LogRhythm SIEM Reviews, Competitors and Pricing

Shreenkhala Bhattarai

Cyber Security Researcher at a tech services company with 1-10 employees

Dec 2, 2020

Download

Efficiently catches threats and reduces the risk of exposure

Pros and Cons

"In terms of security, LogRhythm NextGen SIEM is great."

"Scalability-wise, it's not that great."

What is our primary use case?

Private monitoring is our primary use case.

What is most valuable?

In terms of security, LogRhythm NextGen SIEM is great.

For how long have I used the solution?

I have been using LogRhythm NextGen SIEM for one year.

What do I think about the stability of the solution?

LogRhythm NextGen SIEM is stable.

Buyer's Guide

LogRhythm SIEM

March 2024

Free Report: LogRhythm SIEM Reviews and More

Learn what your peers think about LogRhythm SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.

DOWNLOAD NOW

768,924 professionals have used our research since 2012.

What do I think about the scalability of the solution?

Scalability-wise, it's not that great, but integration with other solutions is pretty easy.

How are customer service and support?

The technical support is great.

Which solution did I use previously and why did I switch?

We also use Splunk, but in terms of security, we always recommend LogRhythm NextGen SIEM.

How was the initial setup?

The initial setup was very straightforward. We deployed LogRhythm very easily. In total, including configuration, we deployed this solution in less than one day.

What's my experience with pricing, setup cost, and licensing?

In the context of our country, the price of this solution is too high.

What other advice do I have?

Overall, on a scale from one to ten, I would give LogRhythm NextGen SIEM a rating of eight.

I would definitely recommend this solution; my only concern is with the price — it should be lower.

Which deployment model are you using for this solution?

On-premises

Disclosure: My company has a business relationship with this vendor other than being a customer: partner

Timothy Sueck

Security Analyst at a financial services firm with 201-500 employees

Oct 26, 2017

Download

Dashboards and AI Engine are key features giving us more insight into the traffic patterns we see

How has it helped my organization?

It's given us more insight into the traffic patterns that we see.

What is most valuable?

The dashboards and the AI Engine.

What needs improvement?

Mostly they should just expand on the features that are already there. More pre-built parsers, more pre-built AI rules, more dashboard widgets that we can put to use.

What do I think about the scalability of the solution?

I would say scalability is very good.

How is customer service and technical support?

Mostly very good. We have had some issues that have taken a long time to resolve, various technical issues that have taken longer to resolve than we desire.

What other advice do I have?

The criteria that we look when selecting a vendor are usually support, and being and end-to-end solution, that is very important too.

I gave it a nine out of 10 overall because we have had some support issues that haven't been resolved quickly enough but, other than that, I've been very happy with the product.

If a colleague was researching this and other popular SIEM tools, I would say for the most part I'm very happy with it. I would advise them to schedule a demo and see if it meets their needs.

Disclosure: I am a real user, and this review is based on my own experience and opinions.

Buyer's Guide

LogRhythm SIEM

March 2024

Free Report: LogRhythm SIEM Reviews and More

Learn what your peers think about LogRhythm SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.

DOWNLOAD NOW

768,924 professionals have used our research since 2012.

it_user317892

Senior Information Security Manager with 1,001-5,000 employees

Sep 24, 2015

Download

It's simplified and clarified complex volumes of information, but customizing features could be improved.

Valuable Features

Clarity of information
Ease of deployment

Improvements to My Organization

The ability to provide insights and simplification for complex volumes of information.

Room for Improvement

The ability to customize certain features of the product.

Use of Solution

I've used it for one year.

Stability Issues

I find that the system is stable and handling our traffic very well.

Customer Service and Technical Support

Customer Service:

The customer service teams is excellent and have they resolved anything we have thrown at them in a timely fashion.

Technical Support:

The technical support team is excellent and have they resolved anything we have thrown at them in a timely fashion.

ROI

We do not have one yet, but we definitely foresee a ROI.

Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.

Lindsay Mieth

CISO at a religious institution with 501-1,000 employees

May 13, 2018

Download

Daily alerts allow me to quickly find security and operational issues

Pros and Cons

"The daily alerts allow me to quickly find security and operations issues which need to be addressed."

"More detail in the alerts given to avoid additional searches, as often the source or destination associated with the alert is not evidenced."

What is our primary use case?

The primary use case is an analysis of server logs with some deeper analysis done on searches. Reports help ensure various departments have daily notices of any activity that they should be reviewing.

How has it helped my organization?

Alerts to account usage errors.
Reports of malware from the antivirus.
Reports application errors presented in logs.

What is most valuable?

Daily alerts: These allow me to quickly find security and operational issues which need to be addressed.

What needs improvement?

More detail in the alerts given to avoid additional searches, as often the source or destination associated with the alert is not evidenced.

For how long have I used the solution?

One to three years.

Disclosure: I am a real user, and this review is based on my own experience and opinions.

it_user418188

IT Security Manager at a financial services firm with 501-1,000 employees

Apr 24, 2016

Download

We used it primarily for security logging of events. We created reports based on traffic awareness for security.

What is most valuable?

The reporting feature is valuable.

How has it helped my organization?

We used it primarily for security logging of events. We created reports based on traffic awareness for security.

What needs improvement?

We would like to see a better base templates for reporting.

For how long have I used the solution?

I've used it for six months.

What was my experience with deployment of the solution?

The only issue we had was getting the Net Flow incorporated. However, that was issue was because of our implementation. Once we made a change it worked.

What do I think about the stability of the solution?

There were no issues with the stability.

What do I think about the scalability of the solution?

We had no issues scaling it for our needs.

How are customer service and technical support?

Customer Service:

I'd rate customer service a 10/10.

Technical Support:

I'd rate technical support a 10/10.

Which solution did I use previously and why did I switch?

I've also used QRadar.

How was the initial setup?

It was fairly straightforward.

What about the implementation team?

LogRhythm's vendor team helped us set it up. The box was delivered and they helped us get the licensing in and the initial setup.

What's my experience with pricing, setup cost, and licensing?

I would make sure you have Events Per Second set high enough for all of the events. This will cost a little more.

What other advice do I have?

It will take time for fine tuning, expect for four months to fine tune it to exclude the false positives.

Disclosure: I am a real user, and this review is based on my own experience and opinions.

it_user756384

Systems Administrator at a construction company

Oct 25, 2017

Download

Our security analytics have clearly improved

What is most valuable?

Security analytics
Compliance: The reason we implemented was compliance. We're hoping to use it more now.

How has it helped my organization?

Security analytics have definitely improved. It is definitely more dynamic than our old flat file archives system.

As a security organization, the key challenges and goal are data integrity and definitely user access to insure that certain sections are kept more secure than others.

What needs improvement?

It seems with all of the advanced features that we haven't quite figured them out.

It is very complex. More training maybe, in addition to the LogRhythm training on the community website, which is a lot. Better adoption starting out, so we are more comfortable when we start and when we go live.

For how long have I used the solution?

We are pretty new.

What was my experience with deployment of the solution?

We are learning more as the days go on. I am sure a lot of the really impressive stuff will come later.

What do I think about the scalability of the solution?

Scalability is extremely great. We are looking to scale it way more than we already are as we grow.

How is customer service and technical support?

We haven't contacted them yet.

How was the initial setup?

The initial setup was straightforward.

What about the implementation team?

LogRhythm came in and did so much for us. We were up and running before the week was over.

What other advice do I have?

Take advantage of the feature set that LogRhythm has to offer. It has more features than a lot of their competitors. You will be further in the end.