\/solutionsreview.com\/security-information-event-management\/?p=2345"},"modified":"2021-05-12T11:29:56","modified_gmt":"2021-05-12T15:29:56","slug":"whats-changed-gartner-2018-siem-magic-quadrant","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/security-information-event-management\/whats-changed-gartner-2018-siem-magic-quadrant\/","title":{"rendered":"What\u2019s Changed? The Gartner 2018 SIEM Magic Quadrant"},"content":{"rendered":"

\"What\u2019s<\/p>\n

It\u2019s here at last: technology analysis and research firm Gartner, Inc. has released their 2018 SIEM Magic Quadrant Report. <\/span><\/p>\n

In this report, Gartner evaluated the strengths and weaknesses of the 17 Security Information and Event Management (SIEM<\/a><\/strong><\/span>) solution providers it considers the most significant in the market. They base their findings on distinct service and market share criteria. \u00a0<\/span><\/p>\n


Widget not in any sidebars
<\/span>Gartner\u2019s researchers take their findings on each vendor and use them to create their proprietary Magic Quadrant graph. This graph plots the SIEM solutions providers based on the completeness of, and their ability to execute on, their security platform\u2019s capabilities and vision. The four categories of the Quadrant are labeled as Leaders, Visionaries, Challengers, and Niche Players. Despite the labels, Gartner explicitly states it does not endorse any vendor, product, or service depicted in its research publications.<\/span><\/p>\n

The 17 vendors selected for the 2018 SIEM Magic Quadrant are AlienVault, BlackStratus, Dell Technologies (RSA), Exabeam, Fortinet, IBM, LogPoint, LogRhythm, ManageEngine, McAfee, Micro Focus, Netsurion-EventTracker, Rapid7, Securonix, SolarWinds, Splunk, and VenusTech.<\/span><\/p>\n

The 2018 SIEM Magic Quadrant is the thirteenth iteration of the report, which Gartner first introduced in 2005; their researchers coined the name SIEM for the category. Since then, Gartner witnessed the maturation and increasing competitiveness of the SIEM market. Even enterprises with limited cybersecurity resources have begun to deploy SIEM solutions. Gartner notes SIEM\u2019s market growth to over $2 billion in 2017 as a direct result of this increased adoption rate. \u00a0<\/span><\/p>\n

Gartner states in its opening lines of their report \u201csecurity and risk management leaders increasingly seek SIEM solutions with capabilities that support early targeted attack detection and response.\u201d This hints at the key reasons for its widespread adoption.<\/span><\/p>\n

What does Gartner predict for the future of SIEM? Which vendors made it to the Leader Quadrant, and why? What capabilities does Gartner consider the most essential for SIEM? <\/span><\/p>\n

The editors of Solutions Review read through the Gartner 2018 SIEM Magic Quadrant. Here\u2019s what we learned.<\/span><\/p>\n

ALERT: Hackers don’t wait for world crises to end. Our Buyer\u2019s Guide for SIEM<\/a><\/strong><\/span> helps you evaluate the best solutions for your business use case and features profiles of the leading profiles, as well as a category overview of the marketplace.<\/div><\/span><\/p>\n

A Steady Definition of SIEM<\/b><\/h3>\n

One of the first steps to any Gartner Magic Quadrant analysis is to understand how Gartner defines the market space in question. <\/span><\/p>\n

However, Gartner did not radically change its market definition for the 2018 SIEM Magic Quadrant. According to their researchers, Gartner defines SIEM \u201cby the customer\u2019s need to analyze event data in real-time for early detection of targeted attacks and data breaches, and to collect, store, investigate and report on log data for incident response, forensics, and regulatory compliance.\u201d<\/span><\/p>\n

Gartner does elaborate on their definition by stating SIEM must aggregate event data generated by a variety of sources, especially data produced by security devices and network infrastructure. SIEM should then, according to researchers, combine this log data with contextual information to detect threats and normalize it for specific analysis.<\/span><\/p>\n

In order for Gartner\u2019s researchers to consider a vendor for the 2018 SIEM Magic Quadrant, the vendor must meet certain conditions and criteria both technical and market-related.<\/span><\/p>\n

These criteria include: <\/span><\/p>\n