

Sumo Logic Security and Gigamon Deep Observability Pipeline compete in the network and security monitoring category. Gigamon Deep Observability Pipeline seems to have the upper hand due to its superior features, although it comes with higher costs.
Features: Sumo Logic Security offers valuable features such as real-time insights, comprehensive dashboards, and integration capabilities. Gigamon Deep Observability Pipeline provides advanced traffic visibility, robust threat detection, and enhanced network performance monitoring.
Room for Improvement: Sumo Logic Security could enhance its customization options, scalability, and user interface. Gigamon Deep Observability Pipeline could reduce complexity, improve the setup process, and streamline its user documentation.
Ease of Deployment and Customer Service: Sumo Logic Security is praised for its straightforward deployment model and responsive customer service. Gigamon Deep Observability Pipeline is noted for a more complex deployment but strong support once implemented.
Pricing and ROI: Sumo Logic Security is favored for its competitive pricing and solid ROI. Gigamon Deep Observability Pipeline has a higher setup cost, but users feel the ROI justifies the expenditure due to its advanced security features.
We have saved 64 hours of our time overall.
The return on investment I have seen with Sumo Logic Security in the past year and a half is tough to quantify, but I would estimate it has hit the milestones we set internally for return on investment.
The technical support by Gigamon Deep Observability Pipeline is good because it has a local architect in my area.
They have a response time of forty-eight hours, which is not instant support.
In general, they usually provide continuous support post-implementation, being in touch and trying to help, which makes their after-sale process better than Splunk.
Sumo Logic Security has really good customer support.
Sumo Logic Security scales up automatically because it is a cloud-native SIEM, and I do not need to worry about hardware clusters or capacity planning.
The tool has high scalability because everything is based in the cloud.
I did not face any significant issues with Sumo Logic Security, but the pricing may be a concern as they try to upsell and raise the prices very quickly.
If there are many records, the system may stop or the UI may become unresponsive.
The query language is pretty straightforward and easy, and it is very powerful for building different searches and dashboards that will serve for later exploration of the same interests I have.
It operates very well as a cloud-native SaaS platform with high availability, and there is no downtime that I have experienced.
This can lead to alerts that are collections of disjointed signals that sometimes make no sense and lack real context; this simplistic approach makes it hard to find coherent stories during investigations.
I would also appreciate the AWS automation integrations to be more secure because currently, they are using access keys, which involves a user rather than roles, which is the security best practice recommended by AWS.
The correlation rules and log mapping are not as mature compared to other SIM tools like Splunk.
This makes it more cost-effective because other solutions often include a third element in their pricing.
From one to ten, where one is cheap and ten is expensive, I would put Sumo Logic Security at a seven.
If you go to the well-known vendors such as Azure Sentinel or other tools like Splunk, you are going to find them costly since they are well-known and they have much more integration compared to Sumo Logic Security.
The Pipeline's Comprehensive Insights into data flows have helped improve operational efficiency and security.
The features I find most useful in Sumo Logic Security are the ease of implementation and connectors; they have a very easy connection and many connectors to important systems, making it very easy to implement and fast to start running in production.
They are able to save time on fewer alerts because we are able to perform tuning on the logs to be able to only get relevant or security relevant incidents.
My SOC analysts were crushed under Splunk, but Sumo has actually eased the workload and made it tolerable for three people.
| Product | Mindshare (%) |
|---|---|
| Sumo Logic Security | 1.6% |
| Gigamon Deep Observability Pipeline | 0.5% |
| Other | 97.9% |
| Company Size | Count |
|---|---|
| Small Business | 3 |
| Midsize Enterprise | 1 |
| Large Enterprise | 5 |
| Company Size | Count |
|---|---|
| Small Business | 7 |
| Midsize Enterprise | 4 |
| Large Enterprise | 16 |
Gigamon Deep Observability Pipeline boosts network visibility and performance through features like NetFlow and deduplication, facilitating data flow insights and improved security. It supports traffic monitoring and management across various infrastructures.
Gigamon Deep Observability Pipeline enhances network management by offering features such as NetFlow, deduplication, header stripping, and packet filtering. These capabilities are instrumental in optimizing performance, offering users stability and improved encryption processes. Despite its robust hardware capabilities, it requires enhancements in security, filtering, and delivery time for hardware. Users note challenges with monitoring cloud networks and insufficient cluster capacity. There is also a call for improved interface design and internal traffic flow visualization.
What are the essential features of Gigamon Deep Observability Pipeline?Gigamon Deep Observability Pipeline finds application across industries for network visibility and management. It is used extensively for traffic monitoring, SSL inspection, mobile network oversight, and data center operations. Organizations leverage its capabilities to address network issues, enhance security, and streamline performance monitoring processes. Its ability to group traffic aids significantly in problem-solving and SSL detection.
Sumo Logic Security offers efficient event monitoring with customizable alerts, centralized log search, and real-time threat detection. It supports multi-cloud environments and integrates with threat intelligence, reducing workload with AI-driven analytics.
Sumo Logic Security empowers organizations with advanced logging and monitoring solutions, facilitating comprehensive security event management. Its robust log search and comparison features, combined with user-friendly dashboards, enable quick event analysis. The platform's multi-cloud support and real-time threat detection are notable features, seamlessly integrating automated log correlation and AI analytics to optimize user experience. Despite needing enhancements in querying and dashboard functionalities, Sumo Logic Security remains a reliable choice for application log management, IT asset visibility, and incident alerting. Organizations utilize it for threat detection, posture monitoring, and compliance audits, in platforms like AWS, focusing on security insights and performance monitoring.
What are the key features of Sumo Logic Security?Organizations in industries like finance and technology implement Sumo Logic Security to maintain security and compliance, leveraging its advanced monitoring and alerting capabilities. Teams focus on application troubleshooting and forensic analysis, ensuring robust security posture and effective incident response across cloud-based environments.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.