We performed a comparison between BigPanda and Devo based on real PeerSpot user reviews.
Find out in this report how the two AIOps solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Easy integration - We've had challenges in the past integrating all of our various monitoring sources and tools into one central system. BigPanda, with the integrations that it already has, as well as offering webhook/REST API, has made it very easy for us to plug everything in."
"The most useful feature has been the AI/ML. The way BigPanda uses the AI/ML is good compared to other SRE tools."
"One of the most valuable features of BigPanda is its user-friendly interface."
"The main thing that we like about BigPanda is the user interface."
"The event correlation is really good and it is able to reduce the noise. It is a good tool for anomaly detection."
"The best of a bad lot was the error message deduping."
"A user-friendly solution."
"We have also made extensive use of the outbound integrations to ticketing systems (JIRA) and collaboration tools (Slack). The main driver for us has been getting all alerting into a single UI and enabling us to streamline our incident management process."
"It's very, very versatile."
"Even if it's a relatively technical tool or platform, it's very intuitive and graphical. It's very appealing in terms of the user interface. The UI has a graphically interface with the raw data in a table. The table can be as big as you want it, depending on your use case. You can easily get a report combining your data, along with calculations and graphical dashboards. You don't need a lot of training, because the UI is relatively very intuitive."
"Scalability is one of Devo's strengths."
"The thing that Devo does better than other solutions is to give me the ability to write queries that look at multiple data sources and run fast. Most SIEMs don't do that. And I can do that by creating entity-based queries. Let's say I have a table which has Okta, a table which has G Suite, a table which has endpoint telemetry, and I have a table which has DNS telemetry. I can write a query that says, 'Join all these things together on IP, and where the IP matches in all these tables, return to me that subset of data, within these time windows.' I can break it down that way."
"Devo helps us to unlock the full power of our data because they have more than 450 parsers, which means that we can ingest pretty much any type of log data."
"Devo has a really good website for creating custom configurations."
"The most powerful feature is the way the data is stored and extracted. The data is always stored in its original format and you can normalize the data after it has been stored."
"The most valuable feature is definitely the ability that Devo has to ingest data. From the previous SIEM that I came from and helped my company administer, it really was the type of system where data was parsed on ingest. This meant that if you didn't build the parser efficiently or correctly, sometimes that would bring the system to its knees. You'd have a backlog of processing the logs as it was ingesting them."
"Our infrastructure is quite large - tens of thousands of servers, often with 30-plus checks running on each host with one minute intervals. This generates a lot of data often in bursts (when we have a large scale failure). This has caused some delay in the ingestion pipeline."
"Lacks sufficient dashboard features."
"BigPanda attempts a little of everything and fails at most."
"The cost of this product is too high compared to New Relic."
"The solution could improve by having better integration."
"Analytics is an area for improvement, being able to break down the actions that are being taken by users of BigPanda, as well as the auto-magical work that is being done by BigPanda."
"The UI for this solution could be improved. It is very hard to find what you are looking for."
"The observability can be enriched with regards to infrastructure and the application-integrated environment. The dashboard and reports could be improved."
"There's room for improvement within the GUI. There is also some room for improvement within the native parsers they support. But I can say that about pretty much any solution in this space."
"Some third-parties don't have specific API connectors built, so we had to work with Devo to get the logs and parse the data using custom parsers, rather than an out-of-the-box solution."
"From our experience, the Devo agent needs some work. They built it on top of OS Query's open-source framework. It seems like it wasn't tuned properly to handle a large volume of Windows event logs. In our experience, there would definitely be some room for improvement. A lot of SIEMs on the market have their own agent infrastructure. I think Devo's working towards that, but I think that it needs some improvement as far as keeping up with high-volume environments."
"The price is one problem with Devo."
"The biggest area with room for improvement in Devo is the Security Operations module that just isn't there yet. That goes back to building out how they're going to do content and larger correlation and aggregation of data across multiple things, as well as natively ingesting CTI to create rule sets."
"There is room for improvement in the ability to parse different log types. I would go as far as to say the product is deficient in its ability to parse multiple, different log types, including logs from major vendors that are supported by competitors. Additionally, the time that it takes to turn around a supported parser for customers and common log source types, which are generally accepted standards in the industry, is not acceptable. This has impacted customer onboarding and customer relationships for us on multiple fronts."
"The overall performance of extraction could be a lot faster, but that's a common problem in this space in general. Also, the stock or default alerting and detecting options could definitely be broader and more all-encompassing. The fact that they're not is why we had to write all our own alerts."
"My opinion on the solution's technical support is not as great as it could be because of the issues I have faced regarding the service management element."
BigPanda is ranked 15th in AIOps with 12 reviews while Devo is ranked 10th in AIOps with 21 reviews. BigPanda is rated 7.2, while Devo is rated 8.4. The top reviewer of BigPanda writes "Offers comprehensive alert monitoring and a user-friendly interface but requires manual validation to provide accurate alerts". On the other hand, the top reviewer of Devo writes "Keeps 400 days of hot data, covers our cloud products, and has a high ingestion rate and super easy log integrations". BigPanda is most compared with ServiceNow, Moogsoft, PagerDuty Operations Cloud, ServiceNow IT Operations Management and IBM Tivoli NetCool OMNIbus, whereas Devo is most compared with Splunk Enterprise Security, IBM Security QRadar, Microsoft Sentinel, LogRhythm SIEM and Wazuh. See our BigPanda vs. Devo report.
See our list of best AIOps vendors.
We monitor all AIOps reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
