Share your experience using Sumo Logic Security

The easiest route - we'll conduct a 15 minute phone interview and write up the review for you.

Use our online form to submit your review. It's quick and you can post anonymously.

Your review helps others learn about this solution
The PeerSpot community is built upon trust and sharing with peers.
It's good for your career
In today's digital world, your review shows you have valuable expertise.
You can influence the market
Vendors read their reviews and make improvements based on your feedback.
Examples of the 83,000+ reviews on PeerSpot:

Sourabh Pardhi - PeerSpot reviewer
Senior Information Security Analyst at Everbridge
Real User
Top 5
The solution is automated and has a good number of extensions, but it is costly, and it must improve its UI
Pros and Cons
  • "We can integrate threat intelligence solutions into the product."
  • "The solution should improve its UI."

What is our primary use case?

The product is a log aggregator of all the logs from all our environments, including AWS. Our infrastructure is deployed on AWS. We ship all logs to Sumo Logic. Based on the logs, we create alerts. These alerts are sent to an email ID, which creates tickets.

What is most valuable?

The solution is automated. It has a good number of extensions like CrowdStrike and AWS extensions. It is very useful. We can integrate threat intelligence solutions into the product.

What needs improvement?

The query of Sumo Logic is complex. It should be improved. The solution should improve its UI. FireEye, Splunk, and LogRhythm provide proper UIs. The solution should improve its scalability and stability.

Connecting the collector with Sumo is difficult if a collector or device is down. We have faced multiple challenges like this, and we are still facing these challenges. We recently raised a ticket to Sumo Logic to investigate the issue.

For how long have I used the solution?

I have been using the solution for one and a half years. I am using the latest version of the solution.

What do I think about the stability of the solution?

I rate the tool’s stability a seven out of ten.

What do I think about the scalability of the solution?

I rate the tool’s scalability a seven out of ten. In my current organization, there are around 18 people who have access to the product, including the security team. Apart from these, 30 people from different teams have access to the tool but do not have full admin access.

How are customer service and support?

The support team is very cooperative. As soon as the team receives our tickets, a support person is assigned to us. They reach out to us and try to solve the problem.

How would you rate customer service and support?

Positive

How was the initial setup?

The installation of the devices was good. The product is deployed on the cloud.

What's my experience with pricing, setup cost, and licensing?

The product is costly. At the same cost, we can get other tools with better features and capabilities.

What other advice do I have?

First-time users must decide how they want to use the tool. The product is very good as a log aggregator. If we want to use the solution as a SIEM console, it will not be that useful because it does not have the features a SIEM tool would have. It does not have analyzing or threat intel features. The product does provide the option of using extensions, but it does not have its own threat intel feature. Overall, I rate the solution a seven out of ten.

Which deployment model are you using for this solution?

Private Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Security Engineer at a government with 51-200 employees
Real User
Helps to monitor logs and event timestamps
Pros and Cons
  • "The tool has key features like operability. It will alert the admins whenever a device is onboarded."
  • "From the network segmentation side, there is some discrepancy in log onboarding. The tool needs to improve direct API integrations, login integration, native login integration, etc."

What is our primary use case?

I use it for the log monitoring of our legacy site. We typically monitor the event timestamps.

What is most valuable?

The tool has key features like operability. It will alert the admins whenever a device is onboarded.

What needs improvement?

From the network segmentation side, there is some discrepancy in log onboarding. The tool needs to improve direct API integrations, login integration, native login integration, etc. 

For how long have I used the solution?

I have been working with the product for three years. 

What do I think about the stability of the solution?

I would rate the tool's stability a nine point five out of ten. 

What do I think about the scalability of the solution?

I would rate the product's scalability a nine out of ten. 

How are customer service and support?

The support replies to us back within 24 hours of opening a ticket. 

How would you rate customer service and support?

Positive

How was the initial setup?

The tool's setup is simple and straightforward.  A three-member team manages the solution. 

What other advice do I have?

I would rate the solution a nine out of ten. 

Disclosure: I am a real user, and this review is based on my own experience and opinions.