Try our new research platform with insights from 80,000+ expert users

LogRhythm SIEM pros and cons

Vendor: LogRhythm

4.2 out of 5

174 reviews
89% willing to recommend

5,706 followers

Pros & Cons summary

LogRhythm SIEM excels in compliance reporting with built-in reports simplifying report generation for auditors. It enhances productivity through centralized security operations monitoring, automation, and alerts. It integrates seamlessly with security products via APIs for effective threat management. However, stability issues, complex integration, high pricing, and inadequate documentation pose challenges. Degraded technical support adds to deployment hurdles despite advanced incident response capabilities powered by AI and machine learning.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.

Prominent pros & cons

PROS

LogRhythm SIEM is highly effective for compliance reporting with built-in reports, supporting various log sources and providing visibility into network environments.

Its AI engine and automation capabilities enhance threat response, allowing for efficient incident management and reduced time in resolving cases.

Integration with other products via API makes LogRhythm SIEM adaptable, enabling a streamlined, centralized monitoring setup.

The customizable, versatile platform enables fast analysis and enhances security operation centers with superior log correlation and analysis features.

LogRhythm SIEM significantly improves data collection, threat detection, and operational efficiency with advanced features such as AI engine modules and machine learning.

CONS

Some guides contain incorrect information, indicating a need for better proofreading and usage of guides before release.

The initial setup and configuration is complex, requiring external assistance or dedicated personnel, which can be challenging for small teams.

Integration and scalability issues exist, with difficulty in incorporating third-party technologies and supporting large-scale deployments.

Documentation is often difficult to find or inadequate, leading to challenges in understanding and utilizing the system effectively.

There are noted stability and performance problems, including issues during upgrades and daily operations, requiring improvement.

LogRhythm SIEM Pros review quotes

Senior Security Engineer at Augeo Marketing

Oct 17, 2017

Provides visibility into the network.

Read full review

reviewer1992084

Senior Security Analyst at a transportation company with 501-1,000 employees

Oct 16, 2022

The dashboards in the LogRhythm SIEM really help us as a starting point. It gives us a starting point we can go to every day. We walk through several dashboards to see anomalous activity for further investigation.

Read full review

System Administrator at GOLDENWEST FEDERAL CREDIT UNION

Oct 18, 2022

One of the main features that I like about LogRhythm NextGen SIEM is that there are a lot of pre-built pieces. Like with our AV, we didn't have to tell it how to read the logs; they already had it pre-made. So, we essentially just had to follow their guide to get the logs imported in and set up some rules for it. We've only had to manually create the parsing rules for a few of our vendors so that we could interpret the logs correctly. Most of them had already been pre-created for us.

Read full review

Free Report: LogRhythm SIEM Reviews and More

Learn what your peers think about LogRhythm SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: June 2025.

856,873 professionals have used our research since 2012.

JM

Principal Security Analyst at a healthcare company with 501-1,000 employees

Oct 28, 2018

We take in around 750 million logs a day. We have a lot of products and that would be a lot of different panes of glass that we would have to look through otherwise. By centralizing, we can triage and take steps much more quickly than if we tried to man that many interfaces that come with the products.

Read full review

AS

Avraham Sonenthal

Senior Network Engineer at a government with 5,001-10,000 employees

May 9, 2019

The feature that makes it usable is the web interface.

Read full review

Security Analyst at Xanterra

Oct 17, 2017

The PCI compliance pieces that help us produce reports for our external auditor, and their support.

Read full review

KM

Global Security Manager at Chart Industries Inc

Oct 17, 2017

The ability for me to go into the Web UI, and just learn what's going on in my environment.

Read full review

Administrator Executive at a individual & family service with 10,001+ employees

Oct 17, 2017

It gives us insight into our entire installation, where we are multiple sites, going as far as the East Coast to the Central West Coast.

Read full review

Information Security Officer at a insurance company with 201-500 employees

Nov 8, 2017

LogRhythm has shown to us, to this point in time, that it has the capabilities of being able to deliver actionable intelligence to the security engineers and analysts.

Read full review

Data Sec Program Manager at a insurance company

Nov 8, 2017

The most valuable feature of LogRhythm for me is the ability to correlate logs throughout many different log sources.

Read full review

Show 10 more reviews (out of 82)

LogRhythm SIEM Cons review quotes

Senior Security Engineer at Augeo Marketing

Oct 17, 2017

I would probably look for more things to go into the web console that is currently on the fat client.

Read full review

reviewer1992084

Senior Security Analyst at a transportation company with 501-1,000 employees

Oct 16, 2022

We use Windows Event Forwarding to collect the logs from our Windows clients, and the logs get aggregated as one data source on that collector. Therefore, finding logs specific to one particular Windows system requires some creativity in how we search the SIEM.

Read full review

JB

SIEM Architect at Marsh & McLennan Companies, Inc.

Oct 28, 2018

My biggest issue - I know that they say they're doing it - is that the API-building is extremely important. They keep saying it's coming, it's coming. It's not coming fast enough. I don't care if they need to double their team size to get it out there quicker, the world is already in the cloud and we can't monitor it. That's a big problem for us. My boss keeps coming to me about it. That's an issue.

Read full review

Free Report: LogRhythm SIEM Reviews and More

Learn what your peers think about LogRhythm SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: June 2025.

856,873 professionals have used our research since 2012.

System Administrator at GOLDENWEST FEDERAL CREDIT UNION

Oct 18, 2022

When we originally got LogRhythm, their tech support was fantastic, and I loved them. Now, we don't quite get as quick of a response. I've been disappointed in the more recent tech support. When you call in, they'll say that they will get you somebody, and you'll finally get someone who will contact you back a day or so later. Whereas before, I would get help right away.

Read full review

JM

Principal Security Analyst at a healthcare company with 501-1,000 employees

Oct 28, 2018

I have Windows administrators who will remove the agent when they think that that's what's fouling up their upgrade or their install or their reconfiguration, etc. The first thing they do is to turn off the antivirus, turn down the firewall, and take off anything else. They don't realize that the LogRhythm agent is just sitting there monitoring. Most antivirus products have application protection features built-in where, if I'm an admin on a box, I can't uninstall antivirus. I need to have to the antivirus admin password to do that.

Read full review

AS

Avraham Sonenthal

Senior Network Engineer at a government with 5,001-10,000 employees

May 9, 2019

It is a product that is very hard to use.

Read full review

Security Analyst at Xanterra

Oct 17, 2017

I would really like to see some type of group or global management for RIM policies,

Read full review

KM

Global Security Manager at Chart Industries Inc

Oct 17, 2017

I have probably submitted half a dozen log parser requests, and I keep finding more stuff that we need to keep an eye on that doesn't have a definition in LogRhythm.

Read full review

Administrator Executive at a individual & family service with 10,001+ employees

Oct 17, 2017

I would really love to be able to take some of the data and not have to export it to a CSV file, so I can pull it into Excel to turn it into some other kind of graph.

Read full review

Information Security Officer at a insurance company with 201-500 employees

Nov 8, 2017

Right now there is the concern about being able to gather all of the data into the system.

Read full review

Show 10 more reviews (out of 82)

Product Categories

Product Categories

Security Information and Event Management (SIEM)

Popular Comparisons

Popular Comparisons

CrowdStrike Falcon vs LogRhythm SIEM

Wazuh vs LogRhythm SIEM

Microsoft Sentinel vs LogRhythm SIEM

Dynatrace vs LogRhythm SIEM

Datadog vs LogRhythm SIEM

Splunk Enterprise Security vs LogRhythm SIEM

IBM Security QRadar vs LogRhythm SIEM

Elastic Security vs LogRhythm SIEM

Grafana Loki vs LogRhythm SIEM

Graylog vs LogRhythm SIEM

Security Onion vs LogRhythm SIEM

Rapid7 InsightIDR vs LogRhythm SIEM

Fortinet FortiSIEM vs LogRhythm SIEM

AlienVault OSSIM vs LogRhythm SIEM

syslog-ng vs LogRhythm SIEM

See all alternatives

Product Categories

Product Categories

Security Information and Event Management (SIEM)

Popular Comparisons

Popular Comparisons

CrowdStrike Falcon vs LogRhythm SIEM

Wazuh vs LogRhythm SIEM

Microsoft Sentinel vs LogRhythm SIEM

Dynatrace vs LogRhythm SIEM

Datadog vs LogRhythm SIEM

Splunk Enterprise Security vs LogRhythm SIEM

IBM Security QRadar vs LogRhythm SIEM

Elastic Security vs LogRhythm SIEM

Grafana Loki vs LogRhythm SIEM

Graylog vs LogRhythm SIEM

Security Onion vs LogRhythm SIEM

Rapid7 InsightIDR vs LogRhythm SIEM

Fortinet FortiSIEM vs LogRhythm SIEM

AlienVault OSSIM vs LogRhythm SIEM

syslog-ng vs LogRhythm SIEM

See all alternatives

Related questions

13

Between AlienVault and LogRhythm, which solution is suitable for Banks in Gulf Region

27

IBM QRadar is rated above competitors (McAfee, Splunk, LogRhythm) in Gartner's 2020 Magic Quandrant. Agree/Disagree?

4

Does LogRhythm NextGen SIEM offer good security?

229

What Solution for SIEM is Best To Be NIST 800-171 Compliant?

51

When evaluating Security Information and Event Management (SIEM), what aspect do you think is the most important feature to look for?

112

What are the main differences between Nessus and Arcsight?

7

What's The Best Way to Trial SIEM Solutions?

171

Which is the best SIEM solution for a government organization?

1,020

What is the difference between IT event correlation and aggregation?

134

What Is SIEM Used For?