No more typing reviews! Try our Samantha, our new voice AI agent.

Elastic Beats vs LogRhythm SIEM comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Elastic Beats
Average Rating
8.0
Number of Reviews
2
Ranking in other categories
No ranking in other categories
LogRhythm SIEM
Average Rating
8.2
Reviews Sentiment
6.4
Number of Reviews
176
Ranking in other categories
Log Management (14th), Security Information and Event Management (SIEM) (14th)
 

Featured Reviews

it_user1269834 - PeerSpot reviewer
I.T. Manager at a healthcare company with 51-200 employees
A great addition to our security monitoring system
We haven't to this point had to scale very large, we want to continue to evolve, but it's a slow process for us. From what I've used so far, and my reading on it, I don't think we're going to have any problems scaling to really whatever size we need.
SumitKumar20 - PeerSpot reviewer
Security Engineer at Granicus Inc.
Tool consistently aids in effective threat detection and monitoring but could benefit from improved log source management and resource optimization
One major area for improvement in LogRhythm SIEM is the lack of volume measurement capability in terms of storage. There is currently no way to determine how much data is being consumed in terms of gigabytes, terabytes, or petabytes from particular devices or environments. This information is crucial for planning future storage needs and scalability. The system monitor (collector) agent has issues with resource consumption. Even when not actively collecting data, the agent continues to consume significant CPU and memory resources, which can be particularly problematic for small business environments with limited resources. LogRhythm SIEM could improve by adding more default device support. While they have good default settings for devices such as Palo Alto firewalls, custom log sources often require extensive work. Increasing the number of supported devices with built-in policies and functionality would reduce the need for custom work. Competitive SIEM tools often provide more comprehensive coverage for various devices and vendors.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The security aspects in general have been very useful to use."
"There's a whole spectrum of features on the solution that users can take advantage of, and it's a very robust product."
"The daily alerts allow me to quickly find security and operational issues which need to be addressed."
"It is a very good solution; it is very robust and very extensive."
"What I found most valuable in LogRhythm NextGen SIEM is that it's user-friendly. I also like its dashboard, which shows all the logs and information I want to see."
"Its ability to work with all different sorts of log sources has been extremely valuable."
"I would say the most valuable feature of LogRhythm is that it has built-in UEBA functionality, among other basic Windows packages."
"It's reliable and the performance is good."
"We have seen a measurable decrease in the mean time when detecting and responding to threats."
"Quicker ability to troubleshoot the problem, find the problem, get it fixed, and get the customers back up and using our system."
 

Cons

"At some level, the documentation, the information as far as the components, it's sometimes a little difficult to find the information necessary to implement aspects."
"The dashboard is not user-friendly. The solution, in general, isn't great from a user's perspective."
"I would probably look for more things to go into the web console that is currently on the fat client."
"Going into the beta, stability was very good, but in the beta it's not been as great for us lately."
"Definitely expansion on log parsing. There are some obscure log sources that we don't currently have parsers for."
"One thing we have mentioned to them before is that we'd like to be able to do searches, or drill-downs, directly from an alarm. When you click it and the Inspector tab slides out, that might be a good place to be able to click the host to search for the last 24 hours. I know the search is right there but it would be even nicer to just click that and then have an option to search something there."
"Scalability-wise, it's not that great."
"When we are on-prem, it's a little complicated and has a lot of challenges that the customer doesn't want."
"For instance, we were trying to deal with pass the hash, which is a very common exploit and LogRhythm tech support told us they were just going turn that rule off, that we can't use it."
"LogRhythm SIEM needs improvement in data grouping and manipulation capabilities."
 

Pricing and Cost Advice

"It wasn't cheap, but it was cost-effective compared to many of the other solutions."
"Everything is expensive with LogRhythm, and you don't get anything for free."
"Look closely at the cost of licensing of other products. This should include setups and the need for support services. I did a RFQ to 2 other vendors before choosing this product."
"On a scale of one to ten, I'd rate the pricing of this solution as a seven - not too expensive but not cheap either. Regarding licensing costs, it varies depending on factors like being a partner or an end user, but there are no additional costs aside from standard licensing fees for the basic SIEM solution."
"I would rate the pricing 4 out of 5. There are no additional costs to the standard licensing fees."
"When it comes time to renew, they say, "This is what you are using. This is what we can do for you." So, they work with you on pricing."
"I give the price a six out of ten."
"The solution has provided us with consistency and increased staff productivity through orchestrated automated work flows by at least 20 percent."
"The product is inexpensive than other tools."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
904,836 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Construction Company
13%
Financial Services Firm
10%
Manufacturing Company
7%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business38
Midsize Enterprise39
Large Enterprise83
 

Questions from the Community

Ask a question
Earn 20 points
What is the difference between log management and SIEM?
Rony, Daniel's answer is right on the money. There are many solutions for each in the market, a lot depends upon your ability to manage such tools and your budget. A small operation may be best s...
What needs improvement with LogRhythm NextGen SIEM?
LogRhythm SIEM could learn from Wazuh, as Wazuh has a built-in mechanism that allows you to write custom scripting and scripts through languages that Wazuh can then trigger, which is somewhat bette...
What is your experience regarding pricing and costs for LogRhythm SIEM?
I find LogRhythm SIEM affordable, as it is a bit less costly than QRadar, although I have not been involved in negotiation charges; however, from the manager's approval, I see it as affordable.
 

Also Known As

No data available
LogRhythm NextGen SIEM, LogRhythm, LogRhythm Threat Lifecycle Management, LogRhythm TLM
 

Overview

 

Sample Customers

Sprint
Macy's, NASA, Fujitsu, US Air Force, EY, Abbott, HD Supply, SAB Miller, UCLA, Raytheon, Amtrak, Cargill
Find out what your peers are saying about Splunk, Wazuh, Cribl and others in Log Management. Updated: July 2026.
904,836 professionals have used our research since 2012.