Try our new research platform with insights from 80,000+ expert users

Gurucul UEBA vs Securonix Next-Gen SIEM vs Varonis Platform comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Mindshare comparison

User Entity Behavior Analytics (UEBA)
Security Information and Event Management (SIEM)
Data Loss Prevention (DLP)
 

Featured Reviews

Ravi Shekharan - PeerSpot reviewer
Helped reduce our operational costs and increase our efficiency, but it can be more user-friendly
Regarding the prioritization of threats, Gurucul UEBA needs to enhance its alert severity assignment process within the system. This is one area where Gurucul UEBA could improve. Additionally, it would be beneficial if the tool itself could provide or assign user-based or asset-based CI ratings to allow for a more accurate assessment of alert severity. In our environment, we forward these logs, events, and alerts to SIM, where the CI rating is already present. Therefore, if we need to closely investigate a UEBA case directly, it becomes problematic. Gurucul UEBA should proactively incorporate asset-based or user-based CI severity into its design. Gurucul UEBA needs to be more user-friendly. I would like Gurucul UEBA to be able to integrate with legacy-based identity systems and systems that are performing network-based access control. This would require additional integration and playbook models.
Mohammed Nadeem Rais - PeerSpot reviewer
The visibility and analytics from Securonix SIEM have become indispensable in identifying and stopping potential threats before they escalate.
The most valuable feature of Securonix Next-Gen SIEM is its advance analytics, flexibility and scalability. We ingest billions of logs without worrying about resource allocation. This makes it a robust and cost-effective solution for our needs. Its user entity and behavior analytics (UEBA) are also integral for detecting insider threats and lateral movements within the organization. These features help organizations strengthen their security posture, protect sensitive data, and maintain compliance with strict regulatory requirements.
Herman Pienaar - PeerSpot reviewer
Has valuable data alerting capabilities and efficient reporting features
The solution's classification engine is highly configurable and efficient. It provides good reporting and visualization, which is superior to previous tools like Microsoft's. The platform's data alerting capabilities and automation features for managing broken permissions are particularly notable. It offers robust automation capabilities, including global permission repair, broken access repairs, and data transport engine features for archiving and migration. The automation tools are useful for managing permissions and performing cleanup tasks efficiently. It provides strong reporting capabilities that help customers adhere to regulations and maintain compliance. Automating reporting is beneficial for maintaining robust governance, risk, and compliance (GRC) posture. It does incorporate some AI elements, particularly in its data alerting module. However, AI integration has yet to be the primary focus of my implementations. AI is expected to play a larger role in future enhancements. I recommend Varonis, particularly its effectiveness in performing data security remediation tasks. Despite its high cost, it is valuable for its capabilities and the lack of impact on end users. Overall, I rate it a nine out of ten.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I appreciate the comprehensive categorization of devices based on their intended use, such as those for DNS."
"The reporting feature was the key differentiator. I also liked the ability to create dynamic rules in the environment."
"If you are genuinely looking for a UEBA solution, you should choose Gurucul confidently if your need is strictly UEBA."
"The most valuable feature of Gurucul is the ability to customize and it is on the Hadoop platform that has a lot of flexibility."
"The software includes user behavior interactions, dashboards, and training capabilities."
"We ingest billions of logs without worrying about resource allocation."
"Its console is very easy to use and configure. It is very intuitive for our use cases. App integrations are also pretty nice."
"Risk scoring was nice. We could exactly see which user had the highest risk score, and then we could pick it up and work on it."
"The user interface is easy to learn and navigate."
"The most valuable feature is being able to look at users' behavioral profiles to see what they typically access. One of the key events that we monitor is people's downloading of objects... It's very easy to see people's patterns, what they typically do."
"One of the most valuable features it has is the thread chaining. One of the common issues that we always had was the number of anomalies that we used to get and the number of alerts that we used to get. But with this approach of thread chaining, we've found the false-positive rate has decreased very significantly. That was something that we never could have achieved before."
"SNYPR has a bundle of features. It has the UEBA feature that tells you about the behavior of a person or entity. In the tool itself, there is an incident management feature, which is definitely valuable."
"Varonis Platform is transparent and captures everything in the environment without impacting the performance. The tool helps us unify data feeds into a single reporting system."
"The solution ensures that users have not accidentally shared sensitive information with the wrong people or too many people."
"I also appreciate the reporting feature, which allows for the extraction of various reports based on specific needs. These reports can be used for audit purposes, such as tracking changes in file locations or deletions."
"The 24/7 support is the most valuable feature. They have been able to answer support questions pretty quickly."
"It can easily identify unusual behavior or access patterns that may pose a potential threat, while operating as a unified reporting system."
"The solution's classification engine is highly configurable and efficient."
"The most important feature is remediation. In remediation support, there is no group permission. We'll go ahead and remediate the access from the Dell folder to the parent folder."
"On the Varonis side, technical support is phenomenal. Their ability to explain is very good, and they seem to be very knowledgeable. When I get an alert that doesn't quite make sense, they dive in there and kind of take me through it. That's very useful and very good. There are some false alerts, but it is better to have a false alert than no alert at all."
 

Cons

"Gurucul can improve on the online documentation. They should educate the end users more to allow them to do everything themselves."
"Technical support is good but can improve. I would rate it six to seven out of ten. The main issue is response time, which can take three to four hours even for simple queries."
"Regarding the prioritization of threats, Gurucul UEBA needs to enhance its alert severity assignment process within the system."
"It could be more stable."
"Sometimes, there is instability in the data in terms of the customization of the time. I have sometimes observed discrepancies in the data, which is something they should work on. They should bring more stability to time customization. If we are seeing a particular data, when we change the time zone, there should be the same data. There should not be any discrepancy."
"We would like a little more face-to-face training. Securonix has several tutorials on its website, but we want there to be a person in Colombia who does training or workshops to give us a better understanding of the platform."
"The customization in Securonix Next-Gen SIEM is more difficult compared to other solutions. At the admin level, we have many challenges where log parsing is causing issues and compatibility is not present."
"Parsing needs to be improved. Every time we integrate a new, specific data source, we face a lot of problems in parsing, even for the old data source."
"We have a lot of users who, because they're engineers and they're bringing down product data - where, at times, a top-level product could be 10,000 or 15,000 objects - it's difficult for us to determine what should be a concern and what shouldn't be a concern. We work with the Securonix folks to try to come up with better ways to identify that."
"The solution could provide more automation."
"Securonix could open up information regarding the indicators of compromise or cyber-threat intelligence database that they use. The idea is that they share what threats they are detecting."
"In terms of improvements, SIEM could have better integration with other technologies. Additionally, it might benefit from integration with other sources, such as firewalls."
"One area for improvement is the calculation engine. When applying rules in Varonis, especially for large datasets (terabytes of data), the calculations can be slow and require time to process. Speeding up this process would be beneficial."
"The solution's interface is a little complicated with regard to setting up filters and reports."
"The GUI should be more functional. There should be a process for connecting through Chrome, Internet Explorer, etc."
"We have Microsoft Office 365. I just saw an article today which says that they're actually getting integrated with Microsoft Office 365, which would be a useful feature. For user-based reports, log on activity, and stuff like that, it doesn't seem to really be present like Log360. That could just be my inexperience with it. I've been dealing with it for only about two and a half months."
"I'd like to see automatic updates for this solution. Currently, it's a manual process to update all the keywords"
"Varonis requires more access permissions for its core functions compared to competitors, which can be a concern for companies about data safety."
"I would like it to have cloud integration."
"It is significantly complex."
 

Pricing and Cost Advice

"The price is fair. In fact, I believe it was on the cheaper side when compared to the competition."
"The price of Gurucul is competitive."
"The pricing is fine compared to the market but I think that at some point the competitors will catch up on price."
"Its price is fine. We found it to be cheaper than LogRhythm, Exabeam, Splunk, as well as Elastic Security. A few months ago, when we were comparing Securonix with Elastic Security, we found Securonix to be cheaper than Elasticsearch. We were pretty surprised that Elastic Security is more expensive than Securonix because Elasticsearch is just starting, and it cannot compete with Securonix at this time. So, the pricing of Securonix is pretty good for now."
"The pricing is good, but by adding more things, the licensing becomes more complex because an EPS license fluctuates a lot. This licensing concept is going to be problematic in the long run."
"A good thing about Securonix is that they don't charge by volume of data or number of devices... They charge by the number of employees, which is a much more predictable number for me, versus data. Our costs are in the $100,000 range over a three-year subscription."
"We have an annual license. We pay $200,000 for the base licensing and we pay another $50,000 for the software as a service."
"The solution's price is double the competitors."
"I rate the pricing an eight on a scale of one to ten, where one is cheap, and ten is very expensive. It is a pretty expensive tool."
"Compared to other known brands in the industry, the overall cost of the licenses is a bit higher than what customers expect."
"Licensing is on an annual basis. Maintenance and renewal fees are separate. Varonis Datalert is quite expensive."
"Varonis Platform wasn't certainly the cheapest solution."
"The pricing is good. It neither expensive nor cheap. It is average."
"I would rate the pricing an eight out of ten, with ten being the most expensive."
"You could do a subscription, where you pay yearly, or you could purchase it outright. The licensing cost is based on the number of users on the system that you are monitoring."
"The platform is expensive. I rate the pricing a nine out of ten."
"It's expensive, kind of, really expensive."
report
Use our free recommendation engine to learn which User Entity Behavior Analytics (UEBA) solutions are best for your needs.
865,295 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
18%
Financial Services Firm
11%
Healthcare Company
7%
Insurance Company
5%
Computer Software Company
17%
Financial Services Firm
11%
Healthcare Company
6%
Manufacturing Company
6%
Financial Services Firm
16%
Computer Software Company
9%
Manufacturing Company
9%
Healthcare Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Gurucul?
I appreciate the comprehensive categorization of devices based on their intended use, such as those for DNS.
What needs improvement with Gurucul?
For improvement, I have requested three enhancement tickets, which are already lodged with the Gurucul support team. ...
What is your primary use case for Gurucul?
Regarding the use cases, I have created many use cases in Gurucul UEBA. It's easy to create use cases based on behavi...
Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?
In my market, a lot of financial companies had or have an ArcSight installation. Just because in former times it was ...
What is your primary use case for Securonix Security Analytics?
We work with CrowdStrike, Securonix Next-Gen SIEM, and other cybersecurity products such as Gurucul. We are a service...
What do you like most about Securonix Next-Gen SIEM?
The two major features of this product we extensively use are the UEBA capability and the multi-tenant approach with ...
What do you like most about Varonis Platform?
The solution has significantly improved data security and compliance posture by allowing us to track and monitor acti...
What needs improvement with Varonis Platform?
Varonis started as an on-premises solution and is transitioning to cloud. It hasn't fully moved yet, which is an area...
What is your primary use case for Varonis Platform?
The primary use case for Varonis Platform is data discovery, specifically for discovering sensitive data in our organ...
 

Also Known As

No data available
Securonix Security Analytics
No data available
 

Overview

 

Sample Customers

Global semi-conductor company
Dtex Systems, Pfizer, Western Union, Harris, ITG
Nottingham Building Society
Find out what your peers are saying about IBM, Exabeam, Cynet and others in User Entity Behavior Analytics (UEBA). Updated: July 2025.
865,295 professionals have used our research since 2012.