Devo vs Google Chronicle Suite comparison

Devo and Google are both solutions in the Security Information and Event Management (SIEM) category. Devo is ranked #28 with an average rating of 8.5, while Google is ranked #11 with an average rating of 8.1. Devo holds a 1.1% mindshare in SIEM, compared to Google’s 3.5% mindshare. Additionally, 95% of Devo users are willing to recommend the solution, compared to 92% of Google users who would recommend it.

Devo

Read 22 Devo reviews

2,148 Views
1,023 Comparison Views

95% willing to recommend

Google Chronicle Suite

Read 14 Google Chronicle Suite reviews

3,290 Views
2,424 Comparison Views

92% willing to recommend

Devo

Google Chronicle Suite

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

Devo and Google Chronicle Suite are prominent products in the IT security realm. Users are happier with Devo's pricing and support, but Google Chronicle Suite appears superior in features and is considered worth the price.

Features: Devo users appreciate robust analytics, real-time log management, and easy scalability. Google Chronicle Suite users value its extensive threat intelligence, seamless integration, and advanced threat detection functionalities.

Room for Improvement: Devo users highlight the need for enhanced reporting, alerting capabilities, and better user interface design. Users of Google Chronicle Suite suggest improvements in dashboard customization, data visualization, and reduced complexity in setup processes.

Ease of Deployment and Customer Service: Devo has a straightforward deployment model and receives high marks for customer service. Google Chronicle Suite users note a steeper learning curve, but praise comprehensive customer support.

Pricing and ROI: Devo is noted for its competitive setup costs and strong ROI in user reviews. Google Chronicle Suite, although more expensive, delivers substantial ROI through its powerful features and integrations.

To learn more, read our detailed Devo vs. Google Chronicle Suite Report (Updated: April 2025).

Buyer's Guide

Devo vs. Google Chronicle Suite

April 2025

Download the complete report

Helped 849,963 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Devo

Ranking in Security Information and Event Management (SIEM)

28th

Average Rating

8.4

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Log Management (27th), IT Operations Analytics (6th), AIOps (15th)

Google Chronicle Suite

Ranking in Security Information and Event Management (SIEM)

11th

Average Rating

8.0

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of May 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Devo is 1.1%, up from 1.0% compared to the previous year. The mindshare of Google Chronicle Suite is 3.5%, up from 1.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Michael Wenn

CEO / Co-Founder at Aiops ltd

Has cloud-first architecture with SIEM technology to run security operations

When it comes to scale, they're architected quite well. They handle some of the biggest customers globally, with significant throughput on their platform, managing thousands of customers. One of the most impressive aspects of Devo is its customer community. A large majority, over 80 percent of their customers, actively participate on a Devo-specific community page. They're contributing to product development and support, events, and user group information, helping each other out. This high level of engagement is rare and demonstrates both the loyalty of their customer base and the quality of their product. They offer a range of small, medium, and large options to cater to everyone. I sold Devo products while working with them, focusing on enterprise solutions. However, as a small reseller, my customers were typically smaller businesses. I rate the solution's scalability a nine out of ten.

Read full review

Rene Schouten.

Senior Solution Architect at Stichting Inlichtingenbureau

Harnesses anomaly detection and automated response for efficient threat management

I really appreciate the anomaly detection and machine learning capabilities that identify unusual patterns without needing signatures. The automated response feature allows for immediate actions like isolating infected machines or blocking malicious IP addresses. It is also cost-effective, charged based on use per second rather than data volume. Additionally, the solution supports annual audits and ensures compliance.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It's very, very versatile."

"The alerting is much better than I anticipated. We don't get as many alerts as I thought we would, but that nobody's fault, it's just the way it is."

"Devo has a really good website for creating custom configurations."

"The strength of Devo is not only in that it is pretty intuitive, but it gives you the flexibility and creativity to merge feeds. The prime examples would be using the synthesis or union tables that give you phenomenal capabilities... The ability to use a synthesis or union table to combine all those feeds and make heads or tails of what's going on, and link it to go down a thread, is functionality that I hadn't seen before."

"The thing that Devo does better than other solutions is to give me the ability to write queries that look at multiple data sources and run fast. Most SIEMs don't do that. And I can do that by creating entity-based queries. Let's say I have a table which has Okta, a table which has G Suite, a table which has endpoint telemetry, and I have a table which has DNS telemetry. I can write a query that says, 'Join all these things together on IP, and where the IP matches in all these tables, return to me that subset of data, within these time windows.' I can break it down that way."

"It centralizes security management within a business, functioning as a core system for a SOC."

"Even if it's a relatively technical tool or platform, it's very intuitive and graphical. It's very appealing in terms of the user interface. The UI has a graphically interface with the raw data in a table. The table can be as big as you want it, depending on your use case. You can easily get a report combining your data, along with calculations and graphical dashboards. You don't need a lot of training, because the UI is relatively very intuitive."

"The user experience [is] well thought out and the workflows are logical. The dashboards are intuitive and highly customizable."

More Devo pros

"The UEBA capabilities provide valuable user and entity behavior analytics, and the context from Google threat intelligence significantly bolsters threat detection."

"The product's most valuable feature is threat hunting. We can detect the threats directly from the console from the past data as well."

"The language used for content creation is very flexible and visually appealing."

"The tool's most valuable feature is the search option, allowing easy navigation."

"The automated response feature allows for immediate actions like isolating infected machines or blocking malicious IP addresses."

"The technical support from Google is very important and great."

"The main advantage I see is the cost, which is currently low."

"The log folder is fairly simple."

More Google Chronicle Suite pros

Cons

"Some third-parties don't have specific API connectors built, so we had to work with Devo to get the logs and parse the data using custom parsers, rather than an out-of-the-box solution."

"The overall performance of extraction could be a lot faster, but that's a common problem in this space in general. Also, the stock or default alerting and detecting options could definitely be broader and more all-encompassing. The fact that they're not is why we had to write all our own alerts."

"Some of the documentation could be improved a little bit. A lot of times it doesn't go as deep into some of the critical issues you might run into. They've been really good to shore us up with support, but some of the documentation could be a little bit better."

"There's room for improvement within the GUI. There is also some room for improvement within the native parsers they support. But I can say that about pretty much any solution in this space."

"There's always room to reduce the learning curve over how to deal with events and machine data. They could make the machine data simpler."

"An admin who is trying to audit user activity usually cannot go beyond a day in the UI. I would like to have access to pages and pages of that data, going back as far as the storage we have, so I could look at every command or search or deletion or anything that a user has run. As an admin, that would really help. Going back just a day in the UI is not going to help, and that means I have to find a different way to do that."

"They can improve their AI capabilities"

"I would like to have the ability to create more complex dashboards."

More Devo cons

"The solution's graphical user interface (GUI) should be more user-friendly."

"It is still not mature enough. If I create some content, there might be roadblocks, although this could change in the future."

"It is still not mature enough."

"The tool is complicated for a first-time user. It should also include newer APIs."

"A few areas are difficult to understand for someone who has less experience using the product."

"The tool is perfectly fine, and I have not faced any challenges while using it."

"The graphical user interface could be improved to enhance user experience."

"The tool needs to improve tasking packages. Its GUI needs to be improved. The product needs to include time-based filtration. We can only see the alert detection timeline now."

More Google Chronicle Suite cons

Pricing and Cost Advice

"Devo is a hosted or subscription-based solution, whereas before, we purchased QRadar, so we owned it and just had to pay a maintenance fee. We've encountered this with some other products, too, where we went over to subscription-based. Our thought process is that with subscription based, the provider hosts and maintains the tool, and it's offsite. That comes with some additional fees, but we were able to convince our upper management it was worth the price. We used to pay under 10k a year for maintenance, and now we're paying ten times that. It was a relatively tough sell to our management, but I wonder if we have a choice anymore; this is where the market is."

"Devo was very cost-competitive... Devo did come with that 400 days of hot data, and that was not the case with other products."

"Our licensing fees are billed annually and per terabyte."

"I like the pricing very much. They keep it simple. It is a single price based on data ingested, and they do it on an average. If you get a spike of data that flows in, they will not stick it to you or charge you for that. They are very fair about that."

"It's very competitive. That was also a primary draw for us. Some of the licensing models with solutions like Splunk and Sentinel were attractive upfront, but there were so many micro-charges and services we would've had to add on to make them what we wanted. We had to include things like SOAR and extended capabilities, whereas all those capabilities are completely included with the Devo platform. I haven't seen any additional fee."

"I rate the pricing a four on a scale of one to ten, where one is cheap, and ten is expensive."

"Pricing is based on the number of gigabytes of ingestion by volume, and it's on a 30-day average. If you go over one day, that's not a big deal as long as the average is what you expected it to be."

"The way Devo prices things is based on the amount of data, and I wish the tiers had more granularity. Maybe at this point they do, but when we first negotiated with them, there were only three or four tiers."

More Devo pricing and cost advice

"The solution's pricing is dependent on the data amount."

"We have to pay extra charges for the amount of data transfer and technical support services."

"The tool is cheaper than Microsoft Sentinel."

"Compared to other solutions, Google Chronicle Suite's pricing is fine."

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

849,963 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

17%

Computer Software Company

15%

Government

University

Computer Software Company

14%

Financial Services Firm

13%

Retailer

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Devo?

Devo has a really good website for creating custom configurations.

See all answers

What is your experience regarding pricing and costs for Devo?

Compared to Splunk or SentinelOne, it is really expensive. I rate the product’s pricing a nine out of ten, where one is cheap and ten is expensive.

See all answers

What needs improvement with Devo?

They can improve their AI capabilities. If you look at some integrations like XDR or AI, which add to the platform to correlate situations in events, there are areas for enhancement. For instance, ...

See all answers

What do you like most about Google Chronicle Suite?

Google Chronicle Suite is a highly scalable solution with good search capabilities.

See all answers

What is your experience regarding pricing and costs for Google Chronicle Suite?

I rate the price of Google Chronicle Suite as a five, indicating it's market value. It's neither expensive nor cheap, and I believe it is a justified price for the features offered.

See all answers

What needs improvement with Google Chronicle Suite?

The user interface could be more intuitive, particularly in navigation. Moreover, the dashboards should be enhanced as they are not up to the mark. The UI is the primary challenge in need of improv...

See all answers

Comparisons

IBM Security QRadar vs Devo

Compared 17% of the time

Splunk Enterprise Security vs Devo

Compared 17% of the time

Microsoft Sentinel vs Devo

Compared 16% of the time

LogRhythm SIEM vs Devo

Compared 6% of the time

Wazuh vs Devo

Compared 6% of the time

More Devo Competitors

Sentinel vs Google Chronicle Suite

Compared 19% of the time

Microsoft Sentinel vs Google Chronicle Suite

Compared 17% of the time

Splunk Enterprise Security vs Google Chronicle Suite

Compared 14% of the time

IBM Security QRadar vs Google Chronicle Suite

Compared 9% of the time

AWS Security Hub vs Google Chronicle Suite

Compared 8% of the time

More Google Chronicle Suite Competitors

Product Reports

Buyer's Guide

Devo

April 2025

Download Devo product report

Buyer's Guide

Security Information and Event Management (SIEM)

April 2025

Download Google Chronicle Suite product report

Overview

Devo is the only cloud-native logging and security analytics platform that releases the full potential of all your data to empower bold, confident action when it matters most. Only the Devo platform delivers the powerful combination of real-time visibility, high-performance analytics, scalability, multitenancy, and low TCO crucial for monitoring and securing business operations as enterprises accelerate their shift to the cloud.

Devo

Organizations primarily leverage Google Chronicle Suite for centralized log management, threat intelligence, and endpoint security, addressing MDR requirements with continuous monitoring.

Google Chronicle Suite supports storage, security, and alert checking. Utilizing log information to generate alerts and integration with search engines, it monitors network and login issues. It is a choice for consultants on client projects, and partners handle its global resale and implementation.

What are the key features of Google Chronicle Suite?

Threat Hunting: Enables proactive searches for potential threats.
Fast Information Retrieval: Swiftly accesses necessary data.
Efficient Search: Provides easy-to-use searching capabilities.
Premade Dashboards: Ready-to-use dashboards for quick insights.
Simple Log Management: Streamlines the logging process.
Multiple Connectors: Broad connectivity support.
Flexible Data Outputs: Versatile data handling.
Top Threat Intelligence: High-quality intelligence capabilities.
Speed Handling Real-Time Cyber Threats: Rapid threat response.
Proactive Threat Identification: Detects threats before they occur.

What are the benefits and ROI of Google Chronicle Suite?

Centralization: Unified log management boosts efficiency.
Enhanced Security: Advanced threat intelligence improves protection.
Global Implementation: Available worldwide through partners.
Consultant Benefit: Useful for client-specific challenges.
Continuous Monitoring: Non-stop network and login issue tracking.

Industries employ Google Chronicle Suite for its robust security measures and log management. It is especially vital for IT, finance, healthcare, and any sector needing stringent security and compliance. Consultants find it essential for tailoring security protocols in client projects, while partners ensure seamless implementation across regions.

Google

Sample Customers

United States Air Force, Rubrik, SentinelOne, Critical Start, NHL, Panda Security, Telefonica, CaixaBank, OpenText, IGT, OneMain Financial, SurveyMonkey, FanDuel, H&R Block, Ulta Beauty, Manulife, Moneylion, Chime Bank, Magna International, American Express Global Business Travel

Information Not Available

Buyer's Guide

Devo vs. Google Chronicle Suite

April 2025

Free Report: Devo vs. Google Chronicle Suite

Find out what your peers are saying about Devo vs. Google Chronicle Suite and other solutions. Updated: April 2025.

DOWNLOAD NOW

849,963 professionals have used our research since 2012.

See our Devo vs. Google Chronicle Suite report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.