LogRhythm NextGen SIEM Pros
MC
reviewer1283208
Information Security Officer, Network Analyst at a university with 1,001-5,000 employees
Automations are very valuable. It provides the ability to automate some of our small use cases.
The ability to integrate with other products that use an API is also very useful. LogRhythm has a plugin for it that we can connect and start to move down towards the path of a single pane of glass instead of having multiple or different tools.
View full review »AG
reviewer1402677
Cybersecurity Solutions Architect at a tech vendor with 10,001+ employees
SOAR is integrated with the dashboard that we use for threat management. Because it's all integrated, it is useful for us when we deploy something on-prem.
View full review »The product is great for medium to large-scale organizations.
View full review »Buyer's Guide
LogRhythm NextGen SIEM
June 2022
Learn what your peers think about LogRhythm NextGen SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: June 2022.
610,190 professionals have used our research since 2012.
GN
productm1010136
Head Of Technical Services at a tech services company with 51-200 employees
I would say the most valuable feature of LogRhythm is that it has built-in UEBA functionality, among other basic Windows packages.
View full review »KB
Karim Bondok
Senior Cyber Security Engineer at a logistics company with 10,001+ employees
Currently, we are in the implementation phase. LogRhythm is better than QRadar from the point of view of collecting Windows events. It has a much higher view. You can enable monitoring by default.
View full review »SB
SANJAI BOSCO
Technology Solutions Head at MANTRA TECHNOLOGIES LTD
The user interface is good.
View full review »Technical support is very helpful and responsive.
View full review »JM
Janaka Munasinghe
Senior System Administrator at DP Infotech Pvt Ltd
It's reliable and the performance is good.
View full review »SS
reviewer1306557
Systems Administrators at a tech services company with 201-500 employees
File Integrity Monitoring is really valuable because we have it set up on our core assets. This is one of the key features that I utilize. We also use it quite a lot for event management to do reporting.
View full review »The initial setup is pretty easy.
View full review »LogRhythm NextGen SIEM Cons
MC
reviewer1283208
Information Security Officer, Network Analyst at a university with 1,001-5,000 employees
Their ticketing system for managing cases can be improved. They can either do that or adopt some of the open-source ticket systems into theirs. The current system works and gets the job done, but it is very bare-bones and basic. There are some things that could be improved there.
They should also bring in more threat intelligence into the product and also probably start to look into the integration of more cloud or SAS products for ingesting logs. They're doing the work, but with the explosion of COVID, a lot of businesses have started to move towards more cloud applications or SAS applications. There is a whole diverse suite of SAS products out there, which is a challenge for them and I get it. They seem to be focusing on the big ones, but it'll be nice to be able to, for example, pull in Microsoft logs from Office 365. They are working towards a better way of doing that, and they have a product in the pipeline to pull logs in from other SAS applications.
The biggest thing for them is going to be moving away from a Windows Server infrastructure into a straight-up Linux, which is more stable in my eyes. For the backend, they can maybe move into more of an up-to-date Elastic search engine and use less of Microsoft products.
View full review »AG
reviewer1402677
Cybersecurity Solutions Architect at a tech vendor with 10,001+ employees
I don't think the cloud model in LogRhythm is developed enough.
View full review »The solution is likely not the best option for a smaller organization.
View full review »Buyer's Guide
LogRhythm NextGen SIEM
June 2022
Learn what your peers think about LogRhythm NextGen SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: June 2022.
610,190 professionals have used our research since 2012.
GN
productm1010136
Head Of Technical Services at a tech services company with 51-200 employees
I think there is room for improvement because the system is still running on the Windows Server platform. The problem with running on Windows is that it is not that good for scaling and providing for big deployment environments.
View full review »KB
Karim Bondok
Senior Cyber Security Engineer at a logistics company with 10,001+ employees
Sometimes the Platform Manager crashes because it's built around Windows.
View full review »SB
SANJAI BOSCO
Technology Solutions Head at MANTRA TECHNOLOGIES LTD
The initial setup is not so easy because it is quite a process.
View full review »Parsing is totally controlled by LogRhythm and they do not allow any partner or any third-party to handle this part and this is a key challenge on my end.
View full review »JM
Janaka Munasinghe
Senior System Administrator at DP Infotech Pvt Ltd
We've had issues with scaling and local support.
View full review »SS
reviewer1306557
Systems Administrators at a tech services company with 201-500 employees
It should have some more message monitoring features. It can also have some free message monitoring tools.
View full review »For our market, the solution is quite expensive. It would be ideal if they could work on and improve their existing pricing plans to help make it more affordable in our country.
View full review »Buyer's Guide
LogRhythm NextGen SIEM
June 2022
Learn what your peers think about LogRhythm NextGen SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: June 2022.
610,190 professionals have used our research since 2012.