Just over a third of IT security professionals polled in ComputerWeekly/Techtarget’s security purchasing intentions survey said Security Information and Event Management (SIEM) was too complex and time consuming to deploy.
While 21% said it was too expensive, 17% said it was too difficult to manage, 14% said SIEM required too much hardware for storing log data, and another 14% said they had not deployed SIEM because market consolidation means that suppliers lack stability.
It is unsurprising to see that SIEM is held back by a fear of complexity, said Andrew Rose, principal analyst for security and risk at Forrester Research.
“Corporate networks are like a game of chess, where simple logical rules applied iteratively can quickly lead to a unique, complex position that can be difficult to protect,” he said.
According to Rose, few organisations are able to state with any degree of accuracy, which traffic, or data, on their network is useful and which is useless. “To then expect them to filter, diagnose and react based on the filtration of this vast amount of flowing and static data is an intimidating prospect – as 34% of the respondents recognise,” he said.
Download our complete security survey results here.