The market is crowded: cloud-native, open source, legacy vendor. Writing an RFP without asking the right questions is expensive.
10 criteria
- Log source support — do you have FortiGate/MikroTik/AD?
- Correlation quality — ready-made use-case vs writing from scratch
- False positive payload — measure in the pilot period
- TCO — license + storage + operations staff
- Data location — KVKK, on-site or in the cloud?
- A.I. approach — is data getting out?
- Reporting — admin and audit PDF
- 5651 / KVKK — is there a ready package?
- Scale — Performance as EPS increases
- Support language — Turkish documentation and SLA
OxiSec plans Test it in your pilot environment.