No more typing reviews! Try our Samantha, our new voice AI agent.

AWS Security Hub vs LogRhythm SIEM comparison

The compared Amazon Web Services (AWS) and Exabeam solutions aren't in the same category. Amazon Web Services (AWS) is ranked #11 in CSPM , with an average rating of 7.9, and holds a 3.0% mindshare in the category. Exabeam is ranked #11 in SIEM , with an average rating of 7.4, and holds a 2.5% mindshare. Additionally, 89% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 89% of Exabeam users who would recommend it.
AWS Security Hub
Read 26 AWS Security Hub reviews
  • 8,338 Views
  • 3,585 Comparison Views
89% willing to recommend
LogRhythm SIEM
Read 176 LogRhythm SIEM reviews
  • 10,673 Views
  • 6,937 Comparison Views
89% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

LogRhythm SIEM and AWS Security Hub are two prominent solutions in security information and event management, each with unique strengths. AWS Security Hub seems to have the upper hand due to its seamless AWS ecosystem integration, simplicity, and scalability.

Features: LogRhythm SIEM offers advanced threat detection, response automation, and comprehensive log management. AWS Security Hub provides seamless AWS integration, consolidated security alerts, and compliance checks.

Room for Improvement: LogRhythm SIEM users report a need for improved scalability, a more streamlined setup process, and easier report customization. AWS Security Hub users wish for enhanced multi-cloud support, more elaborate third-party integrations, and more advanced threat analysis features.

Ease of Deployment and Customer Service: LogRhythm SIEM deployment is complex, with some users needing professional assistance, but its customer service is highly responsive and knowledgeable. AWS Security Hub offers a straightforward deployment experience, and customer service is well-regarded but less personalized.

Pricing and ROI: LogRhythm SIEM's setup costs are higher, but users find the investment justified by its advanced capabilities and return on investment. AWS Security Hub is more cost-effective, particularly for businesses already using AWS services, with a quicker perceived ROI due to lower initial costs and efficient integration.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed AWS Security Hub vs. LogRhythm SIEM Report (Updated: October 2024).
Buyer's Guide
AWS Security Hub vs. LogRhythm SIEM
October 2024
Download the complete report
Helped 890,088 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AWS Security Hub
Average Rating
7.6
Reviews Sentiment
6.5
Number of Reviews
26
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (6th), Cloud Security Posture Management (CSPM) (11th)
LogRhythm SIEM
Average Rating
8.2
Reviews Sentiment
6.4
Number of Reviews
176
Ranking in other categories
Log Management (13th), Security Information and Event Management (SIEM) (11th)
 

Mindshare comparison

While both are Security Software solutions, they serve different purposes. AWS Security Hub is designed for Cloud Security Posture Management (CSPM) and holds a mindshare of 3.0%, down 4.4% compared to last year.
LogRhythm SIEM, on the other hand, focuses on Security Information and Event Management (SIEM), holds 2.5% mindshare, down 3.1% since last year.
Cloud Security Posture Management (CSPM) Mindshare Distribution
ProductMindshare (%)
AWS Security Hub3.0%
Wiz12.6%
Prisma Cloud by Palo Alto Networks8.6%
Other75.8%
Cloud Security Posture Management (CSPM)
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
LogRhythm SIEM2.5%
Splunk Enterprise Security7.0%
IBM Security QRadar5.2%
Other85.3%
Security Information and Event Management (SIEM)
 

Featured Reviews

Karthik Ekambaram - PeerSpot reviewer
Karthik Ekambaram
Director at Scybers
Has helped identify misconfigurations and prioritize risks but lacks multi-cloud support and deeper integration features
AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfigurations, even Microsoft for that matter. Regarding the integration of AWS Security Hub with third-party tools, I am not certain whether we can integrate them, but there is no need to do so. However, AWS Security Hub cannot integrate with other cloud providers, so it only supports the AWS environment. The compliance checks within AWS Security Hub are good, but we don't use them much. We utilize compliance frameworks such as CIS compliance frameworks and ISO 27017 framework, which are beneficial, but it can improve in other areas too, such as including NIST and other frameworks beyond just ISO and CIS. Improvements can be applicable for scalability, particularly on integration with multi-cloud environments, and compliance frameworks can be added for more variety as well. The unified dashboard in AWS Security Hub is adequate; I cannot say it is exceptional, but the content available in the dashboards is satisfactory for now.
Read full review
SV
SaiKrishna2
Cyber Security Engineer at Diyar United Company
Provides strong detection capabilities but requires improvements in parsing and stability
I cannot think of any specific features that LogRhythm SIEM can improve upon since it supports a wide variety of major vendors. However, they need to improve their parsing techniques; the tool should understand various devices and present data in a human-readable format. For example, if a personal Android mobile needs to be integrated, LogRhythm SIEM should be able to parse that data effectively. They also need to improve their database of supported devices to cover smaller vendors alongside the major players, allowing for better global reach and usability. I have noticed some problems with parsing errors, event mismatches, and data mismatching, so ensuring accurate parsing and continuous improvement according to device updates are my basic expectations as a detection engineer.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The advantage is that it is cloud-native, and we do not need to install agents or sensors to find findings."
"AWS Security Hub brings many features into one table that is quite useful, and the app team finds it easier to see what is missing."
"AWS Security Hub's unified dashboard does help streamline my process of identifying vulnerabilities, but we don't use Inspector."
"Though I'm still in the initial evaluation phase for AWS Security Hub, I would recommend it to others because it has good features."
"Finding out if your infrastructure is secure is a valuable feature."
"Currently, our organization utilizes AWS for various purposes, including SaaS (Software as a Service), PaaS (Platform as a Service), and hosting applications in the cloud. We develop our applications and use AWS services as a platform for basic functions and secondary development needs. Additionally, we rely on PaaS for accounting services. Approximately, 50% of our applications are hosted in the cloud environment, making it a significant part of our current setup."
"The platform has valuable features for security."
"The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud."
More AWS Security Hub pros
"I didn't know what to expect back in 2015 when we bought the product, but it's showing to be agile, scalable, and the people are very knowledgeable."
"LogRhythm has been really a good partner, they've reached out, they're always wanting information, "How we can improve? How can we do this or that?""
"SOAR is integrated with the dashboard that we use for threat management. Because it's all integrated, it is useful for us when we deploy something on-prem."
"It makes it possible to stay aware of much more of what's going on; we get an overview, a macro view that we can zoom in on as opposed to prior to that when we had individual panes of glass and might be stuck in the firewall interface for half a day while something going on is not getting addressed that we really should probably investigate."
"We have NetFlow information going into it, so we can examine a lot of traffic patterns and anomalies, especially if something stands out and is not the baseline. This helps a lot."
"LogRhythm does a very good job of helping SOCs manage their workflows."
"Its benefits are broad. The solution isn't necessarily made to do any one thing, but it can do anything you tell it to. It is able to tackle any different type or size of job."
"While the cost is high, the security provided is quite good, and for those who can afford it, they will pay for the peace of mind."
More LogRhythm SIEM pros
 

Cons

"AWS Security Hub's configuration and integration are areas where it lacks and needs to improve."
"AWS Security Hub should improve the time it takes to update. It takes a long period of time when updating. It can take 24 hours sometimes to update. Additionally, when integrating this solution with more security tools, takes time."
"There is room for improvement in implementing AI capabilities."
"Security needs to be measured based on their own criteria. We can't add custom criteria specific to our organization. For example, having an S3 bucket publicly available might be flagged as a critical alert, but it might not be critical in a sandbox environment. So, it gets flagged as critical, which becomes a false positive. So, customization options and creating custom dashboards would be areas for improvement."
"I would like a more fine-grained capability for creating custom rules and a more user-friendly experience programmatically in writing queries and configuring custom security rules, making it quicker and easier."
"One aspect that could be improved in the solution is its adaptability to different markets and geopolitical restrictions. In certain regions like Thailand, specific services from certain countries or providers, such as AWS or Azure, might be limited or blocked. It also needs improvement in would require configuring the solution more adaptable to AWS infrastructure and function."
"The user interface, graphs, and dashboards of the solution could improve in the future. They are not very sophisticated and could use an update."
"The solution lacks self-sufficiency."
More AWS Security Hub cons
"It will definitely help if the parsing side would be much easier, meaning it would be better if we could easily make adjustments on the parser, both on standard and non-standard log sources."
"The largest room for improvement would be inside the web platform, being able to have a longer log live time."
"My main thing I'd like to see is, when you're using canned reports, that they're not blank."
"The Web Dashboard UI maybe can improve more to indicate some of what Splunk is doing, because I also compare with other SIEM products."
"Sometimes it's a challenge to bring it to the second level of support and get the answers that we need."
"More help and assistance with some of the open source products, everything seems to be focused on Windows versus giving some guidance and some documentation on how to use it."
"I wouldn't give them a 10 out of 10 because there is definitely some room for improvement as far as in the GUI."
"I work in a highly regulated industry. I know the product has compliance mechanisms, but being able to get more governance surrounding some of the compliance would be helpful."
More LogRhythm SIEM cons
 

Pricing and Cost Advice

"The price of AWS Security Hub is average compared to other solutions."
"The price of the solution is not very competitive but it is reasonable."
"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."
"There are multiple subscription models, like yearly, monthly, and packaged."
"Security Hub is not an expensive solution."
"AWS Security Hub's pricing is pretty reasonable."
"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."
"The pricing is fine. It is not an expensive tool."
"LogRhythm's licensing is based on MPS. There are some add-on features like advanced UEBA, the cloud component for advanced UEBA, and SIEM."
"The setup and licensing for small and medium size businesses is straightforward, though when it comes to the enterprise it pays to keep in mind the possibility for complications given all the extras and add-ons that may be required."
"Look closely at the cost of licensing of other products. This should include setups and the need for support services. I did a RFQ to 2 other vendors before choosing this product."
"We did a five-year agreement. We pay close to a quarter of a million dollars for our solution."
"The support which allows more customized to the environment when we are deploying new systems is called Professional Service and is very expensive. The technical annual support and there is an annual fee."
"It is a very cost-effective solution."
"I think the tool is reasonably priced. There is a need to pay per year towards the licensing costs of the tool."
"I give the price a six out of ten."
More LogRhythm SIEM pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
See recommendations
890,088 professionals have used our research since 2012.
 

Comparison Review

it_user186927 - PeerSpot reviewer
it_user186927
Director of Operations at a comms service provider with 10,001+ employees
Feb 16, 2015
Cybereason vs. Interset vs. SQRRL
Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
12%
Manufacturing Company
10%
Computer Software Company
9%
Comms Service Provider
7%
Financial Services Firm
10%
Construction Company
9%
Computer Software Company
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise5
Large Enterprise12
By reviewers
Company SizeCount
Small Business38
Midsize Enterprise39
Large Enterprise83
 

Questions from the Community

Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
What needs improvement with AWS Security Hub?
AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfig...
See all answers
What is your primary use case for AWS Security Hub?
The major use case for identifying misconfigurations within the AWS environment focuses on determining whether the administrators have configured everything correctly, giving a better picture of AW...
See all answers
What is the difference between log management and SIEM?
Rony, Daniel's answer is right on the money. There are many solutions for each in the market, a lot depends upon your ability to manage such tools and your budget. A small operation may be best s...
See all answers
What needs improvement with LogRhythm NextGen SIEM?
LogRhythm SIEM could learn from Wazuh, as Wazuh has a built-in mechanism that allows you to write custom scripting and scripts through languages that Wazuh can then trigger, which is somewhat bette...
See all answers
What is your experience regarding pricing and costs for LogRhythm SIEM?
I find LogRhythm SIEM affordable, as it is a bit less costly than QRadar, although I have not been involved in negotiation charges; however, from the manager's approval, I see it as affordable.
See all answers
 

Comparisons

Microsoft Sentinel vs AWS Security Hub Logo
Microsoft Sentinel vs AWS Security Hub
Compared 31% of the time
Prisma Cloud by Palo Alto Networks vs AWS Security Hub Logo
Prisma Cloud by Palo Alto Networks vs AWS Security Hub
Compared 7% of the time
Wiz vs AWS Security Hub Logo
Wiz vs AWS Security Hub
Compared 5% of the time
Microsoft Defender for Cloud vs AWS Security Hub Logo
Microsoft Defender for Cloud vs AWS Security Hub
Compared 4% of the time
Check Point CloudGuard CNAPP vs AWS Security Hub Logo
Check Point CloudGuard CNAPP vs AWS Security Hub
Compared 3% of the time
More AWS Security Hub Competitors
IBM Security QRadar vs LogRhythm SIEM Logo
IBM Security QRadar vs LogRhythm SIEM
Compared 7% of the time
Splunk Enterprise Security vs LogRhythm SIEM Logo
Splunk Enterprise Security vs LogRhythm SIEM
Compared 7% of the time
VMware Aria Operations for Logs vs LogRhythm SIEM Logo
VMware Aria Operations for Logs vs LogRhythm SIEM
Compared 4% of the time
Devo vs LogRhythm SIEM Logo
Devo vs LogRhythm SIEM
Compared 3% of the time
Elastic Security vs LogRhythm SIEM Logo
Elastic Security vs LogRhythm SIEM
Compared 3% of the time
More LogRhythm SIEM Competitors
 

Product Reports

Buyer's Guide
AWS Security Hub
April 2026
AWS Security Hub reportDownload AWS Security Hub product report
Buyer's Guide
LogRhythm SIEM
April 2026
LogRhythm SIEM reportDownload LogRhythm SIEM product report
 

Also Known As

SQRRL
LogRhythm NextGen SIEM, LogRhythm, LogRhythm Threat Lifecycle Management, LogRhythm TLM
 

Overview

AWS Security Hub is a comprehensive security service that provides a centralized view of security alerts and compliance status across an AWS environment. It collects data from various AWS services, partner solutions, and AWS Marketplace products to provide a holistic view of security posture. With Security Hub, users can quickly identify and prioritize security issues, automate compliance checks, and streamline remediation efforts. 

The service offers a range of features including continuous monitoring, threat intelligence integration, and customizable dashboards. It also provides automated insights and recommendations to help users improve their security posture. Security Hub integrates with other AWS services like Amazon GuardDuty, AWS Config, and AWS Macie to provide a unified security experience. Additionally, it supports integration with third-party security tools through its API, allowing users to leverage their existing security investments. 

With its user-friendly interface and powerful capabilities, AWS Security Hub is a valuable tool for organizations looking to enhance their security and compliance posture in the cloud.

Amazon Web Services (AWS)

LogRhythm SIEM offers advanced threat intelligence, scalable deployment, and streamlined log management. It enhances security posture with AI-driven threat detection and comprehensive monitoring.

LogRhythm SIEM stands out for its AI-driven threat correlation, ease of log aggregation, and robust reporting. Offering real-time visibility and analytics through consistent navigation and dashboards, it integrates with security components for enhanced monitoring and response. Advanced threat intelligence and customizable alerts streamline processes and bolster security. While it faces challenges with log parsing, reporting, and dashboard intuitiveness, plans to enhance cloud integration and transition to Linux are noted.

What are the standout features?
  • AI Threat Correlation: Employs AI to correlate threats for efficient detection.
  • Log Aggregation: Simplifies the collection of logs from multiple sources.
  • Scalable Deployment: Offers flexible scaling to accommodate growth.
  • Robust Reporting: Provides detailed analysis for informed decisions.
  • Advanced Threat Intelligence: Engages cutting-edge techniques to assess threats.
What benefits and ROI can users expect?
  • Improved Security Posture: Enhanced threat detection and response.
  • Streamlined Processes: Automation leads to efficiency gains.
  • Comprehensive Compliance: Facilitates adherence to regulatory standards.
  • Centralized Log Management: Unified log overview aids in quick insights.

In industries like banking and finance, organizations utilize LogRhythm SIEM for centralized log management, security monitoring, and compliance. It helps detect insider threats, analyze server logs, correlate events, and monitor user behaviors. Appreciated for log ingestion and anomaly identification, it ensures robust cybersecurity and incident response by integrating data from multiple sources.

Exabeam
 

Sample Customers

Edmunds, Frame.io, GoDaddy, Realtor.com
Macy's, NASA, Fujitsu, US Air Force, EY, Abbott, HD Supply, SAB Miller, UCLA, Raytheon, Amtrak, Cargill
Buyer's Guide
AWS Security Hub vs. LogRhythm SIEM
October 2024
Free Report: AWS Security Hub vs. LogRhythm SIEM
Find out what your peers are saying about AWS Security Hub vs. LogRhythm SIEM and other solutions. Updated: October 2024.
DOWNLOAD NOW
890,088 professionals have used our research since 2012.
See our AWS Security Hub vs. LogRhythm SIEM report.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.