SECURITY INFORMATION MANAGEMENTV E N D O R

ArcSight Inc.Cupertino, Calif.(408) 864-2600www.arcsight.com

Cisco Systems Inc.San Jose, Calif.(800) 553-6387www.cisco.com

Computer Associates International Inc.Islandia, N.Y.(888) 423-1000www.ca.com

e-Security Inc.Vienna, Va.(703) 852-8000www.esecurityinc.com

IBM Corp.Armonk, N.Y.(877) 426-3774www.ibm.com

Intellitactics Inc.Reston, Va.(877) 746-7658www.intellitactics.com

NetIQ Corp.San Jose, Calif.(888) 323-6768www.netiq.com

netForensics Inc.Edison, N.J.(732) 393-6000www.netforensics.com

Network Intelligence Corp.Westwood, Mass.(781) 375-9000www.network-intelligence.com

OpenService Inc.Marlborough, Mass.(800) 892-3646www.openservice.com

Symantec Corp.Cupertino, Calif.(408) 517-8000www.symantec.com

PRODUCT(S)

ArcSight EnterpriseSecurity Manager

Cisco SecurityMonitoring, Analysis,and Reponse System

eTrust Security Information Management

Sentinel 5

IBM Tivoli NeuSecure

Intellitactics Security Manager

NetIQ Security Manager

nFX Open SecurityPlatform

enVision

SecurityManagement Center

Security InformationManager 9500 Series

MODEL

Software

Appliance

Software

Software

Software

Software

Software

Software

Appliance

Software

Appliance

MAJOR FEATURES

Asset-based expert analysis engine, multiple OSes, SmartAgents (100+ de-vice types, software development kit), Common Criteria certification

Compliance reports, distributed-deviceupdating, Security Manager policy inte-gration, NetFlow support, session-basedevent grouping

Policy compliance, custom alerts, a sset-based event prioritization, incident-response workflow, CA- Unicenter support

Predefined incident resolution and compliance tools; audit trails, distrib-uted, in-memory processing for scalabil-ity, real-time visualization and analysis

Compliance reporting, risk manage-ment implementation, tracking and enforcement; susceptibility correlation,universal agent, ticketing

Compliance report library, risk-basedalert ranking, incident lifecycle manage-ment, agentless data acquisition (re-quires Syslog)

Wizard-driven user interface, customiz-able knowledge base, incident-trackingworkflow, audit trail, automated securityupdates, customizable response, agentand agentless options

Knowledge base, predefined incidentresolution workflow, device integrationtools, redundant, multitier architecture,storage management, compliance re-ports, HP OpenView support

Ingrian DataSecure privacy integration,proprietary, agentless, IP-based data-base, Event Explorer real-time IP moni-toring, 800+ reports, watch lists, Web-Sense integration

Modular, extensible architecture, agent-less collection, line-of-business riskmapping, application updating; custompolicies, compliance and reporting; pro-prietary embedded database

IP watchlist, help desk integration, hard-ware/software failover and redundancy,load balancing, storage management,prebuilt correlation rules, DeepSightknowledge base integration