No more typing reviews! Try our Samantha, our new voice AI agent.

Anvilogic vs Devo comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
4.7
Anvilogic enhances efficiency and ROI with 25% cost savings, 50% operational efficiency boost, and improved detection coverage.
Sentiment score
7.0
Companies saw high ROI with Devo's scalability, data aggregation, cost savings, faster response, and improved security intelligence.
We're taking these things that executives see on the news, cyber threats falling from the sky, and we're taking the timeline that would take weeks or sometimes even months to address, depending on what's required for the detection, and bringing that timeline down to hours and days.
Director, Cybersecurity Operations at Labcorp
We rolled out approximately 1,500 Armory alerts in three months, which would not have been possible with Splunk.
Vice President, Information & Cyber Security at St. George's University
If we were not doing more and did not have Anvilogic, we would need one dedicated person to do this detection engineering.
Head of Information Security at a tech vendor with 1,001-5,000 employees
 

Customer Service

Sentiment score
7.1
Anvilogic offers strong support with rapid response, expertise, and good communication, despite occasional delays or tracking issues.
Sentiment score
6.7
Devo's team is praised for professionalism, quick responses, flexibility, and a customer-first approach despite some escalation delays.
The product management and the product engineering team are available to us if we need to review something with them.
Director, Cybersecurity at a financial services firm with 10,001+ employees
One of the best things about Anvilogic is the partnership, their knowledge, the depth of technical understanding, and the speed at which they respond.
Head of Information Security at a tech vendor with 1,001-5,000 employees
I would evaluate their customer service and tech support as fantastic.
Senior Director | Detection Response at a tech vendor with 1,001-5,000 employees
I rate the customer support a nine out of ten because of their timely technical guidance and responsiveness during the deployment and troubleshooting periods.
Cyber Security Engineer II (Vulnerability & Threat Management) at FICO
 

Scalability Issues

Sentiment score
6.8
Anvilogic offers scalable solutions, managing detections, integrations, and business needs while ensuring seamless onboarding and cost efficiency.
Sentiment score
7.3
Devo's cloud architecture enables seamless scalability, supporting large enterprises effortlessly, with strong AWS integration ensuring robust performance.
We started with about 55 detections and scaled up to about 980 odd detections so far.
Head of Information Security at a tech vendor with 1,001-5,000 employees
Anvilogic scales effectively with the growing needs of my organization.
Senior Director | Detection Response at a tech vendor with 1,001-5,000 employees
Anvilogic is helping us identify what the needs of the business are, where in many cases, business processes just run off on their own.
Director, Cybersecurity Operations at Labcorp
Devo is a unified SIEM solution designed to handle growing log volumes and enterprise-scale monitoring requirements.
Cyber Security Engineer II (Vulnerability & Threat Management) at FICO
 

Stability Issues

Sentiment score
6.7
Anvilogic is stable with minor AI agent issues, reliable performance, fast support, and no major downtime reported.
Sentiment score
7.3
Devo is stable and reliable, with minor issues swiftly addressed, maintaining high user satisfaction for security operations.
I have never experienced a serious outage.
Vice President, Information & Cyber Security at St. George's University
I would assess the stability and reliability of Anvilogic as very good.
Senior Director | Detection Response at a tech vendor with 1,001-5,000 employees
The biggest instability has been with the AI agent, which the team is not using fully due to inconsistent results.
Senior Manager, Threat Prevention Engineering at a tech vendor with 5,001-10,000 employees
It is stable and reliable for our security operations.
Cyber Security Engineer II (Vulnerability & Threat Management) at FICO
 

Room For Improvement

Anvilogic needs better data integration, enhanced AI, improved workflow efficiency, and user-accessible documentation while addressing cost concerns for smaller entities.
Devo users seek improvements in customization, integration, security, AI capabilities, usability, responsiveness, and pricing for enhanced functionality and experience.
Flexibility is key for any enterprise platform to meet our unique business requirements.
Senior Manager, Threat Prevention Engineering at a tech vendor with 5,001-10,000 employees
It lacked a robust CI/CD pipeline, which is crucial for comprehensive testing before changes go into production.
Threat Researcher 2 at a tech vendor with 1,001-5,000 employees
It seems that it requires more growth in how you can navigate through it and see the overall maturity of it clearly for a specific actor versus the enterprise-wide visibility of the whole maturity of the program.
Manager, Threat Intel & Detection Operations at Zendesk
This is particularly evident when dealing with failed login attempts and determining true versus false positives.
Strategic Account Executive at a computer software company with 51-200 employees
UI improvements, a simplified dashboard, or an easier reporting workflow could further improve analyst productivity.
Cyber Security Engineer II (Vulnerability & Threat Management) at FICO
The cost is a little higher compared to other tools such as DataDog or Elasticsearch, so they could work on reducing costs.
Senior Cloud Engineer at a tech services company with 201-500 employees
 

Setup Cost

Anvilogic offers fair pricing with tailored implementation costs, transparent negotiations, and strong support, ensuring a seamless adoption experience.
Devo's pricing is straightforward and competitive, with per-gigabyte charges, 400-day storage, and no hidden fees.
Because they do not completely replace a SIEM, their pricing is slowly edging towards being a little too much for a smaller organization like ours.
Head of Information Security at a tech vendor with 1,001-5,000 employees
Licensing is reasonably affordable and should be evaluated over time concerning the platform's value.
Senior Manager, Threat Prevention Engineering at a tech vendor with 5,001-10,000 employees
They provide estimates because obviously every business is different, but they provided reasonable estimates that were fairly accurate based on other customers from a similar type of background or size.
Manager, Threat Intel & Detection Operations at Zendesk
 

Valuable Features

Anvilogic enhances SOC efficiency with AI-driven detection, multi-SIEM integration, no-code usability, cost management, and seamless platform transitions.
Devo offers fast analytics, advanced query capabilities, and customizable dashboards, enhancing security workflows with seamless threat intelligence integration.
Detection insights help us easily identify the most noisy ones, the effective ones, and what needs to be fixed to move the noisy ones to effective ones.
Head of Information Security at a tech vendor with 1,001-5,000 employees
The learning curve is not steep, allowing even those with basic knowledge in writing detection rules to adapt quickly.
Threat Researcher 2 at a tech vendor with 1,001-5,000 employees
Anvilogic plus Snowflake has vastly improved our total cost of ownership for the SIM platform; we went from a pretty expensive platform in Splunk that was not vertically scalable due to budget limitations to a platform now that is far more efficient per terabyte of data ingested and processed per day.
Senior Manager, Threat Prevention Engineering at a tech vendor with 5,001-10,000 employees
When they see a spike in a line chart for a failed login, which could be a true or false attempt, they can click that spike, and a table widget on the same active board instantly populates with raw logs of data for those specific failed logins.
Strategic Account Executive at a computer software company with 51-200 employees
When the analyst uses queries to search, it pulls the data quickly, in a second, which aids us greatly with the investigation.
Cyber Security Engineer II (Vulnerability & Threat Management) at FICO
It utilizes 400 days of hot data, allowing queries to run very fast and yield results quicker than other tools in terms of security and SIEM capability.
Senior Cloud Engineer at a tech services company with 201-500 employees
 

Categories and Ranking

Anvilogic
Ranking in Security Information and Event Management (SIEM)
11th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
13
Ranking in other categories
AI-SOC (2nd)
Devo
Ranking in Security Information and Event Management (SIEM)
27th
Average Rating
8.4
Reviews Sentiment
6.6
Number of Reviews
25
Ranking in other categories
Log Management (27th), IT Operations Analytics (7th), AIOps (19th)
 

Mindshare comparison

As of July 2026, in the Security Information and Event Management (SIEM) category, the mindshare of Anvilogic is 0.6%, up from 0.3% compared to the previous year. The mindshare of Devo is 1.2%, up from 1.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
Anvilogic0.6%
Devo1.2%
Other98.2%
Security Information and Event Management (SIEM)
 

Featured Reviews

reviewer2800338 - PeerSpot reviewer
Senior Manager, Threat Prevention Engineering at a tech vendor with 5,001-10,000 employees
Modern threat detection has improved coverage and reduced costs but still needs better UX and flexibility
There is room for growth in the product platform; our detection engineers using Anvilogic every day encounter some frustrating UX experience issues where buttons are not logically placed, and workflows are not working as expected. There is also room for growth in integrating the platform with third parties, as we have encountered limitations in what can be executed via API and what is documented. We are a heavy automation integration team, so having this well documented is important for us. The enterprise capabilities within the platform also seem somewhat limited, as we run into limitations in managing detections at scale and making changes to those detections at scale. Especially at an enterprise level, if we need to add enrichment logic to every single detection deployed, it can be quite onerous; we had to develop custom scripts to manage that. Thus, enhancing enterprise-type features for managing the platform at scale rather than clicking through the GUI is important as we continue to grow. Additionally, the AI capabilities have been somewhat unstable and unintuitive to use, which is key for increasing adoption. One other thing is that the detection logic builder today is somewhat limited in flexibility regarding implementing detections, grouping detections together, and handling alerts when they fire. This might be partly due to our need to adjust to a different platform, but flexibility is key for any enterprise platform to meet our unique business requirements. Having the capability to build custom detection logic not tied to a specific structure would be helpful; although a lot can be done, it often requires working with our account team which is time-consuming and less intuitive.
FR
Strategic Account Executive at a computer software company with 51-200 employees
Has improved investigative workflows with interactive dashboards and simplified data correlation
The data analytics cloud component focuses on real-time analytics, which is very impressive. The SIEM collects and correlates logs data from different sources and can integrate with ServiceNow, hardware asset management, and software asset management. The security orchestration, automation, and response (SOAR) is another valuable feature. The security data platform serves as the foundation of Devo. Regarding advanced query capabilities, Devo offers several models including query logs, visual query builder, language integrated query, and SQL, with SQL being the most frequently used querying data capability. The single pane of glass that Devo offers is the SOC. The tools in Devo's active ports are for investigating, not just viewing data. They are more interactive than other market solutions. The drill-down reports capabilities allow analysts to click on any element in a widget. When they see a spike in a line chart for a failed login, which could be a true or false attempt, they can click that spike, and a table widget on the same active board instantly populates with raw logs of data for those specific failed logins. This is particularly important for enterprise companies with numerous endpoints and users. The dynamic filtering of inputs significantly reduces the time cybersecurity analysts spend trying to figure out failed logins and identifying false positives.
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
15%
Healthcare Company
8%
Manufacturing Company
8%
Computer Software Company
8%
Financial Services Firm
13%
Construction Company
10%
Manufacturing Company
8%
Computer Software Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business2
Large Enterprise12
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise5
Large Enterprise12
 

Questions from the Community

What is your experience regarding pricing and costs for Anvilogic?
I am from the technical department, so I do not have details about pricing, setup cost, or licensing, as that was handled by my management team.
What needs improvement with Anvilogic?
I chose a nine because, while Anvilogic is excellent, there is room for improvement in terms of the false-positive reports that have been presented and the AI pattern that can be improved.
What is your primary use case for Anvilogic?
Anvilogic serves as my cybersecurity company's platform that provides detection, SIEM support, and SOC investigation, along with the implemented MITRE ATT&CK framework. A specific example of ho...
What is your experience regarding pricing and costs for Devo?
Pricing generally depends on the scale, data ingestion requirements, and integrations for what the enterprise monitoring needs. I have not been part of the procurement process, so I am not aware of...
What needs improvement with Devo?
One improvement area for Devo could be simplifying some configuration and improving the onboarding for new analysts because it is quite complex for fresher or new analysts who are handling Devo.UI ...
What is your primary use case for Devo?
Devo serves as our centralized log monitoring, threat investigation, alert monitoring, and security analytics platform. We use it to collect logs from multiple systems so we can correlate the event...
 

Comparisons

 

Overview

 

Sample Customers

Information Not Available
United States Air Force, Rubrik, SentinelOne, Critical Start, NHL, Panda Security, Telefonica, CaixaBank, OpenText, IGT, OneMain Financial, SurveyMonkey, FanDuel, H&R Block, Ulta Beauty, Manulife, Moneylion, Chime Bank, Magna International, American Express Global Business Travel
Find out what your peers are saying about Anvilogic vs. Devo and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.