Google named a Leader in IDC MarketScape: Worldwide SIEM for Enterprise 2024 Vendor Assessment
By Chris Corde, Director Product Management
Security information and event management (SIEM) systems are the backbone of most security operations centers and security teams rely on them for effective threat detection, investigation, and response.
We’re thrilled to share that Google has been named a Leader in the IDC MarketScape: Worldwide SIEM for Enterprise 2024 Vendor Assessment. We believe this recognition is a reflection of our significant investments in Google Security Operations over the past three years. Our efforts include the acquisition and integration of Mandiant, the world’s leading threat intelligence and incident response provider, and Siemplify, a leading security orchestration, automation and response (SOAR) provider.
The IDC MarketScape noted, “Google Security Operations is a cloud-native SIEM that is integrating previous point products such as SOAR and ASM, enriching all alerts with Google Threat Intelligence, and offering a gen AI assistant to alleviate mundane security analyst tasks. It is built on the search, data visualization, and storage services of Google Cloud.”
Our drive to evolve security operations
Google Security Operations continues to drive innovation in the ability to effectively detect, investigate, and respond to threats. Recent advancements include:
Unlocking deeper threat hunting and investigation workflows with Applied Threat Intelligence, enabling security teams to spend less time on monitoring activities, and helps them use deep insights from Mandiant experts and crowd-sourced insights from VirusTotal for better decision making.
Working smarter, not harder, with Gemini in Security Operations to more easily perform natural language searches across your data, event summarization, detection creation, and playbook building.
Mandiant Hunt, which integrates Mandian’t frontline intelligence and expertise with Google Security Operations to help defenders proactively search for undetected attacks.
Customers are driving innovation at their own organizations
Google Security Operations customers such as Etsy, Pfizer, and Apex FinTech Solutions are making significant changes in both the technology they use and the way they think about SecOps with Google Security Operations.
“Overall, this is the fastest our team has ever set up a new SIEM,” said Manan Doshi, senior security engineer, Etsy. “We've had fantastic support along the way, and we're really, really excited to start over with the new slate, and really take our time to carefully build a new foundation from the ground up.”
“We’re using Google Security Operations as the central point of all of our data. It's very nice with [security telemetry and threat intelligence] stitched together into this one single pane of glass. When you run a search, all of the data just pops up from a contextual enrichment perspective and now we're using the Gemini investigation assistant that pulls it all together right away. I think it's going to uplift our talent to get to the threat more quickly,” said Mark Ruiz, head of cybersecurity analytics, Pfizer.