GCP – Google named a Leader in IDC MarketScape: Worldwide SIEM for Enterprise 2024 Vendor Assessment
Security information and event management (SIEM) systems are the backbone of most security operations centers and security teams rely on them for effective threat detection, investigation, and response.
We’re thrilled to share that Google has been named a Leader in the IDC MarketScape: Worldwide SIEM for Enterprise 2024 Vendor Assessment. We believe this recognition is a reflection of our significant investments in Google Security Operations over the past three years. Our efforts include the acquisition and integration of Mandiant, the world’s leading threat intelligence and incident response provider, and Siemplify, a leading security orchestration, automation and response (SOAR) provider.
The IDC MarketScape noted, “Google Security Operations is a cloud-native SIEM that is integrating previous point products such as SOAR and ASM, enriching all alerts with Google Threat Intelligence, and offering a gen AI assistant to alleviate mundane security analyst tasks. It is built on the search, data visualization, and storage services of Google Cloud.”
Google named a Leader in the IDC MarketScape: Worldwide SIEM for Enterprise 2024 Vendor Assessment.
Our drive to evolve security operations
Google Security Operations continues to drive innovation in the ability to effectively detect, investigate, and respond to threats. Recent advancements include:
Unlocking deeper threat hunting and investigation workflows with Applied Threat Intelligence, enabling security teams to spend less time on monitoring activities, and helps them use deep insights from Mandiant experts and crowd-sourced insights from VirusTotal for better decision making.
Working smarter, not harder, with Gemini in Security Operations to more easily perform natural language searches across your data, event summarization, detection creation, and playbook building.
Mandiant Hunt, which integrates Mandian’t frontline intelligence and expertise with Google Security Operations to help defenders proactively search for undetected attacks.
Customers are driving innovation at their own organizations
Google Security Operations customers such as Etsy, Pfizer, and Apex FinTech Solutions are making significant changes in both the technology they use and the way they think about SecOps with Google Security Operations.
“This is our chance to reset, [have a] clean slate,” said Manan Doshi, senior security engineer, Etsy. “We have the chance to evaluate all the detections we had, data sources we weren’t using, save money, and make sure our SIEM is not inundated with content.”
“We’re using Google Security Operations as the central point of all of our data. It’s very nice with [security telemetry and threat intelligence] stitched together into this one single pane of glass. When you run a search, all of the data just pops up from a contextual enrichment perspective and now we’re using the Gemini investigation assistant that pulls it all together right away. I think it’s going to uplift our talent to get to the threat more quickly,” said Mark Ruiz, head of cybersecurity analytics, Pfizer.
“No longer do we have our analysts having to write regular expressions that could take anywhere from 30 minutes to an hour — Gemini can do it within a matter of seconds,” said Hector Peña, senior information security director, Apex Fintech Solutions.
Download a complimentary excerpt of the IDC MarketScape: Worldwide SIEM for Enterprise 2024 Vendor Assessment today.
Read More for the details.