Built a SOC-as-a-Service stack on Seceon OTM for African SMEs - feedback so far
We run an MSSP out of Nairobi and spent the last year deploying Seceon OTM as our core SIEM/XDR platform for clients who can't afford a traditional 24/7 SOC build-out. Some things that stood out vs. FortiSIEM/Splunk for smaller deployments.
Single-platform correlation (no bolt-on UEBA/SOAR licensing) kept our margins manageable for mid-market clients
Deployment time was meaningfully shorter than a comparable splunk ES rollout
Threat detection is solid out of the box, though tuning for local threat patterns takes real team effort
Curious if others running lean SOC teams have compared Seceon against alternatives- what pushed you one way or the other?