No more typing reviews! Try our Samantha, our new voice AI agent.

LogRhythm Axon [EOL] vs LogRhythm SIEM comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 26, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

LogRhythm Axon [EOL]
Average Rating
7.6
Reviews Sentiment
6.3
Number of Reviews
3
Ranking in other categories
No ranking in other categories
LogRhythm SIEM
Average Rating
8.2
Reviews Sentiment
6.4
Number of Reviews
176
Ranking in other categories
Log Management (14th), Security Information and Event Management (SIEM) (14th)
 

Featured Reviews

AshishDubey - PeerSpot reviewer
Product manager at Tata Communications Ltd
A tool that offers features like SOAR and UBA, along with an out-of-the-box connector for users
LogRhythm Axon has come up with the AI cloud concept in the market. When it comes to the AI cloud concept, you need to consider that every region has differences when it comes to data sovereignty. The AI cloud concept from LogRhythm Axon was based on real-time AI and ML concepts, along with analytics parts that were carried out. The AI cloud concept from LogRhythm Axon is not something that is available in India, so I want it to be introduced in India soon with data sovereignty compliance in place. LogRhythm should focus more on Axon and its cloud platform, which can be helpful in the future to compete with players like Sentinel and Splunk, which currently offer cloud models to users. With LogRhythm Axon, stability and support are areas with shortcomings where improvements are required.
SumitKumar20 - PeerSpot reviewer
Security Engineer at Granicus Inc.
Tool consistently aids in effective threat detection and monitoring but could benefit from improved log source management and resource optimization
One major area for improvement in LogRhythm SIEM is the lack of volume measurement capability in terms of storage. There is currently no way to determine how much data is being consumed in terms of gigabytes, terabytes, or petabytes from particular devices or environments. This information is crucial for planning future storage needs and scalability. The system monitor (collector) agent has issues with resource consumption. Even when not actively collecting data, the agent continues to consume significant CPU and memory resources, which can be particularly problematic for small business environments with limited resources. LogRhythm SIEM could improve by adding more default device support. While they have good default settings for devices such as Palo Alto firewalls, custom log sources often require extensive work. Increasing the number of supported devices with built-in policies and functionality would reduce the need for custom work. Competitive SIEM tools often provide more comprehensive coverage for various devices and vendors.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The fact that your investigations can be saved into a single query string that you can copy and share with your teammates is going to be a game changer."
"Scalability-wise, LogRhythm Axon is a good product."
"For me, the most valuable feature of LogRhythm AXON is the log parsing technology it has. With my company, I'm the current policy builder, so not having to know an archaic, cryptic format and being able to visually grab a log and assign an element to a particular meta tag quickly and easily and being able to run tests on that have been super useful. It's going to revolutionize the way the logs are identified and classified."
"The search feature within Axon is pretty robust; it's actually very fast in comparison to the previous platform and is going to exponentially help the investigation times for the SOC analysts and for just pulling logs and getting data."
"Now, the SOC have custom dashboards, showing them a lot more useful information, puts the information in context, and they are actively using it for proactive investigations, rather than just responding to alarms."
"For me, the NERC compliance modules are probably the best thing, and the system monitors really pick up a lot for me, helping you get an eagle-eye view and then delve down granularly, and the ease of that is pretty amazing."
"LogRhythm has increased productivity because all the tools that we need are in the web UI, allowing us to find threats on our network fast and efficiently."
"LogRhythm has all that built in, and you just need to let them know what you want to turn on."
"We really appreciate the new cloud functionality."
"I have found the Advanced Intelligence Engine has provided the most value to us because we can customize alarms based on our requirements and have created hundreds of alarms that notify different people for different scenarios."
"The user interface is good."
"The correlation engine is extremely valuable because it uses machine learning to process information from the central manager and identifies issues in the network."
 

Cons

"It's a very beta solution right now, and there are so many features that we would like to see added in, such as integration with Active Directory, which is essential for user management and for streamlining that process significantly."
"I'd give technical support a five out of ten. There are definitely areas that they can improve upon, and faster response times would be wonderful, and having more knowledgeable staff who provide the support would also be great."
"With LogRhythm Axon, stability and support are areas with shortcomings where improvements are required."
"I have had a lot of trouble with stability, perfect timing."
"There are other security technologies outside of this SIEM that should be inside of this SIEM. I can see in their roadmap that they're trying to address a lot of these things, and have these technologies built into the solution, because there is no point in going to another vendor or opening up a second window to obtain the data that you need."
"More help and assistance with some of the open source products, everything seems to be focused on Windows versus giving some guidance and some documentation on how to use it."
"If there are interruptions in the data downloads or hosts that don't report to LogRhythm from the CDE, the utility of the LogRhythm Reports declines dramatically."
"The initial setup is not so easy because it is quite a process."
"I think they're limited now with this to Office 365."
"We've had issues with scaling and local support."
"Definitely expansion on log parsing. There are some obscure log sources that we don't currently have parsers for."
 

Pricing and Cost Advice

"I know that there are certain payments to be made towards the licensing costs attached to the product...The pricing of LogRhythm Axon falls under the mid-range, in my opinion."
"We have seen a measurable decrease in the mean time to detect and respond to threats. As it comes out new features and new releases, the window is becoming a lot narrower because you can pivot a lot more with the data. Therefore, the new features and enhancements are reducing that."
"We work with French-speaking African countries, and it costs more than the average SIEM solution. Also, the pricing isn't too flexible. AlienVault, Splunk, and IBM QRadar are more suitable for customers on a tight budget."
"We did a five-year agreement. We pay close to a quarter of a million dollars for our solution."
"I would rate the pricing 4 out of 5. There are no additional costs to the standard licensing fees."
"The product is inexpensive than other tools."
"I would rate the tool's pricing around eight out of ten."
"When it comes time to renew, they say, "This is what you are using. This is what we can do for you." So, they work with you on pricing."
"The setup and licensing for small and medium size businesses is straightforward, though when it comes to the enterprise it pays to keep in mind the possibility for complications given all the extras and add-ons that may be required."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
904,836 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Construction Company
13%
Financial Services Firm
10%
Outsourcing Company
7%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business38
Midsize Enterprise39
Large Enterprise83
 

Questions from the Community

Ask a question
Earn 20 points
What is the difference between log management and SIEM?
Rony, Daniel's answer is right on the money. There are many solutions for each in the market, a lot depends upon your ability to manage such tools and your budget. A small operation may be best s...
What needs improvement with LogRhythm NextGen SIEM?
LogRhythm SIEM could learn from Wazuh, as Wazuh has a built-in mechanism that allows you to write custom scripting and scripts through languages that Wazuh can then trigger, which is somewhat bette...
What is your experience regarding pricing and costs for LogRhythm SIEM?
I find LogRhythm SIEM affordable, as it is a bit less costly than QRadar, although I have not been involved in negotiation charges; however, from the manager's approval, I see it as affordable.
 

Also Known As

No data available
LogRhythm NextGen SIEM, LogRhythm, LogRhythm Threat Lifecycle Management, LogRhythm TLM
 

Overview

 

Sample Customers

Information Not Available
Macy's, NASA, Fujitsu, US Air Force, EY, Abbott, HD Supply, SAB Miller, UCLA, Raytheon, Amtrak, Cargill
Find out what your peers are saying about Splunk, Wazuh, Cribl and others in Log Management. Updated: July 2026.
904,836 professionals have used our research since 2012.