No more typing reviews! Try our Samantha, our new voice AI agent.

Devo vs SentinelOne Singularity AI SIEM comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 29, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.0
Companies saw high ROI with Devo's scalability, data aggregation, cost savings, faster response, and improved security intelligence.
Sentiment score
4.8
SentinelOne SIEM enhances SOC efficiency, reduces investigation times over 50%, and offers value despite higher pricing.
SentinelOne Singularity AI SIEM has reduced our response time to true positive alerts by approximately forty percent through automation.
IT Security Analyst at a tech consulting company with 11-50 employees
At the moment, I feel the pricing is a little bit on the higher side, but the tool is positioned in a place where risk is very high, and we do not want to take chances, so we are prepared to pay the premium.
Group Chief Information Officer at NeST Information Technologies Pvt Ltd
The effect of SentinelOne Singularity AI SIEM on our customers' SOC efficiency in investigating alerts and responding to incidents is significant.
Vice President Cyber Security Practice Head at orbit techsol w pvt.ltd
 

Customer Service

Sentiment score
6.7
Devo's team is praised for professionalism, quick responses, flexibility, and a customer-first approach despite some escalation delays.
Sentiment score
7.4
SentinelOne Singularity AI SIEM's support is highly rated for responsiveness, AI-based help, and effective problem resolution.
I rate the customer support a nine out of ten because of their timely technical guidance and responsiveness during the deployment and troubleshooting periods.
Cyber Security Engineer II (Vulnerability & Threat Management) at FICO
SentinelOne Singularity AI SIEM has AI-based technical support available.
IT Security Analyst at a tech consulting company with 11-50 employees
Based on my experience with the technical support of SentinelOne Singularity AI SIEM, I would rate them a ten.
Vice President Cyber Security Practice Head at orbit techsol w pvt.ltd
In rating the technical support for SentinelOne, it depends on whether we are discussing EDR or SentinelOne Singularity AI SIEM.
Managing Director at iMark Consult
 

Scalability Issues

Sentiment score
7.3
Devo's cloud architecture enables seamless scalability, supporting large enterprises effortlessly, with strong AWS integration ensuring robust performance.
Sentiment score
5.2
SentinelOne Singularity AI SIEM scales efficiently with proper configuration and management, though implementation can be challenging.
Devo is a unified SIEM solution designed to handle growing log volumes and enterprise-scale monitoring requirements.
Cyber Security Engineer II (Vulnerability & Threat Management) at FICO
With any AI adoption, the end goal should be more governance and data security and safety.
Associate Vice President at Novac Technology Solutions
The performance depends on the configuration.
IT Security Analyst at a tech consulting company with 11-50 employees
It is scalable, and we can increase the compute size. It can scale. There are no challenges.
Vice President Cyber Security Practice Head at orbit techsol w pvt.ltd
 

Stability Issues

Sentiment score
7.3
Devo is stable and reliable, with minor issues swiftly addressed, maintaining high user satisfaction for security operations.
Sentiment score
7.7
SentinelOne Singularity AI SIEM is generally praised for stability and fast log searches, though some report past issues.
It is stable and reliable for our security operations.
Cyber Security Engineer II (Vulnerability & Threat Management) at FICO
When it comes to stability, I would give SentinelOne Singularity AI SIEM a nine.
IT Security Consultant at Systemhaus for you GmbH
In terms of performance stability, I have never had any crashes, downtimes, or performance issues.
Cyber Security Engineer at a retailer with 201-500 employees
Even the data lake feature they have, in terms of keeping all the logs intact, those log searches are extremely fast on SentinelOne Singularity AI SIEM, even though the data is very high.
Technical Lead at CloudBolt Software
 

Room For Improvement

Devo users seek improvements in customization, integration, security, AI capabilities, usability, responsiveness, and pricing for enhanced functionality and experience.
SentinelOne Singularity AI SIEM struggles with stability, integrations, UI issues, high pricing, and requires improved support and automation.
This is particularly evident when dealing with failed login attempts and determining true versus false positives.
Strategic Account Executive at a computer software company with 51-200 employees
UI improvements, a simplified dashboard, or an easier reporting workflow could further improve analyst productivity.
Cyber Security Engineer II (Vulnerability & Threat Management) at FICO
The cost is a little higher compared to other tools such as DataDog or Elasticsearch, so they could work on reducing costs.
Senior Cloud Engineer at a tech services company with 201-500 employees
The adoption rate will be less compared to other products, as this can be a time-taken process because all my data needs to be offloaded and the system needs to understand my existing alerts, logs, and other things.
Associate Vice President at Novac Technology Solutions
The interface flickers frequently, and sometimes it does not load properly.
IT Security Analyst at a tech consulting company with 11-50 employees
Whenever OT security comes into the picture, the customers do not allow us to integrate their OT devices on a cloud. It should be available on-premises because the OT SIEM market, in the India market for instance, is something around a four to eight billion dollar market.
Vice President Cyber Security Practice Head at orbit techsol w pvt.ltd
 

Setup Cost

Devo's pricing is straightforward and competitive, with per-gigabyte charges, 400-day storage, and no hidden fees.
I find SentinelOne's pricing to be reasonable and competitive.
Information Security Principal at a venture capital & private equity firm with 1,001-5,000 employees
 

Valuable Features

Devo offers fast analytics, advanced query capabilities, and customizable dashboards, enhancing security workflows with seamless threat intelligence integration.
SentinelOne Singularity AI SIEM enhances threat detection and response efficiency with AI-driven insights and flexible integrations.
When they see a spike in a line chart for a failed login, which could be a true or false attempt, they can click that spike, and a table widget on the same active board instantly populates with raw logs of data for those specific failed logins.
Strategic Account Executive at a computer software company with 51-200 employees
When the analyst uses queries to search, it pulls the data quickly, in a second, which aids us greatly with the investigation.
Cyber Security Engineer II (Vulnerability & Threat Management) at FICO
It utilizes 400 days of hot data, allowing queries to run very fast and yield results quicker than other tools in terms of security and SIEM capability.
Senior Cloud Engineer at a tech services company with 201-500 employees
We finally have visibility into things that were never visible before.
IT Security Consultant at Systemhaus for you GmbH
It employs a combination of AI and ML to check for viruses or any other malicious processes, including fileless attacks.
Cyber Security Engineer at a retailer with 201-500 employees
The AI-driven threat detection capabilities improve our overall security posture.
Associate Vice President at Novac Technology Solutions
 

Categories and Ranking

Devo
Ranking in Security Information and Event Management (SIEM)
27th
Average Rating
8.4
Reviews Sentiment
6.6
Number of Reviews
25
Ranking in other categories
Log Management (27th), IT Operations Analytics (7th), AIOps (19th)
SentinelOne Singularity AI ...
Ranking in Security Information and Event Management (SIEM)
15th
Average Rating
8.8
Reviews Sentiment
6.1
Number of Reviews
9
Ranking in other categories
AI Observability (11th)
 

Mindshare comparison

As of July 2026, in the Security Information and Event Management (SIEM) category, the mindshare of Devo is 1.2%, up from 1.1% compared to the previous year. The mindshare of SentinelOne Singularity AI SIEM is 1.4%, up from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
SentinelOne Singularity AI SIEM1.4%
Devo1.2%
Other97.4%
Security Information and Event Management (SIEM)
 

Featured Reviews

FR
Strategic Account Executive at a computer software company with 51-200 employees
Has improved investigative workflows with interactive dashboards and simplified data correlation
The data analytics cloud component focuses on real-time analytics, which is very impressive. The SIEM collects and correlates logs data from different sources and can integrate with ServiceNow, hardware asset management, and software asset management. The security orchestration, automation, and response (SOAR) is another valuable feature. The security data platform serves as the foundation of Devo. Regarding advanced query capabilities, Devo offers several models including query logs, visual query builder, language integrated query, and SQL, with SQL being the most frequently used querying data capability. The single pane of glass that Devo offers is the SOC. The tools in Devo's active ports are for investigating, not just viewing data. They are more interactive than other market solutions. The drill-down reports capabilities allow analysts to click on any element in a widget. When they see a spike in a line chart for a failed login, which could be a true or false attempt, they can click that spike, and a table widget on the same active board instantly populates with raw logs of data for those specific failed logins. This is particularly important for enterprise companies with numerous endpoints and users. The dynamic filtering of inputs significantly reduces the time cybersecurity analysts spend trying to figure out failed logins and identifying false positives.
MM
Information Security Principal at a venture capital & private equity firm with 1,001-5,000 employees
Consolidated security operations have improved detection speed and reduced SOC costs
There is room for improvement when it comes to the technical support quality and expertise of SentinelOne. Sometimes, the technical support team does not know how to resolve certain issues and takes time to respond, often requiring follow-up interactions within 24 hours. SentinelOne Singularity AI SIEM can be improved in terms of support capabilities. Some logs from the server side need to be ingested. Secureworks was integrating with domain controllers and other systems, but SentinelOne still has some gaps. Some vendors cannot be integrated directly. For example, we are using Cisco Umbrella for DNS security, and we have to integrate it through an Amazon S3 bucket where we dump the logs and SentinelOne reads them from that location. For some Microsoft integrations, we must enable certain storage components and pay Microsoft directly to retrieve logs. There is no direct integration, so we must access the logs through that workaround. Previously with Secureworks, we had direct integration with Microsoft. Direct integration with Microsoft is not available now. SentinelOne needs to work on many product integrations to enable direct connectivity.
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Construction Company
10%
Manufacturing Company
8%
Computer Software Company
7%
Outsourcing Company
11%
Manufacturing Company
8%
Construction Company
8%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise5
Large Enterprise12
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise3
Large Enterprise3
 

Questions from the Community

What is your experience regarding pricing and costs for Devo?
Pricing generally depends on the scale, data ingestion requirements, and integrations for what the enterprise monitoring needs. I have not been part of the procurement process, so I am not aware of...
What needs improvement with Devo?
One improvement area for Devo could be simplifying some configuration and improving the onboarding for new analysts because it is quite complex for fresher or new analysts who are handling Devo.UI ...
What is your primary use case for Devo?
Devo serves as our centralized log monitoring, threat investigation, alert monitoring, and security analytics platform. We use it to collect logs from multiple systems so we can correlate the event...
What needs improvement with SentinelOne Singularity AI SIEM?
I would want the false positive ratio to be lower and would want to improve that aspect so the true will be more, and the false will be lesser. Other than false positives, the true will be increase...
What is your primary use case for SentinelOne Singularity AI SIEM?
We discuss with customers whether they want to go on a cloud or on-premises for the usual use cases of SentinelOne Singularity AI SIEM that I work with mostly. If a customer has a SentinelOne EDR, ...
What advice do you have for others considering SentinelOne Singularity AI SIEM?
Correlation, alerting, reporting, and helping with the AI-based alerts generated by the AI are the usual use cases. The parsing is already built into SentinelOne Singularity AI SIEM. There is no ch...
 

Overview

 

Sample Customers

United States Air Force, Rubrik, SentinelOne, Critical Start, NHL, Panda Security, Telefonica, CaixaBank, OpenText, IGT, OneMain Financial, SurveyMonkey, FanDuel, H&R Block, Ulta Beauty, Manulife, Moneylion, Chime Bank, Magna International, American Express Global Business Travel
Information Not Available
Find out what your peers are saying about Devo vs. SentinelOne Singularity AI SIEM and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.