Collect up to tens of thousands of events per second
McAfee Event Receiver collects and retains large amounts of security data, and gives you immediate access to that data.
Scalable log collection
Collect event and flow information from hundreds of third-party devices, including intrusion prevention systems (IPS), switches, routers, servers, workstations, identity and authentication systems, vulnerability assessment scanners, and more.
Instant access to data
Preserve and store all details of parsed and correlated events in a highly indexed database for fast retrieval and analysis.
System-wide threat detection
Correlate events collected by other distributed receivers to detect larger incidents.
Flexible deployment options
Make highly distributed deployment easier and more cost effective with virtual appliances.
1Usable event and flow data storage capacity will vary by customer event types, event rates, software version, and other factors.
2Minimum 50K IOPS for SSD; additional storage should be a minimum of 100 IOPS.
Need additional technical resources? Visit the McAfee Expert Center >
Learn more about McAfee Event Receiver
As a companion to the Gartner Magic Quadrant for SIEM, the Gartner Critical Capabilities report for SIEM helps IT security organizations compare their requirements with the most common SIEM use cases. Discover in-depth how Gartner rates McAfee SIEM by critical capabilities.
McAfee Event Receiver related products
Built for big security data, McAfee Global Threat Intelligence for Enterprise Security Manager puts the power of McAfee Labs directly into the security monitoring flow using McAfee’s high-speed, highly intelligent SIEM.Learn More >