Coming October 25: PeerSpot Awards will be announced! Learn more
2020-01-07T06:28:00Z
Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)
  • 0
  • 26

What needs improvement with Devo?

Please share with the community what you think needs improvement with Devo.

What are its weaknesses? What would you like to see changed in a future version?

8
PeerSpot user
8 Answers
MU
IT manager at a tech services company with 1,001-5,000 employees
Real User
Top 10
2021-04-28T07:43:27Z
28 April 21

I need more empowerment in reporting. For example, when I'm using Qlik or Power BI in terms of reporting for the operations teams they also need analytics. They also need to report to the senior management or other teams. The reporting needs to be customized. You can build some widgets in terms of analytics and representations, however, I want to export these dashboards or these widgets in a PDF file. While you can explore everything as a PDF, it's not very complete. I am missing some customization capabilities in order to build a robust, meaningful report. The initial setup is a little complex. Technical support could be better. There do seem to be quite a few bugs within the version we are using. In the next update, I'd like it if they explain more about the Devo framework. The Devo framework is a tool inside the product. It's a prototype. It is a tool that provides to the customer a map of processes or a workflow, for example, with an HTML application with a front end. My understanding is that each component of this front attaches data with the queries. It might be customized. I'd like to generally understand this better. I'd like to understand DevoFlow. Up to now, usage could send data to the platform, retrieve it and enrich it by generating graphs and analytics. However, it's my understanding that Flow provides users the ability to process the data in real-time by defining complex workflows as soon as data arrives in the platform so that you can make analytics in a sequence. I'd like to better understand these new capabilities.

Art Faccio - PeerSpot reviewer
Director Cyber Threat Intelligence at IGT
Real User
Top 10
2021-03-03T19:20:00Z
03 March 21

If all of the connectors for the third-parties were there, it would be a solid 10. Everything else about it is right there. It's a newer product, so we knew going in that there would be some growing pains and that some things might not be available because not all third-parties would be included.

Chris Bates - PeerSpot reviewer
CISO at SentinelOne
Real User
Top 5
2021-02-16T23:39:00Z
16 February 21

There's room for improvement within the GUI. There is also some room for improvement within the native parsers they support. But I can say that about pretty much any solution in this space. Those are the standards where they need to improve because that's usually where they lag.

JerryH - PeerSpot reviewer
Director at a computer software company with 1,001-5,000 employees
Real User
Top 10
2020-11-03T07:14:00Z
03 November 20

Devo has a lot of cloud connectors, but they need to do a little bit of work there. They've got good integrations with the public cloud, but there are a lot of cloud SaaS systems that they still need to work with on integrations, such as Salesforce and other SaaS providers where we need to get access logs. We'll find more areas for improvement, I'm sure, as we move forward. But we've got a tight relationship with them. I'm sure we can get anything worked out.

Jordan Mauriello - PeerSpot reviewer
SVP of Managed Security at CRITICALSTART
MSP
2020-09-22T07:16:00Z
22 September 20

There is room for improvement in the ability to parse different log types. The breadth of overall log parsers that exists right now is an area that they could improve. Natively, there's more that could be done by Devo then what it can and can't understand from a parsing perspective. I would like to see Devo rely more on the rules engine, seeing more things from the flow, correlation, and rules engine make its way into the standardized product. This would allow a lot of those pieces to be a part of SecOps so we can do advanced JOIN rules and capabilities inside of SecOps without flow. That would be a great functionality to add.

JS
CEO at Panda Security
MSP
2020-03-24T08:12:00Z
24 March 20

There's always room to reduce the learning curve over how to deal with events and machine data. They could make the machine data simpler. Lookup tables could be used to minimize the performance impact in bringing together two different sources of data together and correlating them. This could be something that they could improve, but maybe this has already been fixed.

Learn what your peers think about Devo. Get advice and tips from experienced pros sharing their opinions. Updated: September 2022.
633,572 professionals have used our research since 2012.
MV
Security Analyst at Telefonica
Real User
2020-02-13T07:51:00Z
13 February 20

I don't use the Activeboards' visual analytics that much. I just look at the data, most of the time. The Activeboards feature is not as mature regarding the look and feel. Its functionality is mature, but the look and feel is not there. For example, if you have some data sets and are trying to get some graphics, you cannot change anything. There's just one format for the graphics. You cannot change the size of the font, the font itself, etc. You get a graphic that works well in some cases, but in other cases, the numbers are too small and you cannot do anything about it. Overall, the graphic presentation of data is okay, but I miss the basic functionality of being able to change how things look.

JayGrant - PeerSpot reviewer
Manager of Security Services at OpenText
MSP
2020-01-07T06:28:00Z
07 January 20

The only downfall that I have is it is browser based. So, when you start doing some larger searches, it will cause the browser to lock up or shut down. You have to learn the sweet spot of how much data you can actually search across. The way that we found around that is to build out really good Activeboards, then it doesn't render as much data to the browser. That's the work around that we use. As far as ingestion, recording, and keeping it, I've seen no issues. It comes down to some feature requests here and there, which is normal stuff with software. As a user, I may want to scroll through the filters, but the filter didn't allow scrolling at first. That's a feature that came in with version 6.

Related Questions
Julia Frohwein - PeerSpot reviewer
Senior Director of Delivery at PeerSpot (formerly IT Central Station)
Apr 28, 2021
Hi Everyone, What do you like most about Devo? Thanks for sharing your thoughts with the community!
2 out of 8 answers
JayGrant - PeerSpot reviewer
Manager of Security Services at OpenText
07 January 20
Being able to build and modify dashboards on the fly with Activeboards streamlines my analyst time because my analysts aren't doing it across spreadsheets or five different tools to try to build a timeline out themselves. They can just ingest it all, build a timeline out across all the logging, and all the different information sources in one dashboard. So, it's a huge time saver. It also has the accuracy of being able to look at all those data sources in one view. The log analysis, which would take 40 hours, we can probably get through it in about five to eight hours using Devo.
MV
Security Analyst at Telefonica
13 February 20
The user interface is really modern. As an end-user, there are a lot of possibilities to tailor the platform to your needs, and that can be done without needing much support from Devo. It's really flexible and modular. The UI is very clean.
Nurit Sherman - PeerSpot reviewer
Content Operations Manager at PeerSpot (formerly IT Central Station)
Sep 23, 2021
Hi community members, We know it's important to conduct a trial and/or proof of concept as part of the buying process.  Do you have any advice for our community about the best way to conduct a trial or PoC? How do you conduct a trial effectively?  Are there any mistakes to avoid?
2 out of 10 answers
it_user791052 - PeerSpot reviewer
Managing Director with 11-50 employees
13 August 18
Stick with the tried and true SIEM/Log Management Vendor that offers a free, online download and trial, easy to install and operate piece of software with proper documentation. A good example of that can be found here: https://www.snaresolutions.com/try-snare-free-for-45-days/
Kent Gladstone-USA - PeerSpot reviewer
Principal Solutions Architect at SAIC
13 August 18
Mark is correct but there are things to look for. Do you have a set of requirements? Not all log managers collect the information, not all log managers are easy to navigate, and not all log managers provide the reports your are looking for. Check to see how much data it collects so you can plan storage. Does the log manager compress the data or does it dependent on a third party tool? Do you know what you are collecting, and why? Are the logs used for security, sox audits or something else? My advise, before testing, is to gather and review you're requirements and test against that. There are lots of free trials. In fact if there isn't one on the web, contact the vendor and they'll give you something to try out for 30 days.
Related Solutions
Download Free Report
Download our free Devo Report and get advice and tips from experienced pros sharing their opinions. Updated: September 2022.
DOWNLOAD NOW
633,572 professionals have used our research since 2012.