We performed a comparison between DX Unified Infrastructure Management and Sumo Logic Security based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Sentinel pricing is good"
"The standout feature of Sentinel is that, because it's cloud-based and because it's from Microsoft, it integrates really well with all the other Microsoft products. It's really simple to set up and get going."
"You can fine-tune the SOAR and you'll be charged only when your playbooks are triggered. That is the beauty of the solution because the SOAR is the costliest component in the market today... but with Sentinel it is upside-down: the SOAR is the lowest-hanging fruit. It's the least costly and it delivers more value to the customer."
"Log aggregation and data connectors are the most valuable features."
"The most valuable feature is the alert notifications, which are categorized by severity levels: informational, low, medium, and high."
"It is quite efficient. It helps our clients in identifying their security issues and respond quickly. Our clients want to automate incident response and all those things."
"Sentinel improved how we investigate incidents. We can create watchlists and update them to align with the latest threat intelligence. The information Microsoft provides enables us to understand thoroughly and improve as we go along. It allows us to provide monthly reports to our clients on their security posture."
"Microsoft Sentinel comes preloaded with templates for teaching and analytics rules."
"It gives us visibility inside applications. It helps us to dig down and find the root cause of any issue within the network."
"It is very scalable."
"The real value is our being able to pull all the historic data that we need in order to gather every little metric and nuanced piece of information from a given device, a given piece of infrastructure, in order for us to generate alerts."
"You can scale it pretty much however way you want to as long as you have the servers to throw at it."
"I recall the initial setup being straightforward."
"It provides a comprehensive monitoring solution for our open systems."
"I can use the Drag and Drop feature to build dashboards within minutes."
"Probe packages and probe deployment."
"It gives us a bird's eye view of what's happening from our connection's point of view."
"For many of our services, we use Sumo Logic to track errors and send notifications to our Slack channel, if there are issues. Then, we have our support people monitoring this, and they can react quickly."
"We are able to diagnose problems before our customers."
"The most valuable features of Sumo Logic Security are the rules, use cases, and ease of use. Additionally, the integration is straightforward and good GUI."
"Scalability has been good for our needs. We haven't run into any scaling issues in regards to size so far."
"We can integrate threat intelligence solutions into the product."
"We use it to ingest Windows domain controller logs. We use this to monitor if anyone is placed in particular administration groups that potentially shouldn't be. It helps us keep track of people."
"We can ingest logs and make reports out of them. It is a good tool which can help us monitor any issues."
"Documentation is the main thing that could be improved. In terms of product usage, the documentation is pretty good, but I'd like a lot more documentation on Kusto Query Language."
"The performance could be improved. If I create 15 to 20 lines for a single-use case in KQL, sometimes it takes more time to execute. If I create use cases within a certain timeline, the result will show in .01 seconds. A complex query takes more time to get results."
"Some of the data connectors are outdated, at least the ones that utilize Linux machines for log forwarding. I believe that Microsoft is already working on improving this."
"They could use some kind of workbook. There is some limitation doing the editing and creating the workbook."
"If Sentinel had a graphical user interface, it would be easier to use. I would also like it to be more customizable."
"They only classify alerts into three categories: high, medium, and low. So, from the user's point of view, having another critical category would be awesome."
"The dashboards can be improved. Creating dashboards is very easy, but the visualizations are not as good as Microsoft Power BI. People who are using Microsoft Power BI do not like Sentinel's dashboards."
"They're giving us the queries so we can plug them right into Sentinel. They need to have a streamlined process for updating them in the tool and knowing when things are updated and knowing when there are new detections available from Microsoft."
"We would like to see automatic network topology."
"How we can get more native information from CA's solutions."
"I'm very happy with DX Unified Infrastructure Management, but what could be improved is its user interface because currently, it has many wide spaces. All the information you need is in DX Unified Infrastructure Management, and it's a reliable tool, and though that's more important than the gaps in the user interface being smaller or wider, those gaps still need some improvement. I know the team is working on it. My company had some backend problems with DX Unified Infrastructure Management in the past that have now been solved. The setup for the tool also needs improvement because it's complex. Another room for improvement in DX Unified Infrastructure Management is its technical support because it's sometimes not as knowledgeable or responsive. What I'm suggesting to be added to the tool is an open-standard ELK Elastic-based database where you can put in all data, so that you can use the data in other systems as well."
"Reporting capability can be improved especially when it comes to availability."
"Making a GUI with criteria such as selection by robot/hub/probe etc."
"Currently lacks a mobile application which would be helpful."
"The only challenge that I have with this solution is the reporting part. The users are not really comfortable with the kind of reports they are getting. Sometimes, they want to see reports in their own format. Customizing those reports with Jasper is not very easy. It could be because of the knowledge gap. If you have the knowledge of how Jasper can be configured to suit customer requirements in terms of reporting, it is good. There was a time a customer complained about one issue related to Netflow analysis. Broadcom has a separate model for that, but the customer wanted everything bundled together. It could also have IP management so that I am able to see or analyze IPs so that the IPs that are already in use don't get assigned."
"Stability."
"There needs to be improvement on imported data which can be used within Sumo Logic to do more advanced queries."
"Sumo Logic needs to make sure integrating solutions are seamless."
"There are some API gaps that are missing."
"If you want to up your subscription through the AWS Marketplace, it can be difficult. You can't just go back to the AWS Marketplace, and say, "I want a bigger one now." You have to contact the sales team, then they do it on the back-end. This could definitely be improved."
"It took a bit of trial and error to get it set up correctly based on everything we had to do. In the end, we had to send everything over HTTP, which was sort of a stop-gap."
"The integration with multiple sources could be better."
"I would like better UI-driven functionality to create alerts and reports. Now, we have to understand the syntax, so it is a little difficult for someone to pick it up without using the manuals. If there was more of a graphical user interface, it would be beneficial."
"It would be nice to have an improved ability to scroll through logs within a time frame. Right now, we can search for specific errors. However, if we want to look for "before and after" within a specific time frame, it's not easy using the tool. This would be an improvement."
More DX Unified Infrastructure Management Pricing and Cost Advice →
DX Unified Infrastructure Management is ranked 29th in IT Infrastructure Monitoring with 120 reviews while Sumo Logic Security is ranked 20th in Security Information and Event Management (SIEM) with 18 reviews. DX Unified Infrastructure Management is rated 8.2, while Sumo Logic Security is rated 8.6. The top reviewer of DX Unified Infrastructure Management writes "Easy to set up, simple to use, and offers great technical support". On the other hand, the top reviewer of Sumo Logic Security writes "Used to store and monitor application logs and VPC flow logs". DX Unified Infrastructure Management is most compared with DX SaaS, DX Spectrum, SCOM, ManageEngine OpManager and SolarWinds Server and Application Monitor, whereas Sumo Logic Security is most compared with Wazuh, Rapid7 InsightIDR, Splunk Enterprise Security, VMware Aria Operations for Logs and IBM Security QRadar. See our DX Unified Infrastructure Management vs. Sumo Logic Security report.
See our list of best Security Information and Event Management (SIEM) vendors.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.