Google’s Chronicle Security Operations: Why Doesn’t My SIEM Do That?

Google’s Chronicle Security Operations: Why Doesn’t My SIEM Do That?

 

SANS conducted a review of Chronicle, Google’s cloud-native security operations suite, with a focus on evaluating its SIEM features and usability from a practitioner perspective. As readers will learn from this review, the product has a significant number of capabilities and was obviously designed to address shortcomings inherent in many SIEM platforms. The interface was easy to navigate and makes operating through traditional analyst workflows seamless. After reading this product review, we believe you’ll want to give Chronicle a look for your security operations team. At a minimum, we think you’ll ask, “Why doesn’t my SIEM do that?” on more than one occasion.