SOC Prime mentioned as a detection content provider for the second year in a row
Boston, MA — SOC Prime, Inc., the leader in Detection as Code and Continuous Security Intelligence, recently announced it has been mentioned for the second year in a row in the 2021 Gartner, Magic Quadrant for Security Information and Event Management1. Previously, SOC Prime was named a Cool Vendor by Gartner in their October 2019 “Cool Vendors in Security and Risk Management, 2H19”2 report and mentioned in the Gartner’s research note “How to Build Security Use Cases for Your SIEM.”3
CISOs, SOC Managers, and other security practitioners can explore the 2021 Gartner, Magic Quadrant SIEM from the SOC Prime’s website by following this link. The report is available with a single click, no forms required to fill out and no sales follow-up.
It is truly exciting to be mentioned in any research by Gartner. Customers and Partners of SOC Prime use our platform to continuously improve their SIEM & EDR detection capabilities and the 2021 Gartner, Magic Quadrant SIEM marks this as an ongoing trend for 2 consecutive years. It is also the first year when Sigma got its own mention in MQ SIEM. And it is amazing to observe how the Sigma project, started by Florian Roth and Thomas Patzke back in 2017, has grown into the de-facto standard of expressing and sharing threat detection queries and rules for all common SIEM and EDR tools. I am excited to be a part of this journey and community of more than 17,000 people. The best is yet to come, we are driving an industry-defining change together.
Founder, Chief Executive Officer, Chairman at SOC Prime
“Gartner’s view of the market for security information and event management (SIEM) solutions focuses on transformational technologies and approaches to meeting the future needs of end users.”
SOC Prime has established a solid partnership with a number of vendors included in the report. Microsoft Azure Sentinel is named as a Visionary in the 2021 Gartner, Magic Quadrant SIEM, while Google Chronicle is mentioned in the report as well. SOC Prime provides a fast, simple, and efficient transition to these technologies, including content translation, automation, and addressing the need to migrate parsers at no cost.
Overall, SOC Prime currently supports 9 recognized SIEM vendors included in the Gartner Magic Quadrant 2021 by providing cross-tool detection content tailored to the customer’s SIEM-native language format, continuously expanding its SIEM & XDR stack. The supported SIEM vendors include Microsoft Azure Sentinel, Sumo Logic, Splunk, IBM QRadar, Securonix, FireEye, Elastic, LogPoint, and RSA NetWitness.
1Gartner, Magic Quadrant for Security Information and Event Management, By Kelly Kavanagh, Toby Bussa, John Collins, 29 June 2021.
2Gartner, Cool Vendors in Security and Risk Management, 2H19, By Prateek Bhajanka, Dionisio Zumerle, Augusto Barros, Toby Bussa, 3 October 2019.
3Gartner, How to Build Security Use Cases for Your SIEM, By Gorka Sadowski, 19 July 2019.
Gartner does not endorse any vendor, product or service depicted in our research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
About SOC PRIME
SOC Prime is the leader in Continuous Security Intelligence enabling Detection as Code operations and practices for 6,000+ organizations in 155+ countries. Our core product, Threat Detection Marketplace, is a SaaS platform for SOC content that provides access and support to 100,000+ detection and response algorithms for 20+ market-leading SIEM, EDR, and NTDR technologies. We help organizations to make threat detection easier, faster and simpler by rapidly and continuously improving their cyber defense capabilities. SOC Prime delivers Sigma rules, as well as native SIEM content, such as queries, dashboards, and data connectors, enabling continuous integration, data schema customization, and threat profile alignment to the MITRE ATT&CK® framework v.9.