LogRhythm Axon vs LogRhythm SIEM comparison

 

Comparison Buyer's Guide

Executive Summary
 

Categories and Ranking

LogRhythm Axon
Ranking in Log Management
42nd
Average Rating
7.6
Number of Reviews
3
Ranking in other categories
No ranking in other categories
LogRhythm SIEM
Ranking in Log Management
8th
Average Rating
8.4
Number of Reviews
167
Ranking in other categories
Security Information and Event Management (SIEM) (6th)
 

Mindshare comparison

As of June 2024, in the Log Management category, the mindshare of LogRhythm Axon is 0.8%, up from 0.2% compared to the previous year. The mindshare of LogRhythm SIEM is 5.4%, up from 5.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management
Unique Categories:
No other categories found
Security Information and Event Management (SIEM)
5.0%
 

Featured Reviews

Chris Young - PeerSpot reviewer
Oct 11, 2022
Investigations are fast, intuitive, and easy to use, but silent log source detection needs to be added
For me, the most valuable feature of LogRhythm Axon is the log parsing technology it has. With my company, I'm the current policy builder, so not having to know an archaic, cryptic format and being able to visually grab a log and assign an element to a particular meta tag quickly and easily, and being able to run tests on that have been super useful. It's going to revolutionize the way the logs are identified and classified. It's super easy to navigate workflows on the user interface. It is intuitive, and Axon uses a lot of industry-standard icons. You can quickly identify where you need to go to find the tool you need to use, whether it's creating new policies, creating widgets on the dashboard, or doing administrative tasks such as creating users or assigning permissions. Regarding Axon's impact on our investigation time, the investigations are extremely fast, intuitive, and easy to use. You just have to click and drag. We can quickly drill down into things versus that with the current solution, which requires a little bit of training and understanding of the query languages. Axon provides a much better way. The fact that your investigations can be saved into a single query string that you can copy and share with your teammates is going to be a game changer. The GUI's intuitive nature and ease of use, along with being able to quickly go in and create accounts for new users in the application, have streamlined our onboarding process. It's much faster and easier than that with the existing tool. My hope is that they're going to actually integrate Axon with Active Directory so that it can be automated within your environment and you can handle that at user onboarding. The visibility provided by Axon is great. The number of widgets that it has currently, the proposed widgets that they hope to add, the number of meta tags, and the way you can manipulate and change the way that you view the data are really useful. You can create multiple dashboards with different views, pivots, and ways to analyze the data. It gives you good visibility into what's going on. It's critical for any organization, including ours, to have centralized visibility across a variety of log sources. By using different dashboards and widget configurations and by changing the way that you analyze and look at the data, you can quickly have different views. You will be able to see things that are not normally visible in current products and have a more holistic view. The Axon log management searchable database has significantly improved the way that we create investigations. The ability to click, choose, create queries, modify those queries, save them, and share them among people has been a significant improvement compared to that with the existing LogRhythm product which is very GUI driven. You have to understand the logic behind it. It's going to be a good change to be able to quickly copy, paste, and send an investigation and have the person run it rather than having to recreate it or be locked into using a shared investigation that you've created. The cloud-based architecture is going to really reduce the number of resources for SOC engineers because they're going to be able to focus more on data analysis and data concepts rather than on supporting software problems or hardware issues.
TG
Oct 16, 2022
Can search through metadata in different ways and helps reduce administrative overhead costs
The most useful feature that I've found so far is the search function. I like all the different ways you're able to search through metadata and the different ways you're able to correlate or search through logs to find out what's going on. The Event Log Filtering feature filters out certain logs that we don't need, and it has definitely helped decrease costs and increase efficiency for all of the products. With its hardware being on-premises, it reduces resources all around and makes it more efficient. The Event Log Filtering feature has also helped us reduce our administrative overhead by approximately 10 to 15%. In terms of managing workflows and cybersecurity exposure, LogRhythm SIEM is very efficient and is a good tool to use for locating and auditing any sort of activity that goes on in the network. It's very helpful for tracking and finding, even down to a granular level or up to events. It's definitely been helpful with blind spots, especially in terms of vulnerabilities that aren't picked up by the scanners that we have. There were multiple instances where we've had brute force and various types of attacks that were quickly escalated to us via alarms and that were easily read and acted on.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The search feature within AXON is pretty robust. It's actually very fast in comparison to that in the previous platform. It's going to really help with investigations when they get rules put into the system."
"For me, the most valuable feature of LogRhythm AXON is the log parsing technology it has. With my company, I'm the current policy builder, so not having to know an archaic, cryptic format and being able to visually grab a log and assign an element to a particular meta tag quickly and easily and being able to run tests on that have been super useful. It's going to revolutionize the way the logs are identified and classified."
"Scalability-wise, LogRhythm Axon is a good product."
"The most valuable features of the solution are network monitoring, user behavior analytics, and log collection."
"Technical support is very helpful and responsive."
"Their customer support is friendly and willing to help."
"LogRhythm NextGen SIEM is customizable, simple to manage, and there are many features. The solution does not require an expert to be able to use it, anyone can use it."
"I like LogRhythm's ease of use. The solution has improved compared to previous versions. It had many issues before, like integration, the console, creating reports, false positives, etc. The AI engine has made it stronger in the latest version."
"The PCI compliance pieces that help us produce reports for our external auditor, and their support."
"LogRhythm NextGen SIEM covers all our primary security analysis needs. It makes it easier for us to analyze threats and improves our response times. It's a versatile platform that performs queries fast compared to other SIEM solutions."
"It has centralized monitoring for our security operations. Therefore, it improves our analysts' work."
 

Cons

"It's a very beta solution right now, and there are so many features that we would like to see added in, such as integration with Active Directory, which is essential for user management and for streamlining that process significantly."
"I'd give technical support a five out of ten. There are definitely areas that they can improve upon. Faster response times would be wonderful, and having more knowledgeable staff who provide the support would also be great."
"With LogRhythm Axon, stability and support are areas with shortcomings where improvements are required."
"I would like to see case management become more independent from LogRhythm itself."
"I have probably submitted half a dozen log parser requests, and I keep finding more stuff that we need to keep an eye on that doesn't have a definition in LogRhythm."
"We do about 750 million a day and some days we do 715 million. Some days we do 820 million or 1.2 billion. But there's no way to drill in and find out: "Where did I get 400,000 extra logs today?" What was going on in my environment that I was able to absorb that peak? I have no way to identify it without running reports, which will produce a long-running PDF that I have to somehow compare to another long-running PDF... I would like to see like profiling behavior awareness around systems like they've been gunned to do around users with UEBA."
"One thing we have mentioned to them before is that we'd like to be able to do searches, or drill-downs, directly from an alarm. When you click it and the Inspector tab slides out, that might be a good place to be able to click the host to search for the last 24 hours. I know the search is right there but it would be even nicer to just click that and then have an option to search something there."
"More detail in the alerts given to avoid additional searches, as often the source or destination associated with the alert is not evidenced."
"My biggest complaint is documentation. Everyone tells me, "We have documentation on the Community site." I have searched for different types of documentation on numerous occasions, and it might be there, but it's not easily findable."
"The security playbook could be pre-defined and available to other analysts with similar security issues."
"We've tried to work with a couple of engineering department guys there. We've called them and called them but we never hear anything back."
 

Pricing and Cost Advice

"I know that there are certain payments to be made towards the licensing costs attached to the product...The pricing of LogRhythm Axon falls under the mid-range, in my opinion."
"I would recommend that whatever sales quotes to them upfront, they will probably go up. Because they are probably going to outgrow that very quickly or once they start getting everything into it, they are going to have to move up anyway."
"On a scale of one to ten, I'd rate the pricing of this solution as a seven - not too expensive but not cheap either. Regarding licensing costs, it varies depending on factors like being a partner or an end user, but there are no additional costs aside from standard licensing fees for the basic SIEM solution."
"LogRhythm's licensing is based on MPS. There are some add-on features like advanced UEBA, the cloud component for advanced UEBA, and SIEM."
"The pricing is very reasonable and accessible compared to other products in the market but I am not very sure about the exact licensing cost per year for our company."
"On a scale of one to ten, where one is low, and ten is high, I rate the pricing between six and seven."
"Look for whatever will give you the most value. That's the main point. It is not one size fits all."
"If you don't have your staff, absolutely look into the co-pilot and factor that into your cost evaluation."
"Everything is expensive with LogRhythm, and you don't get anything for free."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
789,291 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Government
14%
Computer Software Company
12%
Performing Arts
7%
Manufacturing Company
7%
Educational Organization
38%
Computer Software Company
9%
Government
6%
Financial Services Firm
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about LogRhythm AXON?
Scalability-wise, LogRhythm Axon is a good product.
What is your experience regarding pricing and costs for LogRhythm AXON?
I know that there are certain payments to be made towards the licensing costs attached to the product. LogRhythm Axon is neither a cheap nor an expensive solution, especially when compared to produ...
What needs improvement with LogRhythm AXON?
LogRhythm Axon has come up with the AI cloud concept in the market. When it comes to the AI cloud concept, you need to consider that every region has differences when it comes to data sovereignty. ...
What is the difference between log management and SIEM?
Rony, Daniel's answer is right on the money. There are many solutions for each in the market, a lot depends upon your ability to manage such tools and your budget. A small operation may be best s...
What do you like most about LogRhythm NextGen SIEM?
LogRhythm does a very good job of helping SOCs manage their workflows.
What is your experience regarding pricing and costs for LogRhythm NextGen SIEM?
LogRhythm's pricing and licensing are extremely competitive and it's one of the top three reasons we continue to invest in the platform.
 

Comparisons

 

Also Known As

No data available
LogRhythm NextGen SIEM, LogRhythm, LogRhythm Threat Lifecycle Management, LogRhythm TLM
 

Learn More

Video not available
 

Overview

 

Sample Customers

Information Not Available
Macy's, NASA, Fujitsu, US Air Force, EY, Abbott, HD Supply, SAB Miller, UCLA, Raytheon, Amtrak, Cargill
Find out what your peers are saying about LogRhythm Axon vs. LogRhythm SIEM and other solutions. Updated: June 2024.
789,291 professionals have used our research since 2012.