Logpoint Logo

Logpoint Reviews

Vendor: Logpoint
3.7 out of 5
969 followers
Post review

What is Logpoint?UNIXBusinessApplication

Logpoint is a cutting-edge security information and event management (SIEM) solution that is designed to be intuitive and flexible enough to be used by an array of different businesses. It is capable of expanding according to its users' needs. 

Get the Logpoint Buyer's Guide and find out what your peers are saying about Logpoint, IBM Security QRadar, Splunk Enterprise Security and more!
Buyer's Guide
Logpoint
September 2023
Get the report
Helped 734,678 peers since 2012

Featured reviews

Read more reviews
 
Key learnings from peers

Pricing

LogPoint's pricing is competitive and less expensive than its competitors. The marketing team is accommodating and offers good reductions in price. The licensing and pricing are transparent. 

It is considered cost-effective and offers fixed pricing, unlike other log management systems that have variable pricing based on log consumption. LogPoint also offers discounts for public organizations and provides a decent discount for businesses with specific needs. 

ROI

Logpoint has provided a positive return on investment for users. Logpoint offers good value for the money and a favorable cost model.

Primary Use Case

LogPoint is primarily used to protect clients' environments by identifying users and the tools they access. It is also used for triage, log collection, and security analysis. 

Additionally, LogPoint is utilized for data aggregation, creating custom use cases, and triggering escalations to the IT team. It is used for compliance reasons, focusing on separation of duties, privilege escalation, and access to sensitive data. 

LogPoint is also used as a full-blown team system for orchestrating incident responses and as a repository for logs within office systems. It monitors users and endpoints, studying their activities and triggering alarms for any deviations.

Valuable Features

LogPoint's most valuable features include its user-friendly interface and integration capabilities, surpassing other products like Wazuh and LogRhythm. The exceptional dashboard and cost-efficiency are also highly regarded. 

Users appreciate the ease of use, powerful query language, and accessibility through the web interface. The user and entity behavior analytics (UEBA) feature is considered valuable, along with the ability to create tailored use cases based on assets. 

The combination of SIEM and SOAR in one solution sets LogPoint apart. Additionally, the translation service provided by LogPoint for logs from exotic applications is highly praised. The search feature, dashboards, and centralization of logs are also seen as valuable. 

LogPoint's comprehensive capabilities for gathering and parsing logs from various systems, along with its use of AI and machine learning technology for monitoring endpoints and user activity, make it a top choice in the market.

Room for Improvement

Improvements can be made to LogPoint in several areas. Firstly, the agent installation method needs improvement as it currently requires manual updating of IP addresses and codes. This process should be streamlined to allow for easier integration of systems into LogPoint without the need for agents. Additionally, the user and installation guides should be improved to make them more accessible to users with basic knowledge.

The graphical user interface (GUI) of LogPoint could also use improvement. While the solution is usable, the GUI lacks aesthetics and is considered outdated. Other SIEM tools such as IBM QRadar and LogRhythm have more user-friendly and visually appealing UIs. LogPoint should consider enhancing its UI with features like color and a custom dashboard to provide a better user experience.

Log management could be better in terms of log transportation from a password to the client system, as it currently takes time. LogPoint should work on optimizing this process for more efficient log management.

Handling multiple types of logs is another area for improvement. LogPoint sometimes discards logs and has difficulty processing various types of logs. Adding a multiple-log processing feature in the next release would be beneficial.

Memory consumption and performance issues have been reported with LogPoint, especially when running as virtual services. These issues should be addressed to improve the overall performance of the solution.

While LogPoint provides preset dashboards, customization options are limited. Users should have the ability to create and customize dashboards according to their specific needs.

One downside of LogPoint is that it is not a Software-as-a-Service (SaaS) solution and can only be deployed on-premises. In today's industry, it is more favorable to have cloud-native solutions that can be deployed in popular cloud platforms. LogPoint should consider offering a cloud deployment option for easier management and cost savings.

Performance is another area where LogPoint can improve. Pure speed and efficient data processing are important factors that LogPoint should focus on to enhance its performance.

Lastly, LogPoint's documentation needs improvement. While the functionality of the product is considered good, the documentation should be enhanced to provide better support and guidance to users. Ad-hoc reporting capabilities can also be improved to allow users to create custom reports more easily.

Initial Setup

The initial setup for LogPoint was described as complex by some users, especially for those without experience using the solution. However, others found it relatively easy and straightforward. 

The deployment time varied, with some implementing it within a few weeks while others took several months. The number of systems needing integration with LogPoint also affected the setup time.  

Maintenance and configuration required the involvement of a system administrator and security analyst. 

Some users had the vendor assist with the setup, while others conducted a thorough testing period before purchasing. 

Scalability

Logpoint is highly scalable, with several customers ranging from large enterprises to medium enterprises. 

Customer Service and Support

LogPoint's customer service and support have received positive feedback from users. The support provided in Asia is highly praised, with the team being consistently active and responsive, addressing queries within an hour. 

Opening support tickets and connecting with the LogPoint support team is described as easy and efficient. However, there is some criticism regarding the lower-level support team's ability to understand issues with LogPoint, leading to frequent escalations to the higher-level team. Comparatively, the L1 support team of IBM QRadar is considered more competent. 

Despite this, LogPoint's technical support is generally rated positively, with prompt ticket response and solutions provided directly by the vendor. 

Stability

The stability of the Logpoint solution is generally good, with some minor issues reported by a few users. These issues were resolved by adding more resources such as RAM or CPUs. However, there were some glitches with LogPoint, particularly related to exceeding EPS limits, data normalization, and handling multiple types of logs. In some cases, logs were discarded, leading some users to switch to LogRhythm. 

Despite these concerns, other users reported that LogPoint has been stable and reliable for them, with no major hiccups. It is also worth noting that LogPoint is recognized by Gartner and considered a strong player in the SIEM market, indicating its solid and stable product.

Pricing

LogPoint's pricing is competitive and less expensive than its competitors. The marketing team is accommodating and offers good reductions in price. The licensing and pricing are transparent. 

It is considered cost-effective and offers fixed pricing, unlike other log management systems that have variable pricing based on log consumption. LogPoint also offers discounts for public organizations and provides a decent discount for businesses with specific needs. 

ROI

Logpoint has provided a positive return on investment for users. Logpoint offers good value for the money and a favorable cost model.

Primary Use Case

LogPoint is primarily used to protect clients' environments by identifying users and the tools they access. It is also used for triage, log collection, and security analysis. 

Additionally, LogPoint is utilized for data aggregation, creating custom use cases, and triggering escalations to the IT team. It is used for compliance reasons, focusing on separation of duties, privilege escalation, and access to sensitive data. 

LogPoint is also used as a full-blown team system for orchestrating incident responses and as a repository for logs within office systems. It monitors users and endpoints, studying their activities and triggering alarms for any deviations.

Valuable Features

LogPoint's most valuable features include its user-friendly interface and integration capabilities, surpassing other products like Wazuh and LogRhythm. The exceptional dashboard and cost-efficiency are also highly regarded. 

Users appreciate the ease of use, powerful query language, and accessibility through the web interface. The user and entity behavior analytics (UEBA) feature is considered valuable, along with the ability to create tailored use cases based on assets. 

The combination of SIEM and SOAR in one solution sets LogPoint apart. Additionally, the translation service provided by LogPoint for logs from exotic applications is highly praised. The search feature, dashboards, and centralization of logs are also seen as valuable. 

LogPoint's comprehensive capabilities for gathering and parsing logs from various systems, along with its use of AI and machine learning technology for monitoring endpoints and user activity, make it a top choice in the market.

Room for Improvement

Improvements can be made to LogPoint in several areas. Firstly, the agent installation method needs improvement as it currently requires manual updating of IP addresses and codes. This process should be streamlined to allow for easier integration of systems into LogPoint without the need for agents. Additionally, the user and installation guides should be improved to make them more accessible to users with basic knowledge.

The graphical user interface (GUI) of LogPoint could also use improvement. While the solution is usable, the GUI lacks aesthetics and is considered outdated. Other SIEM tools such as IBM QRadar and LogRhythm have more user-friendly and visually appealing UIs. LogPoint should consider enhancing its UI with features like color and a custom dashboard to provide a better user experience.

Log management could be better in terms of log transportation from a password to the client system, as it currently takes time. LogPoint should work on optimizing this process for more efficient log management.

Handling multiple types of logs is another area for improvement. LogPoint sometimes discards logs and has difficulty processing various types of logs. Adding a multiple-log processing feature in the next release would be beneficial.

Memory consumption and performance issues have been reported with LogPoint, especially when running as virtual services. These issues should be addressed to improve the overall performance of the solution.

While LogPoint provides preset dashboards, customization options are limited. Users should have the ability to create and customize dashboards according to their specific needs.

One downside of LogPoint is that it is not a Software-as-a-Service (SaaS) solution and can only be deployed on-premises. In today's industry, it is more favorable to have cloud-native solutions that can be deployed in popular cloud platforms. LogPoint should consider offering a cloud deployment option for easier management and cost savings.

Performance is another area where LogPoint can improve. Pure speed and efficient data processing are important factors that LogPoint should focus on to enhance its performance.

Lastly, LogPoint's documentation needs improvement. While the functionality of the product is considered good, the documentation should be enhanced to provide better support and guidance to users. Ad-hoc reporting capabilities can also be improved to allow users to create custom reports more easily.

Initial Setup

The initial setup for LogPoint was described as complex by some users, especially for those without experience using the solution. However, others found it relatively easy and straightforward. 

The deployment time varied, with some implementing it within a few weeks while others took several months. The number of systems needing integration with LogPoint also affected the setup time.  

Maintenance and configuration required the involvement of a system administrator and security analyst. 

Some users had the vendor assist with the setup, while others conducted a thorough testing period before purchasing. 

Scalability

Logpoint is highly scalable, with several customers ranging from large enterprises to medium enterprises. 

Customer Service and Support

LogPoint's customer service and support have received positive feedback from users. The support provided in Asia is highly praised, with the team being consistently active and responsive, addressing queries within an hour. 

Opening support tickets and connecting with the LogPoint support team is described as easy and efficient. However, there is some criticism regarding the lower-level support team's ability to understand issues with LogPoint, leading to frequent escalations to the higher-level team. Comparatively, the L1 support team of IBM QRadar is considered more competent. 

Despite this, LogPoint's technical support is generally rated positively, with prompt ticket response and solutions provided directly by the vendor. 

Stability

The stability of the Logpoint solution is generally good, with some minor issues reported by a few users. These issues were resolved by adding more resources such as RAM or CPUs. However, there were some glitches with LogPoint, particularly related to exceeding EPS limits, data normalization, and handling multiple types of logs. In some cases, logs were discarded, leading some users to switch to LogRhythm. 

Despite these concerns, other users reported that LogPoint has been stable and reliable for them, with no major hiccups. It is also worth noting that LogPoint is recognized by Gartner and considered a strong player in the SIEM market, indicating its solid and stable product.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Logpoint Buyer's Guide for additional reliable information.
Go!

Learn more about Logpoint

Benefits of Logpoint

Some of the benefits of using Logpoint include:

  • Unifies data logs: Logpoint creates a single system of classification for collected data. It makes it easy for users to search for and find data, which aids users when they are creating reports or alerts. Users can conserve resources while at the same time seeing a rise in the efficiency of their business operations.
  • Intuitive solution design: Logpoint is designed so that anyone can utilize all of its features, even if they are not an expert in network security. Logpoint’s UI is simple enough that users can utilize it without undergoing extensive training. 
  • Highly flexible: Logpoint is designed so that users can scale it linearly to accommodate projects that are large and complex. This allows users to expand the scope of their projects according to their needs without worrying that their infrastructure won’t be able to handle the increase in size. The solution’s security features can be deployed both on the cloud and in a physical environment. 
  • Simple role-based access security: Logpoint allows administrators to employ Microsoft’s active directory (AD) and a Lightweight Directory Access Protocol to manage user access. These can help administrators protect their systems from being abused or otherwise harmed by bad actors. 

Reviews from Real Users

Logpoint is a security and management solution that stands out among its competitors for a number of reasons. Two major ones are its data gathering and artificial intelligence (AI) capabilities. Logpoint enables users to not only gather the data, but also to maximize both the amount of data that can be gathered and its usefulness. It removes many of the challenges that users may face in data collection. The solution allows users to set rules for collection and then it pulls information from sources that meet the rules that have been set. This data is then broken into manageable segments and ordered. Users can then analyze these ordered segments with ease. Additionally, LogPoint utilizes both machine learning and AI technology. Users gain the ability to protect themselves from and if necessary resolve emerging threats as soon as they arise. The AI sets security parameters for a user’s system. These act as a baseline that are triggered and notify the user if anything deviates from the rules that it set up. 

The chief infrastructure & security officer at a financial services firm writes, “It is a very comprehensive solution for gathering data. It has got a lot of capabilities for collecting logs from different systems. Logs are notoriously difficult to collect because they come in all formats. Logpoint has a very sophisticated mechanism for you to be able to connect to or listen to a system, get the data, and parse it. Logs come in text formats that are not easily parsed because all logs are not the same, but with Logpoint, you can define a policy for collecting the data. You can create a parser very quickly to get the logs into a structured mechanism so that you can analyze them.”

A. Secca., a Cyber Security Analyst at a transportation company, writes, “It is an AI technology because it is using machine learning technology. So far, there is nothing better out there for UEBA in terms of monitoring endpoints and user activity. It is using machine learning language, so it is right at the top. It provides that capability and monitors all of the user’s activities. It devises a baseline and monitors if there is any deviation from the baseline.”

Logpoint is the #7 ranked solution in top User Behavior Analytics - UEBA tools, #10 ranked solution in SOAR tools, #18 ranked solution in top Security Information and Event Management (SIEM) tools, #22 ranked solution in Log Management Software, and #28 ranked solution in EDR tools. PeerSpot users give Logpoint an average rating of 7.4 out of 10. Logpoint is most commonly compared to IBM Security QRadar: Logpoint vs IBM Security QRadar. Logpoint is popular among the midsize enterprise segment, accounting for 62% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a educational organization, accounting for 56% of all views.

Logpoint video

Logpoint customers

AP Pension, Copenhagen Airports, KMD, Terma, DISA, Danish Crown, Durham City Council, Game, TopDanmark, Lahti Energia, Energi Midt, Synoptik, Eissmann Group Automotive, Aligro, CG50...

Product Categories
Security Information and Event Management (SIEM)
Log Management
User Behavior Analytics - UEBA
EDR (Endpoint Detection and Response)
Security Orchestration Automation and Response (SOAR)
Popular Comparisons
IBM Security QRadar vs Logpoint Logo
IBM Security QRadar vs Logpoint
Splunk Enterprise Security vs Logpoint Logo
Splunk Enterprise Security vs Logpoint
LogRhythm SIEM vs Logpoint Logo
LogRhythm SIEM vs Logpoint
Microsoft Sentinel vs Logpoint Logo
Microsoft Sentinel vs Logpoint
Elastic Security vs Logpoint Logo
Elastic Security vs Logpoint
Rapid7 InsightIDR vs Logpoint Logo
Rapid7 InsightIDR vs Logpoint
Fortinet FortiSIEM vs Logpoint Logo
Fortinet FortiSIEM vs Logpoint
Cybereason Endpoint Detection & Response vs Logpoint Logo
Cybereason Endpoint Detection & Response vs Logpoint
AlienVault OSSIM vs Logpoint Logo
AlienVault OSSIM vs Logpoint
Logsign Next-Gen SIEM vs Logpoint Logo
Logsign Next-Gen SIEM vs Logpoint
ArcSight Enterprise Security Manager (ESM) vs Logpoint Logo
ArcSight Enterprise Security Manager (ESM) vs Logpoint
SolarWinds Security Event Manager vs Logpoint Logo
SolarWinds Security Event Manager vs Logpoint
USM Anywhere vs Logpoint Logo
USM Anywhere vs Logpoint
See all alternatives
Related Articles
Ertugrul Akbas - PeerSpot reviewer
Manager at ANET
The Math of SIEM Comparison
Read more
AB
Executive Account Manager
How small and medium-sized businesses can prevent potential cyber threats
Read more
Related questions
  • 1,071
What Solution for SIEM is Best To Be NIST 800-171 Compliant?
  • 163
When evaluating Security Information and Event Management (SIEM), what aspect do you think is the most important feature to look for?
  • 338
What are the main differences between Nessus and Arcsight?
  • 589
Which is the best SIEM solution for a government organization?
  • 3,215
What is the difference between IT event correlation and aggregation?
  • 533
What Is SIEM Used For?
  • 55
RSA-EMC vs. other SIEM products?
  • 1,666
What Questions Should I Ask Before Buying SIEM?
  • 19
Between AlienVault and LogRhythm, which solution is suitable for Banks in Gulf Region
  • 1,133
What are the pros and cons of internal SOC vs SOC-as-a-Service?
See all discussions
 
Read archived reviews (2+ years old)