Huntress Managed SIEM Reviews

My main use case for Huntress Managed SIEM is working with partners who will then be able to deliver the customer needs to the end user. I work with enabling partners and discuss security information and SIEM solutions as a whole along with different vendors such as Exabeam, Huntress, Splunk, and Sentinel.

I primarily use Huntress Managed SIEM to help our partners deliver it to the customers, providing intelligent data filtering and real-time detection. The solution collects logs, gathers data, and ensures that partners can collect logs, detect threats, and investigate them.

Huntress Managed SIEM is designed to make powerful threat response and compliance support accessible without complexities. It is a very simple solution to use, especially compared to the cost associated with a traditional SIEM. The feature of intelligent data filtering stands out significantly.

One of the best features Huntress Managed SIEM offers is how simple it is to set up. The alerts are filtered so I do not get tons of alerts and unnecessary noise. Low expertise is needed because traditional SIEMs normally require quite high knowledge and expertise. Huntress Managed SIEM includes human analysis, so it is not all aided by AI.

Huntress Managed SIEM combines machine detection with human investigation, which adds context and helps confirm if something is actually a threat rather than just noise. This provides a real-life comparison of who is affected, how it happened, if it is spreading, and how bad it is, along with clear actions that can be taken, such as isolating a machine, enabling MFA, resetting the password, or completely killing the process. Without humans, everything looks urgent, but with them, it provides real-time, real risk escalation which prevents alert fatigue. The ROI of human analysis lies in time saved; I am not doing a deep investigation or log digging for an hour, allowing for fast incident response.

The confidence aspect provided by Huntress Managed SIEM is significant because it prevents costly mistakes and breaches. The massive reduction in downtime gives people confidence knowing they will not lose money due to easily avoidable problems. Additionally, I do not incur high costs for numerous SOC analysts when I can use Huntress Managed SIEM, which replaces costly security overheads. Those are major points of ROI that help ensure confidence, not only regarding financial aspects but also compliance benefits through audit logs, security reporting, and satisfying cyber insurance requirements.

I believe Huntress Managed SIEM could be improved by increasing integrations with non-Microsoft solutions as this would broaden its appeal. A broader out-of-the-box solution for diverse environments including IoT, Mac OS, and Linux servers would be valuable.

I would rate Huntress Managed SIEM an eight because a couple of things could be changed, such as having more integrations with non-Microsoft systems, improved customization on the dashboard, and enhanced reporting in the threat intelligence updates. Being unable to click on new niche variants of threats is another point I would mention, but overall an eight out of ten is a good score because I think it is a very well-priced solution for its capabilities and all the positives I have outlined.

The eight rating is primarily influenced by those integration and customization points I mentioned, which are the main requests from customers.

I have been using Huntress Managed SIEM for about twelve months, and I have eighteen months of selling SIEM experience.

Huntress Managed SIEM is very stable, which I consider a major positive. I can rely on its capacity to deliver true detections without a lot of noise, which forms a big part of why I think it is an excellent solution.

Huntress Managed SIEM performs well regarding scalability, as does any other SIEM solution. The level of expertise needed is quite low, making scalability really good. It is designed for small to medium businesses; however, the challenge arises in enterprise settings. The scalability for SMEs and MSPs is noteworthy for a few hundred endpoints, but it struggles with scalability when dealing with high logs, multi-site, multi-tenant setups, and large volumes of endpoints, which poses a challenge.

Customer support through our channel partners is excellent. They have a great team, and the CSMs are really good. They operate a solid channel model within the UK channel.

I have previously used various different solutions, including Exabeam, and looked into others such as Splunk.

The pricing, setup cost, and licensing for Huntress Managed SIEM are quite good, averaging around £20 to £40, though this is variable. However, it pays for itself by avoiding breaches, reducing downtime, and eliminating the need to pay for highly expert SOC analysts, which can cost over £100,000.

Huntress Managed SIEM has positively impacted my organization by providing several ROIs. First, the cost is typically £20 to £50 per endpoint per month, although this varies. Avoiding one breach can save in excess of £50,000 to £200,000. The reduction in downtime can exceed £10,000 plus, and it also avoids the need to hire SOC staff, which can cost over £100,000. I can expect an estimated five to twenty times return on investment with this solution.

Beyond the money, the real ROI is the confidence during incidents, knowing what has actually happened instead of what could be happening. I can make fast decisions without guessing, aided by human support, and sleep at night knowing that alerts have been actioned and are legitimate.

While I do not have the exact numbers myself, I acknowledge that any breach can range from £10,000 to over £100,000, with average downtime per day costing tens of thousands. Huntress Managed SIEM eradicates these losses and provides a complete return on investment by preventing downtime and breaches, ensuring no money is lost.

Before choosing Huntress Managed SIEM, I evaluated other options such as Splunk, Exabeam, and Sentinel, among others.

My advice for others looking into using Huntress Managed SIEM is to research and compare it with other SIEM solutions. If I am a small to medium enterprise that wants to avoid spending a lot and minimize the risk of breaches while receiving alerts without excessive noise, this is a good solution.

Huntress Managed SIEM is a great solution overall. To summarize, Huntress Managed SIEM is a security solution that offers event management designed to make powerful threat detection, response, and compliance support accessible without the complexities and costs of traditional SIEMs. It delivers real-time detection, operates a twenty-four/seven AI-assisted SOC center, ensures effective threat management, and allows data retention for compliance needs from one up to seven years. It is well-priced and provides significant value.

The importance of Huntress Managed SIEM offering security and compliance solutions without complexity is paramount for my organization as it fulfills the requirement for compliance to enlist logs that continuously check my infrastructure with SIEM and exposure management. Having this in place ensures I can prove I am actively monitoring, protecting, and recording security effectively while showing compliance. Most environments require log collection, monitoring, incident detection, and that is exactly what Huntress Managed SIEM does.

The time to see actionable detections after deploying Huntress Managed SIEM is quite good; it has a quick time to value. Implementing it does not require extensive expertise to run Huntress Managed SIEM within my infrastructure, which is a positive, and I can see the threat detection via logs very quickly, making the time to value really fast.

I assess the visibility provided by Huntress Managed SIEM on the same day of deployment as very easy. Once I start enrolling and using it, the logs are clear to find. The setup is simple, and the alerts are well-filtered, so I do not experience alert noise and fatigue. Being able to use that as a time to value, along with low expertise needed, is a really good point.

I would assess Huntress Managed SIEM's enhanced correlation and detection coverage in identifying potential threats earlier in the attack life cycle as quite high quality. The only negative is that niche or newer threat variants with failed alerts are not picked up as much, which is probably why I would categorize it as a con.

My experience with the behavioral analytics feature in Huntress Managed SIEM reflects that this is a con, as I feel the competitor Exabeam performs this to a greater degree.

I rate Huntress Managed SIEM an eight out of ten overall.

My main use case for Huntress Managed SIEM is to monitor our infrastructure.

To monitor my events, one special thing compared to other SIEM tools is that it shows only important logs instead of displaying all logs. I do not need to see 1000 or 10,000 logs; I only need to see 10 logs that are very important.

This is important for my team because it will save my time and help us catch issues faster.

Huntress Managed SIEM has positively impacted my organization by reducing employee costs and reducing the time required to manage logs.

I can share that recently, I experienced a server attack which proved to be very helpful. We do not have to analyze all events; we can easily take the logs we need through the tool. Alerts will be triggered before the duration of the hack is complete.

In my opinion, the best feature Huntress Managed SIEM offers is the advanced filter AI. Instead of showing all logs, it shows only important logs, which is a very important capability.

This feature makes my day easier because we do not have to take logs one by one, and we do not have to take unnecessary logs. We only have to take the important logs, and we can easily find the root cause through those important logs instead of taking all logs. Whether you see 10,000 logs or only 100 logs, identifying the important ones will be very valuable for you.

I did not find anything for improvement; Huntress Managed SIEM is a completely perfect and stable product.

I have been using Huntress Managed SIEM for the last three months.

Huntress Managed SIEM is stable in my experience.

In my experience, Huntress Managed SIEM's scalability is very good and stable.

Training will be provided by the Huntress team, which is very easy and very collaborative. They will guide us through all aspects of the deployment. That has been a very best experience of my deployment.

I did not evaluate a different solution before Huntress Managed SIEM; I received that solution from management to use, and we started using it.

The time it took to see actionable detections after deploying Huntress Managed SIEM saved my team much time. After deployment, it saved a lot of time for my team to manage and handle logs. That has been very perfect.

On the same day of deployment, the implementation was very good. Training was provided by the Huntress team, which was very easy and very collaborative. They guided us through all aspects of the deployment.

I have seen a return on investment from using Huntress Managed SIEM because it saves a lot of time.

Before choosing Huntress Managed SIEM, we did not evaluate other options; we received approval for this tool only from management and started using Huntress Managed SIEM.

I do have something else to add about how I use Huntress Managed SIEM in my workflow; we are taking the logs from all of our systems. It will help us to manage all our infrastructure.

I am not using Huntress Managed SIEM's feature that requires no alert tuning; we are using it for taking the alerts only.

I would assess Huntress Managed SIEM's enhanced correlation and detection coverage in identifying potential threats earlier in the attack life cycle as very beneficial. Previously, I had to check all logs manually from all applications, and this tool helps us filter all logs and show only the important ones, which is very beneficial.

If you want to secure your infrastructure and save a lot of time for your organization, you can use Huntress Managed SIEM. It saves a lot of time. Instead of showing all logs, you see only the alert logs, which will be very beneficial for you. I would rate Huntress Managed SIEM a 10 out of 10.

My use case is for security information and event management.

The best feature in Huntress Managed SIEM is the automated threat detection.

I also find the compliance reports included at no extra cost to be quite valuable.

Regarding the feature that requires no alert tuning, we are using the advanced filtering so we only see actionable events and not lots of noise, which filters out any false positives or areas of no concern.

The enhanced correlation and detection coverage in identifying potential threats early on appears to be working well based on what I have observed and heard.

During the year I have been using it, I have seen improvements such as no alert fatigue, which is beneficial, and obviously the automated threat detection. I think it is fairly easy for our techs to manage as well because Huntress Managed SIEM's SOC carries out most of the workload, making it a better operational advantage.

In the past year, I have seen that the solution has saved us time.

In my opinion, there is room for improvement in Huntress Managed SIEM, particularly in integration with third-party solutions.

For example, integration with SentinelOne as a solution where improvement could be beneficial.

My experience with the behavioral analytics feature is that we think it is good, but there is still some room for improvement as it is still maturing. I have been satisfied with it so far.

I have been using the solution for about 12 months.

I would rate the stability as an eight.

Regarding scalability, I would rate it as an eight.

I would rate the technical support as an eight out of ten.

I am not sure off the top of my head which other solutions I have tried or tested, but I would be able to check on that.

Regarding the deployment process, I had no challenges and would say it was deployed in a day.

Huntress Managed SIEM does not require any maintenance on my end, as Huntress manages most of that from their SOC.

I would say it has saved us about 20 percent.

Regarding pricing, I think it is cost-efficient. I believe most competitors charge by the data slightly differently compared to how this solution does, as it is per data source rather than data size in gigabytes, so I think it is good on that front.

I do not have problems comparing Huntress Managed SIEM with other SIEM solutions.

I noticed the value of the solution probably after a few months.

This assessment is based globally.

I am not really sure on the process of aligning Huntress Managed SIEM, specifically its compliance reports, with our existing security framework, as it is not something I am involved with.

I would recommend this product to other users in terms of pricing and support, as I think it is a good product. I would rate this product an overall 8 out of 10.

Huntress is our primary MDR solution, though we have had some clients on Arctic Wolf and Perch Security. We deploy it across all different verticals, including hospitals and healthcare, small businesses, law offices, and municipalities, as part of our full stack.

We use the complete Huntress stack, which includes the MDR, ITDR, and the SIEM. We were one of their early testers for the SIEM.

Huntress's response time is far superior to that of any other vendor we have tested for MDR.

It removes the fear of threats, knowing that Huntress Managed SIEM is monitoring the environment and will catch items and alert us appropriately, without noise.

I would appreciate more features in the stack. I would like Huntress MDR and SIEM to integrate with EDRs like SentinelOne to combine that level of intelligence and information into their stack so that they can leverage whatever protections the client has and gather that intelligence to help with the MDR side.

Regarding the SIEM, I would like to see more features added. I would appreciate the capability of setting our own alerting based on certain triggers within the logs so that we can compete and fill a void that their SIEM has compared to other SIEMs in the industry such as Perch Security for ConnectWise.

I have been using this solution for approximately ten years, since Huntress was a small startup.

We do not have to reach out to support very often. When we do, sometimes the cases take a bit more time. I would rate their support at an eight. There is always room for improvement. Usually when we reach out, it is for a bigger issue that may require development expertise. I find that some of that takes time with any vendor, and that can add delays in communication because you are communicating to tier one and tier two people who are then communicating on the back end, so you are not getting updates as frequently.

Huntress is priced competitively in the industry. We appreciate their model in terms of MSP focus with tiered pricing. We understand what the pricing will be based on how many agents we have, which makes planning easy when selling a product and baking it into ongoing costs as part of a stack.

ConnectWise has a fully featured SIEM solution in terms of alert and log generation, and alerting based on that, whereas Huntress Managed SIEM is working to remove much of the burden, which is beneficial for us. However, there are certain alerts that I would like to have automatically create a ticket or generate an email based on being generated or found in the logs. This review receives an overall rating of eight out of ten.

My main use case for Huntress Managed SIEM is setting up security logging for our firewalls. My primary purpose is to set them up for compliance reasons, and in addition to that, it is good to use when analyzing situations in which an endpoint device may have been compromised, having that additional data there to get information for further review.

Huntress Managed SIEM has positively impacted my organization primarily by helping us help our customers achieve the compliance levels at which they are trying to achieve, and it also gives us additional information when we are reacting to security events that are presented from Huntress's SOC.

A specific example of how having that extra information from Huntress Managed SIEM has helped me respond to a security event or achieve compliance is that it has become a mandatory requirement for our customers with CMMC to have data log retention, and Huntress Managed SIEM allows that functionality.

The best features Huntress Managed SIEM offers include the wide variety of ways in which the SIEM can gather source materials, how long the data can be stored for, the volume of storage, and the ease of use of the queries using the AI search function.

The AI search function has simplified the ability to search for syslog events; prior to the AI feature, I would have had to use Google to build the ESQL queries needed to gather the information, whereas it is now nice to be able to have it inside of the platform.

I have not run into a situation where there has been a problem, and even when I have reached out to customer technical support, they have been able to immediately address any problems that I have encountered.

Huntress Managed SIEM's scalability is fine and works great, as we have many customers already in the platform.

The customer support is excellent.

The advice I would give to others looking into using Huntress Managed SIEM is to review all relevant data and help guides before deployment. I would rate this product a 9.

My main use case for Huntress Managed SIEM is SIEM. I use Huntress Managed SIEM in my organization to monitor firewalls for all my customers. Day-to-day, that process mostly involves looking for alerts. My setup and workflow are straightforward without anything unique to add.

The best features Huntress Managed SIEM offers are real people looking at the alerts. Having real people reviewing the alerts compared to automated systems gives me confidence and peace of mind. Huntress Managed SIEM has positively impacted my organization because we did not have anything before and now we do. The difference that has been made is evident in that the alerts actually get picked up on.

Huntress Managed SIEM can be improved by adding the ability to have multiple endpoints delivering SIEM log collectors to a single cloud agent. There are no other improvements needed for Huntress Managed SIEM beyond what I have mentioned.

I have been using Huntress Managed SIEM for six months.

I would rate Huntress Managed SIEM a 10 out of 10. I give it a 10 because it is good.

Regarding Huntress Managed SIEM's AI capabilities, I have not used them, so I am not sure about their effectiveness. I also have not used Huntress Managed SIEM's AI features to assess their accuracy and reliability of output.

My advice to others looking into using Huntress Managed SIEM is to do it.

We use it for log collection on customers that have compliance requirements.

The single pane of glass management with the other security products we use from Huntress is incredibly valuable. It allows us to manage multiple Huntress products in a central place, and we don't have ten different portals; we have one.

There should be better exclusions of log types and the ability to exclude specific types of logs that might be using a lot of data.

I actually just started using it. It's a fairly new product in our company, and I'd say it's been about a month.

It's been stable.

It's a cloud SaaS product, so I would assume it's scalable. I've never run into an issue with it.

We switched from Total DYL. Price was part of the reason, however, moving everything under that single product was incredibly valuable.

The initial deployment was easy. I'm not sure if it uses the same agent as the EDR or if it's a separate agent, however, our security person who deployed it said it was super easy to deploy.

It was just us, no third party was involved. The deployment was a one-person job.

I think the pricing for SIEM is good.

I advise you to utilize Huntress as a resource. Huntress is a great company and incredibly helpful with deployment. Some software vendors are not helpful, leaving you out on an island. Huntress is incredibly helpful. 

On a scale from one to ten, I would rate SIEM an eight.