Try our new research platform with insights from 80,000+ expert users
LogRhythm SIEM Logo

LogRhythm SIEM pros and cons

Vendor: LogRhythm
4.2 out of 5
Leave a review

Pros & Cons summary

LogRhythm SIEM excels in compliance reporting with built-in reports simplifying report generation for auditors. It enhances productivity through centralized security operations monitoring, automation, and alerts. It integrates seamlessly with security products via APIs for effective threat management. However, stability issues, complex integration, high pricing, and inadequate documentation pose challenges. Degraded technical support adds to deployment hurdles despite advanced incident response capabilities powered by AI and machine learning.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

LogRhythm SIEM is highly effective for compliance reporting with built-in reports, supporting various log sources and providing visibility into network environments.
Its AI engine and automation capabilities enhance threat response, allowing for efficient incident management and reduced time in resolving cases.
Integration with other products via API makes LogRhythm SIEM adaptable, enabling a streamlined, centralized monitoring setup.
The customizable, versatile platform enables fast analysis and enhances security operation centers with superior log correlation and analysis features.
LogRhythm SIEM significantly improves data collection, threat detection, and operational efficiency with advanced features such as AI engine modules and machine learning.

CONS

Some guides contain incorrect information, indicating a need for better proofreading and usage of guides before release.
The initial setup and configuration is complex, requiring external assistance or dedicated personnel, which can be challenging for small teams.
Integration and scalability issues exist, with difficulty in incorporating third-party technologies and supporting large-scale deployments.
Documentation is often difficult to find or inadequate, leading to challenges in understanding and utilizing the system effectively.
There are noted stability and performance problems, including issues during upgrades and daily operations, requiring improvement.
 

LogRhythm SIEM Pros review quotes

it_user756429 - PeerSpot reviewer
Oct 17, 2017
Provides visibility into the network.
Read full review
reviewer1992084 - PeerSpot reviewer
Oct 16, 2022
The dashboards in the LogRhythm SIEM really help us as a starting point. It gives us a starting point we can go to every day. We walk through several dashboards to see anomalous activity for further investigation.
Read full review
Joseph W. - PeerSpot reviewer
Oct 18, 2022
One of the main features that I like about LogRhythm NextGen SIEM is that there are a lot of pre-built pieces. Like with our AV, we didn't have to tell it how to read the logs; they already had it pre-made. So, we essentially just had to follow their guide to get the logs imported in and set up some rules for it. We've only had to manually create the parsing rules for a few of our vendors so that we could interpret the logs correctly. Most of them had already been pre-created for us.
Read full review
Buyer's Guide
LogRhythm SIEM
June 2025
Free Report: LogRhythm SIEM Reviews and More
Learn what your peers think about LogRhythm SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: June 2025.
DOWNLOAD NOW
861,390 professionals have used our research since 2012.
JM
Oct 28, 2018
We take in around 750 million logs a day. We have a lot of products and that would be a lot of different panes of glass that we would have to look through otherwise. By centralizing, we can triage and take steps much more quickly than if we tried to man that many interfaces that come with the products.
Read full review
AS
May 9, 2019
The feature that makes it usable is the web interface.
Read full review
it_user756333 - PeerSpot reviewer
Oct 17, 2017
The PCI compliance pieces that help us produce reports for our external auditor, and their support.
Read full review
KM
Oct 17, 2017
The ability for me to go into the Web UI, and just learn what's going on in my environment.
Read full review
Computer0e92 - PeerSpot reviewer
Oct 17, 2017
It gives us insight into our entire installation, where we are multiple sites, going as far as the East Coast to the Central West Coast.
Read full review
it_user769692 - PeerSpot reviewer
Nov 8, 2017
LogRhythm has shown to us, to this point in time, that it has the capabilities of being able to deliver actionable intelligence to the security engineers and analysts.
Read full review
it_user769659 - PeerSpot reviewer
Nov 8, 2017
The most valuable feature of LogRhythm for me is the ability to correlate logs throughout many different log sources.
Read full review
Show 10 more reviews (out of 82)
 

LogRhythm SIEM Cons review quotes

it_user756429 - PeerSpot reviewer
Oct 17, 2017
I would probably look for more things to go into the web console that is currently on the fat client.
Read full review
reviewer1992084 - PeerSpot reviewer
Oct 16, 2022
We use Windows Event Forwarding to collect the logs from our Windows clients, and the logs get aggregated as one data source on that collector. Therefore, finding logs specific to one particular Windows system requires some creativity in how we search the SIEM.
Read full review
JB
Oct 28, 2018
My biggest issue - I know that they say they're doing it - is that the API-building is extremely important. They keep saying it's coming, it's coming. It's not coming fast enough. I don't care if they need to double their team size to get it out there quicker, the world is already in the cloud and we can't monitor it. That's a big problem for us. My boss keeps coming to me about it. That's an issue.
Read full review
Buyer's Guide
LogRhythm SIEM
June 2025
Free Report: LogRhythm SIEM Reviews and More
Learn what your peers think about LogRhythm SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: June 2025.
DOWNLOAD NOW
861,390 professionals have used our research since 2012.
Joseph W. - PeerSpot reviewer
Oct 18, 2022
When we originally got LogRhythm, their tech support was fantastic, and I loved them. Now, we don't quite get as quick of a response. I've been disappointed in the more recent tech support. When you call in, they'll say that they will get you somebody, and you'll finally get someone who will contact you back a day or so later. Whereas before, I would get help right away.
Read full review
JM
Oct 28, 2018
I have Windows administrators who will remove the agent when they think that that's what's fouling up their upgrade or their install or their reconfiguration, etc. The first thing they do is to turn off the antivirus, turn down the firewall, and take off anything else. They don't realize that the LogRhythm agent is just sitting there monitoring. Most antivirus products have application protection features built-in where, if I'm an admin on a box, I can't uninstall antivirus. I need to have to the antivirus admin password to do that.
Read full review
AS
May 9, 2019
It is a product that is very hard to use.
Read full review
it_user756333 - PeerSpot reviewer
Oct 17, 2017
I would really like to see some type of group or global management for RIM policies,
Read full review
KM
Oct 17, 2017
I have probably submitted half a dozen log parser requests, and I keep finding more stuff that we need to keep an eye on that doesn't have a definition in LogRhythm.
Read full review
Computer0e92 - PeerSpot reviewer
Oct 17, 2017
I would really love to be able to take some of the data and not have to export it to a CSV file, so I can pull it into Excel to turn it into some other kind of graph.
Read full review
it_user769692 - PeerSpot reviewer
Nov 8, 2017
Right now there is the concern about being able to gather all of the data into the system.
Read full review
Show 10 more reviews (out of 82)

Product Categories

Product Categories
Security Information and Event Management (SIEM)
Log Management

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs LogRhythm SIEM Logo
CrowdStrike Falcon vs LogRhythm SIEM
Wazuh vs LogRhythm SIEM Logo
Wazuh vs LogRhythm SIEM
Microsoft Sentinel vs LogRhythm SIEM Logo
Microsoft Sentinel vs LogRhythm SIEM
Dynatrace vs LogRhythm SIEM Logo
Dynatrace vs LogRhythm SIEM
Datadog vs LogRhythm SIEM Logo
Datadog vs LogRhythm SIEM
Splunk Enterprise Security vs LogRhythm SIEM Logo
Splunk Enterprise Security vs LogRhythm SIEM
IBM Security QRadar vs LogRhythm SIEM Logo
IBM Security QRadar vs LogRhythm SIEM
Elastic Security vs LogRhythm SIEM Logo
Elastic Security vs LogRhythm SIEM
Grafana Loki vs LogRhythm SIEM Logo
Grafana Loki vs LogRhythm SIEM
Graylog vs LogRhythm SIEM Logo
Graylog vs LogRhythm SIEM
Security Onion vs LogRhythm SIEM Logo
Security Onion vs LogRhythm SIEM
Rapid7 InsightIDR vs LogRhythm SIEM Logo
Rapid7 InsightIDR vs LogRhythm SIEM
Fortinet FortiSIEM vs LogRhythm SIEM Logo
Fortinet FortiSIEM vs LogRhythm SIEM
AlienVault OSSIM vs LogRhythm SIEM Logo
AlienVault OSSIM vs LogRhythm SIEM
syslog-ng vs LogRhythm SIEM Logo
syslog-ng vs LogRhythm SIEM
See all alternatives

Product Categories

Product Categories
Security Information and Event Management (SIEM)
Log Management

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs LogRhythm SIEM Logo
CrowdStrike Falcon vs LogRhythm SIEM
Wazuh vs LogRhythm SIEM Logo
Wazuh vs LogRhythm SIEM
Microsoft Sentinel vs LogRhythm SIEM Logo
Microsoft Sentinel vs LogRhythm SIEM
Dynatrace vs LogRhythm SIEM Logo
Dynatrace vs LogRhythm SIEM
Datadog vs LogRhythm SIEM Logo
Datadog vs LogRhythm SIEM
Splunk Enterprise Security vs LogRhythm SIEM Logo
Splunk Enterprise Security vs LogRhythm SIEM
IBM Security QRadar vs LogRhythm SIEM Logo
IBM Security QRadar vs LogRhythm SIEM
Elastic Security vs LogRhythm SIEM Logo
Elastic Security vs LogRhythm SIEM
Grafana Loki vs LogRhythm SIEM Logo
Grafana Loki vs LogRhythm SIEM
Graylog vs LogRhythm SIEM Logo
Graylog vs LogRhythm SIEM
Security Onion vs LogRhythm SIEM Logo
Security Onion vs LogRhythm SIEM
Rapid7 InsightIDR vs LogRhythm SIEM Logo
Rapid7 InsightIDR vs LogRhythm SIEM
Fortinet FortiSIEM vs LogRhythm SIEM Logo
Fortinet FortiSIEM vs LogRhythm SIEM
AlienVault OSSIM vs LogRhythm SIEM Logo
AlienVault OSSIM vs LogRhythm SIEM
syslog-ng vs LogRhythm SIEM Logo
syslog-ng vs LogRhythm SIEM
See all alternatives
Related questions
  • 13
Between AlienVault and LogRhythm, which solution is suitable for Banks in Gulf Region
  • 27
IBM QRadar is rated above competitors (McAfee, Splunk, LogRhythm) in Gartner's 2020 Magic Quandrant. Agree/Disagree?
  • 4
Does LogRhythm NextGen SIEM offer good security?
  • 207
What Solution for SIEM is Best To Be NIST 800-171 Compliant?
  • 42
When evaluating Security Information and Event Management (SIEM), what aspect do you think is the most important feature to look for?
  • 104
What are the main differences between Nessus and Arcsight?
  • 6
What's The Best Way to Trial SIEM Solutions?
  • 150
Which is the best SIEM solution for a government organization?
  • 943
What is the difference between IT event correlation and aggregation?
  • 96
What Is SIEM Used For?