No more typing reviews! Try our Samantha, our new voice AI agent.

AWS Security Hub vs LogRhythm SIEM comparison

The compared Amazon Web Services (AWS) and Exabeam solutions aren't in the same category. Amazon Web Services (AWS) is ranked #12 in CSPM , with an average rating of 7.8, and holds a 2.8% mindshare in the category. Exabeam is ranked #11 in SIEM , with an average rating of 7.4, and holds a 2.5% mindshare. Additionally, 89% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 89% of Exabeam users who would recommend it.
AWS Security Hub
Read 26 AWS Security Hub reviews
  • 9,078 Views
  • 3,904 Comparison Views
89% willing to recommend
LogRhythm SIEM
Read 176 LogRhythm SIEM reviews
  • 12,508 Views
  • 8,255 Comparison Views
89% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

LogRhythm SIEM and AWS Security Hub are two prominent solutions in security information and event management, each with unique strengths. AWS Security Hub seems to have the upper hand due to its seamless AWS ecosystem integration, simplicity, and scalability.

Features: LogRhythm SIEM offers advanced threat detection, response automation, and comprehensive log management. AWS Security Hub provides seamless AWS integration, consolidated security alerts, and compliance checks.

Room for Improvement: LogRhythm SIEM users report a need for improved scalability, a more streamlined setup process, and easier report customization. AWS Security Hub users wish for enhanced multi-cloud support, more elaborate third-party integrations, and more advanced threat analysis features.

Ease of Deployment and Customer Service: LogRhythm SIEM deployment is complex, with some users needing professional assistance, but its customer service is highly responsive and knowledgeable. AWS Security Hub offers a straightforward deployment experience, and customer service is well-regarded but less personalized.

Pricing and ROI: LogRhythm SIEM's setup costs are higher, but users find the investment justified by its advanced capabilities and return on investment. AWS Security Hub is more cost-effective, particularly for businesses already using AWS services, with a quicker perceived ROI due to lower initial costs and efficient integration.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed AWS Security Hub vs. LogRhythm SIEM Report (Updated: October 2024).
Buyer's Guide
AWS Security Hub vs. LogRhythm SIEM
October 2024
Download the complete report
Helped 892,646 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AWS Security Hub
Average Rating
7.6
Reviews Sentiment
6.5
Number of Reviews
26
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (7th), Cloud Security Posture Management (CSPM) (12th)
LogRhythm SIEM
Average Rating
8.2
Reviews Sentiment
6.4
Number of Reviews
176
Ranking in other categories
Log Management (13th), Security Information and Event Management (SIEM) (11th)
 

Mindshare comparison

While both are Security Software solutions, they serve different purposes. AWS Security Hub is designed for Cloud Security Posture Management (CSPM) and holds a mindshare of 2.8%, down 4.3% compared to last year.
LogRhythm SIEM, on the other hand, focuses on Security Information and Event Management (SIEM), holds 2.5% mindshare, down 3.1% since last year.
Cloud Security Posture Management (CSPM) Mindshare Distribution
ProductMindshare (%)
AWS Security Hub2.8%
Wiz11.4%
Prisma Cloud by Palo Alto Networks8.3%
Other77.5%
Cloud Security Posture Management (CSPM)
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
LogRhythm SIEM2.5%
Splunk Enterprise Security7.1%
IBM Security QRadar5.2%
Other85.2%
Security Information and Event Management (SIEM)
 

Featured Reviews

Karthik Ekambaram - PeerSpot reviewer
Karthik Ekambaram
Director at Scybers
Has helped identify misconfigurations and prioritize risks but lacks multi-cloud support and deeper integration features
AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfigurations, even Microsoft for that matter. Regarding the integration of AWS Security Hub with third-party tools, I am not certain whether we can integrate them, but there is no need to do so. However, AWS Security Hub cannot integrate with other cloud providers, so it only supports the AWS environment. The compliance checks within AWS Security Hub are good, but we don't use them much. We utilize compliance frameworks such as CIS compliance frameworks and ISO 27017 framework, which are beneficial, but it can improve in other areas too, such as including NIST and other frameworks beyond just ISO and CIS. Improvements can be applicable for scalability, particularly on integration with multi-cloud environments, and compliance frameworks can be added for more variety as well. The unified dashboard in AWS Security Hub is adequate; I cannot say it is exceptional, but the content available in the dashboards is satisfactory for now.
Read full review
SV
SaiKrishna2
Cyber Security Engineer at Diyar United Company
Provides strong detection capabilities but requires improvements in parsing and stability
I cannot think of any specific features that LogRhythm SIEM can improve upon since it supports a wide variety of major vendors. However, they need to improve their parsing techniques; the tool should understand various devices and present data in a human-readable format. For example, if a personal Android mobile needs to be integrated, LogRhythm SIEM should be able to parse that data effectively. They also need to improve their database of supported devices to cover smaller vendors alongside the major players, allowing for better global reach and usability. I have noticed some problems with parsing errors, event mismatches, and data mismatching, so ensuring accurate parsing and continuous improvement according to device updates are my basic expectations as a detection engineer.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"One of the most effective features of AWS Security Hub is the easy access to a dashboard with a ready-to-use security score."
"Cloudposse is a valuable feature as it guarantees my security."
"AWS Security Hub's unified dashboard does help streamline my process of identifying vulnerabilities, but we don't use Inspector."
"Very good at detection and providing real-time alerts."
"The platform has valuable features for security."
"I like that AWS Security Hub currently has several good features, around four or five. The technical support for AWS Security Hub is also responsive."
"Easily integrates with third-party tools"
"The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud."
More AWS Security Hub pros
"The most valuable features would be the automation, reporting, and the support."
"For the same price, we have been able to go from a SIEM that could only manage about 20 percent of our environment to a full 100 percent coverage of all the devices on our network."
"We use this solution to examine disparate log sources and provide a cohesive method to search for anomalous behavior."
"I don't feel like we just bought a product with LogRhythm, I felt that we bought a team."
"The customer service team is excellent and they have resolved anything we have thrown at them in a timely fashion."
"LogRhythm NextGen SIEM covers all our primary security analysis needs, makes it easier for us to analyze threats and improves our response times, and is a versatile platform that performs queries fast compared to other SIEM solutions."
"The LogRhythm platform has helped my organization by being able to have 24 analyses on logs and events from all the various systems that feed into the LogRhythm platform."
"As a SIEM, probably the best feature is that it can be tuned effectively, as there are very few SIEMs out there that can be effectively tuned to provide you with meaningful information and not be overwhelmed."
More LogRhythm SIEM pros
 

Cons

"From an improvement perspective, there is a need to add more compliance since, right now, AWS Security Hub only provides four to five compliances to control the tool."
"There is room for improvement in implementing AI capabilities."
"The solution lacks self-sufficiency."
"It is not flexible for multi-cloud environments."
"The telemetry doesn't always go into the control center. When you have multiple instances running in AWS, you need a control tower to take feeds from Security Hub and analyze your results. Sometimes exemptions aren't passed between the control tower and Security Hub. The configuration gets mixed up or you don't get the desired results."
"It's not user-friendly. Too much going on, too many unnecessary findings, not very visual. You can't do much compared to other similar tools that are cheaper and better."
"I would like a more fine-grained capability for creating custom rules and a more user-friendly experience programmatically in writing queries and configuring custom security rules, making it quicker and easier."
"The user interface, graphs, and dashboards of the solution could improve in the future. They are not very sophisticated and could use an update."
More AWS Security Hub cons
"I would like to see APIs well-documented and public facing, so we can get to them all."
"LogRhythm SIEM can improve its user interface. The current interface is quite complex and can be challenging to navigate. While it offers many valuable features, understanding how to access and utilize them efficiently takes time. Simplifying the client console's user interface would significantly enhance the user experience and make it more user-friendly."
"My big thing is the easability. I don't like to go to two different systems."
"Functionality, ease of use. There are a few gotchas in the applications."
"We've had issues with scaling and local support."
"In terms of blind spots, we are looking for more improvements since we don't have visibility over everything."
"We've tried to work with a couple of engineering department guys there. We've called them and called them but we never hear anything back."
"Only area I can think of to improve on is the proof reading and using the guides before releasing them."
More LogRhythm SIEM cons
 

Pricing and Cost Advice

"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."
"The price of AWS Security Hub is average compared to other solutions."
"There are multiple subscription models, like yearly, monthly, and packaged."
"The pricing is fine. It is not an expensive tool."
"The price of the solution is not very competitive but it is reasonable."
"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."
"AWS Security Hub's pricing is pretty reasonable."
"Security Hub is not an expensive solution."
"Look closely at the cost of licensing of other products. This should include setups and the need for support services. I did a RFQ to 2 other vendors before choosing this product."
"If you don't have your staff, absolutely look into the co-pilot and factor that into your cost evaluation."
"The product is inexpensive than other tools."
"I would rate the tool's pricing around eight out of ten."
"In comparison to the competition, they are more affordable. This allows us to do more with less."
"We have seen a measurable decrease in the mean time to detect and respond to threats. As it comes out new features and new releases, the window is becoming a lot narrower because you can pivot a lot more with the data. Therefore, the new features and enhancements are reducing that."
"On a scale of one to ten, I'd rate the pricing of this solution as a seven - not too expensive but not cheap either. Regarding licensing costs, it varies depending on factors like being a partner or an end user, but there are no additional costs aside from standard licensing fees for the basic SIEM solution."
"I give the price a six out of ten."
More LogRhythm SIEM pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Cloud Security Posture Management (CSPM) solutions are best for your needs.
See recommendations
892,646 professionals have used our research since 2012.
 

Comparison Review

it_user186927 - PeerSpot reviewer
it_user186927
Director of Operations at a comms service provider with 10,001+ employees
Feb 16, 2015
Cybereason vs. Interset vs. SQRRL
Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
12%
Manufacturing Company
10%
Computer Software Company
9%
Comms Service Provider
7%
Financial Services Firm
10%
Construction Company
9%
Computer Software Company
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise5
Large Enterprise12
By reviewers
Company SizeCount
Small Business38
Midsize Enterprise39
Large Enterprise83
 

Questions from the Community

Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
What needs improvement with AWS Security Hub?
AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfig...
See all answers
What is your primary use case for AWS Security Hub?
The major use case for identifying misconfigurations within the AWS environment focuses on determining whether the administrators have configured everything correctly, giving a better picture of AW...
See all answers
What is the difference between log management and SIEM?
Rony, Daniel's answer is right on the money. There are many solutions for each in the market, a lot depends upon your ability to manage such tools and your budget. A small operation may be best s...
See all answers
What needs improvement with LogRhythm NextGen SIEM?
LogRhythm SIEM could learn from Wazuh, as Wazuh has a built-in mechanism that allows you to write custom scripting and scripts through languages that Wazuh can then trigger, which is somewhat bette...
See all answers
What is your experience regarding pricing and costs for LogRhythm SIEM?
I find LogRhythm SIEM affordable, as it is a bit less costly than QRadar, although I have not been involved in negotiation charges; however, from the manager's approval, I see it as affordable.
See all answers
 

Comparisons

Microsoft Sentinel vs AWS Security Hub Logo
Microsoft Sentinel vs AWS Security Hub
Compared 32% of the time
Prisma Cloud by Palo Alto Networks vs AWS Security Hub Logo
Prisma Cloud by Palo Alto Networks vs AWS Security Hub
Compared 7% of the time
Wiz vs AWS Security Hub Logo
Wiz vs AWS Security Hub
Compared 4% of the time
Microsoft Defender for Cloud vs AWS Security Hub Logo
Microsoft Defender for Cloud vs AWS Security Hub
Compared 4% of the time
Check Point CloudGuard CNAPP vs AWS Security Hub Logo
Check Point CloudGuard CNAPP vs AWS Security Hub
Compared 3% of the time
More AWS Security Hub Competitors
IBM Security QRadar vs LogRhythm SIEM Logo
IBM Security QRadar vs LogRhythm SIEM
Compared 7% of the time
Splunk Enterprise Security vs LogRhythm SIEM Logo
Splunk Enterprise Security vs LogRhythm SIEM
Compared 6% of the time
Devo vs LogRhythm SIEM Logo
Devo vs LogRhythm SIEM
Compared 4% of the time
VMware Aria Operations for Logs vs LogRhythm SIEM Logo
VMware Aria Operations for Logs vs LogRhythm SIEM
Compared 4% of the time
USM Anywhere vs LogRhythm SIEM Logo
USM Anywhere vs LogRhythm SIEM
Compared 3% of the time
More LogRhythm SIEM Competitors
 

Product Reports

Buyer's Guide
AWS Security Hub
May 2026
AWS Security Hub reportDownload AWS Security Hub product report
Buyer's Guide
LogRhythm SIEM
April 2026
LogRhythm SIEM reportDownload LogRhythm SIEM product report
 

Also Known As

SQRRL
LogRhythm NextGen SIEM, LogRhythm, LogRhythm Threat Lifecycle Management, LogRhythm TLM
 

Overview

AWS Security Hub provides multi-account management and compliance checks alongside integrations with AWS services and third-party tools. It centralizes vulnerability tracking and risk prioritization, delivering real-time alerts for proactive security management.

AWS Security Hub enhances cloud security management through a centralized dashboard that monitors infrastructure resources and compliance scores, ensuring adherence to AWS standards. With integrations for vulnerability detection and security posture management, users can streamline security operations. While the platform offers notable benefits, areas for improvement include customization options for findings suppression and integration with multi-cloud environments.

What are the key features of AWS Security Hub?
  • Multi-Account Management: Seamlessly manage security across numerous accounts.
  • Compliance Checks: Stay aligned with standards such as PCI through automated reviews.
  • AWS Integrations: Connect effortlessly with AWS and third-party services to enhance security posture.
  • Real-Time Alerts: Quickly respond to potential threats with immediate notifications.
  • Risk Prioritization: Focus on critical vulnerabilities to enhance resource allocation.
What benefits should users expect from using AWS Security Hub?
  • Proactive Security: Early threat detection enables quicker mitigation strategies.
  • Cloud-Native Functionality: Utilize tools tailored for cloud environments.
  • Compliance Insights: Simplified compliance management provides transparency.
  • Ease of Use: Streamlined interface facilitates efficient security management.

Industries implementing AWS Security Hub leverage its capabilities for comprehensive security across multiple accounts and regions. Health, finance, and retail sectors benefit by automating compliance checks and monitoring security infrastructures. This service aids in identifying misconfigurations, tracking alerts, and ensuring infrastructure integrity during cyber incidents.

Amazon Web Services (AWS)

LogRhythm SIEM offers advanced threat intelligence, scalable deployment, and streamlined log management. It enhances security posture with AI-driven threat detection and comprehensive monitoring.

LogRhythm SIEM stands out for its AI-driven threat correlation, ease of log aggregation, and robust reporting. Offering real-time visibility and analytics through consistent navigation and dashboards, it integrates with security components for enhanced monitoring and response. Advanced threat intelligence and customizable alerts streamline processes and bolster security. While it faces challenges with log parsing, reporting, and dashboard intuitiveness, plans to enhance cloud integration and transition to Linux are noted.

What are the standout features?
  • AI Threat Correlation: Employs AI to correlate threats for efficient detection.
  • Log Aggregation: Simplifies the collection of logs from multiple sources.
  • Scalable Deployment: Offers flexible scaling to accommodate growth.
  • Robust Reporting: Provides detailed analysis for informed decisions.
  • Advanced Threat Intelligence: Engages cutting-edge techniques to assess threats.
What benefits and ROI can users expect?
  • Improved Security Posture: Enhanced threat detection and response.
  • Streamlined Processes: Automation leads to efficiency gains.
  • Comprehensive Compliance: Facilitates adherence to regulatory standards.
  • Centralized Log Management: Unified log overview aids in quick insights.

In industries like banking and finance, organizations utilize LogRhythm SIEM for centralized log management, security monitoring, and compliance. It helps detect insider threats, analyze server logs, correlate events, and monitor user behaviors. Appreciated for log ingestion and anomaly identification, it ensures robust cybersecurity and incident response by integrating data from multiple sources.

Exabeam
 

Sample Customers

Edmunds, Frame.io, GoDaddy, Realtor.com
Macy's, NASA, Fujitsu, US Air Force, EY, Abbott, HD Supply, SAB Miller, UCLA, Raytheon, Amtrak, Cargill
Buyer's Guide
AWS Security Hub vs. LogRhythm SIEM
October 2024
Free Report: AWS Security Hub vs. LogRhythm SIEM
Find out what your peers are saying about AWS Security Hub vs. LogRhythm SIEM and other solutions. Updated: October 2024.
DOWNLOAD NOW
892,646 professionals have used our research since 2012.
See our AWS Security Hub vs. LogRhythm SIEM report.

We monitor all Cloud Security Posture Management (CSPM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.