Loading product reviews...

security-information-event-management logrhythm All Markets > Security Information and Event Management

LogRhythm

4.1 out of 5.0 (27 ratings)

Reviews Distribution

5 Stars
4 Stars
3 Stars
2 Stars
1 Star
We don't have any qualitative reviews for this vendor yet


View other vendors in this market
We have aggregated ratings data on LogRhythm but all of our reviewers have opted out of sharing their qualitative review feedback. In certain cases we allow reviewers to withhold their qualitative review feedback from public view, in order to protect their confidentiality.
  • 5 out of 5.0, Reviewed

    Product(s): LogRhythm

    Great tool right out of box. Find even more use cases as I learn more about it

    Overall Comment

    It's a great SIEM product right out of box and replaced our previous SIEM tool. From the beginning we just bring in log sources, go through the core module and turn on each AI engine rule to start. As we go through training and gain more experience with the product, we find even more use case and more value to the product.

    What one piece of advice would you give other prospective customers?

    Understand your environment and log sources. You might have more hidden log sources that can be utilized by the tool that you don't know.

    What do you like most about the product or service?

    The AIE provide correlation that help identify anomaly automatically so we can be notified through alarm or email alert.

    What do you dislike most about the product?

    None so far.

    What one thing do you wish the vendor did differently?

    N/A

    If you could start over, what would your organization do differently?

    Identify all the log sources and discuss the deployment scenario with professional service at the beginning to get a full picture.

    Product capabilities - overall comment

    The product has all the capabilities we are looking for. There are several other features that we have not implemented yet/looking into implementing, such as threat intelligence feed, honeypot, File Integrity Monitoring...etc.

    Service & support - overall comment

    Support was very responsive.


  • 4 out of 5.0, Reviewed

    Product(s): LogRhythm

    Great tool but needs eyes on it.

    Overall Comment

    LogRhythm can do a lot. But, it takes a lot to configure it properly. If you have other responsibilities and no one dedicated to the security role, you may find yourself getting it set up just enough to give you some alerts and then leaving it alone. This can cause problems for two reasons. One, when you do get back to it you find it hard to remember what to do. Two, I have logged into the appliance after a long period of not managing it and noticed the system monitors down. This ended up being due to Windows Updates that had happened on these devices a month before. Overall, it's a great product but it does take the time to manage. It is not a drop in and forget it device. Yes, you can do that and yes it will work, but that is nowhere near ideal.

    Service & support - overall comment

    Support is usually very quick to respond and they have always been able to find an answer quickly.

    2 of 2 peer(s) found this review helpful.


  • 4 out of 5.0, Reviewed

    Product(s): LogRhythm

    You really need professional services to implement correctly, but well worth it.

    Overall Comment

    We transitioned from the other big-name SIEM to LogRhythm, and have been pleased with the product.

    What do you like most about the product or service?

    Much easier to use out-of-the-box than Splunk, although there is a learning curve and takes some time getting used to.

    What do you dislike most about the product?

    Could be a little more intuitive on setting up alerts.

    Service & support - overall comment

    Support is helpful land timely. Only glitch would be that it took a week to get support portal access.

    Integration & Deployment - Overall comment

    Professional services team were fantastic. Very helpful in transitioning from one SIEM to another, on the SAME infrastructure hardware (physical box)


  • 4 out of 5.0, Reviewed

    Product(s): LogRhythm

    Implementation is easy, but take extra time understanding your log sources.

    Overall Comment

    The non-HA solution is very simple to implement and deploy. HA brought about some degree of complexity in terms of installation and configuration. The benefits of HA, however, are noteworthy particularly when updates/patches need to be installed and log collection cannot be interrupted. The recent addition of ElasticSearch for search and analysis is phenomenal.

    What do you like most about the product or service?

    We had a central Syslog collector that was hard to use, and by replacing it with LogRhythm, security incident investigations became a lot easier.

    Product capabilities - overall comment

    HA is of great benefit and would provide the optimum benefit when it becomes automated in terms of switch over.

    Service & support - overall comment

    The support team has been very responsive to our cases and provided acceptable solutions.

    Integration & Deployment - Overall comment

    Syslog collection is the easiest to set up. Windows logs require an agent that is easy to install.


  • 5 out of 5.0, Reviewed

    Product(s): LogRhythm

    Customer driven to deliver a solution that fulfilled our requirements.

    Overall Comment

    Excellent experience.

    What do you like most about the product or service?

    Willingness to work with their customers to deliver what they need.


  • 5 out of 5.0, Reviewed

    Product(s): LogRhythm

    An unbeatable solution that beats all others in technology, customer service, and cost.

    Overall Comment

    Over the years LogRhythm has been extremely helpful and attentive. We have utilized this product since 2009, and while it was a better product at the time than the rest, it has only improved with age, and at the same time as the company has grown so large, they have managed to keep the loyalty to its customers by acknowledging the importance of customer service. Every upgrade has been well documented, easily performed, and team members have been in constant contact making sure we were satisfied. All tickets are addressed in a timely manner, with great knowledge. LogRhythm is an unbeatable solution whose capability keeps growing and improving while offering customer service and technical solutions of equal caliber.

    What do you like most about the product or service?

    The product is highly scalable and allows us to collect millions of logs each day, only to be limited by our personal resources (RAM/Storage).

    What do you dislike most about the product?

    Nothing.

    Product capabilities - overall comment

    We can't even keep up with the capabilities, but upon release, capabilities fuction as advertised or are annotated and disclosed.


  • 4 out of 5.0, Reviewed

    Product(s): LogRhythm

    Great out of the box capabilities, Powerful features to customize for your company.

    Overall Comment

    Great organization to work with. It grows with my company and leverages peer groups to look at business functions.

    What one piece of advice would you give other prospective customers?

    Use a LogRyhtm TAM and configure the system to what your initial needs are. Then speak to your peers.

    What do you like most about the product or service?

    The hunting capabilities. It will go through 1.7 million logs and show me the few anomalies to focus on.

    What do you dislike most about the product?

    Support is great and the company is led by innovators.

    What one thing do you wish the vendor did differently?

    I invested in a SOC, Not sure I see the value.

    If you could start over, what would your organization do differently?

    You need to completely bring in all log sources the more sources the greater value.

    Service & support - overall comment

    great support.


  • 5 out of 5.0, Reviewed

    Product(s): LogRhythm

    The small company atmosphere allows us to comfortably work closely with LogRhythm.

    Overall Comment

    LogRhythm has maintained a small company feel, allowing us to work closely together to make changes to the system to increase its effectiveness in our organization. The software is more intuitive than some competitors and overall is consistent and actionable. Utilizing SE hours for our rollout helped immensely in resolving any issues as they arose and allowing us to stay on track for completion.

    What one piece of advice would you give other prospective customers?

    If there is something you don't like, speak up. We ran into a couple of bumps but once we voiced our concerns to the team we were happy to see they were quickly resolved.

    What do you like most about the product or service?

    Small company feel/support style. Fairly intuitive interface.

    What one thing do you wish the vendor did differently?

    Make sure any newer SEs are paired up with an experienced SE, otherwise you give the customer a feeling of being hung out to dry.

    Integration & Deployment - Overall comment

    We have had some issues with database integration and misunderstanding surrounding the impact of pulling logs from Windows, but these issues were worked through.


  • 4 out of 5.0, Reviewed

    Product(s): LogRhythm

    New SIEM implementation.

    Overall Comment

    The sales experience was a great experience.

    What one piece of advice would you give other prospective customers?

    Review every line of the SOW to make sure you're getting what you actually need.

    What do you like most about the product or service?

    I love the capabilities and the addition of FIM.

    What do you dislike most about the product?

    The thick client is slow.

    What one thing do you wish the vendor did differently?

    I wish the vendor had put me in touch with a sales engineer to review the deployment selected.

    If you could start over, what would your organization do differently?

    I would spend longer on the POC.


  • 5 out of 5.0, Reviewed

    Product(s): LogRhythm

    Great Installation/Deployment Model.

    Overall Comment

    Excellent model for assisting in deployment. Made it easy to install, roll-out, and are helping us make it easy to understand the data being gathered.

    What one piece of advice would you give other prospective customers?

    Examine the ease of deployment and the excellent dashboards built into the product. Compared to some of their competitors, this was a far simpler roadmap to get up and running.

    What do you like most about the product or service?

    Ease of use.

    What one thing do you wish the vendor did differently?

    \

    If you could start over, what would your organization do differently?

    Ensure resources on all sides (3rd party consultants, internal, etc.) are all available at same time.


Show More Reviews

Ratings Overview

1 2 3 4 5
Section
1

Evaluation & Contracting

Overall rating of product evaluation and contract negotiation

(25)
4.4

Ability to understand your organization's needs

(21)
3.9

Timely and complete response to product questions

(22)
4.2

Pricing and contract flexibility (pricing and terms)

(22)
4.2
1 2 3 4 5
Section
1

Integration & Deployment

Overall rating of integration and deployment

(27)
4.2

How long did your deployment take?

0 - 3 months (<3)

6 - 9 months (<9)

3 - 6 months (<6)

9 - 12 months (<12)

12 months or more


Availability of quality 3rd-party resources (integrators, service providers, etc.)

(15)
4.1

Ease of integration using standard APIs and tools

(17)
3.9

Quality and availability of end-user training

(21)
4.0

Ease of deployment

(22)
4.0
1 2 3 4 5
Section
1

Service & Support

Overall rating of service and support

(24)
4.2

Did you purchase a support package from vendor?

Yes

No


Timeliness of vendor's response

(19)
4.4

Quality of technical support

(20)
4.2

Quality of peer user community

(18)
3.8
1 2 3 4 5
Section
1

Product Capabilities

Overall rating of product capabilities

(27)
4.3

Real-Time Monitoring

(22)
4.4

Threat Intelligence

(20)
4.0

Behavior Profiling

(17)
3.9

Data and User Monitoring

(19)
3.7

Application Monitoring

(20)
3.9

Analytics

(21)
4.1

Log Management and Reporting

(21)
4.7

Deployment/Support Simplicity

(22)
4.2
1 2 3 4 5
Section
1

Additional Context

What was the nature of your involvement?

Vendor/Product Selection

Executive Sponsor

Functional Assessment

Rollout and Install

Technical Assessment

Vendor Management

Application Lead

Maintenance and Support

Development/Integration

User Training

Other...


Why did you purchase a Security Information Event Management solution?

Enable/improve security event alerting, investigation

Enable/improve log collection, reporting and retention capabilities

Meet regulatory or commercial compliance requirements

Enable/improve security incident workflow and reporting

Enable/improve behavioral analysis of users and other entities

Enable/improve tracking access to and activities related to databases, applications

Enable/improve security incident workflow and reporting

Meet customer or business partner expectations about your security monitoring program

Reduce costs for threat management operations

Reduce costs for meeting compliance mandates


What other vendors were considered? Multiple responses allowed.

Splunk

IBM

Intel Security (McAfee)

RSA, The Security Division of EMC

SolarWinds

Hewlett Packard Enterprise

AlienVault

LogRhythm

NetIQ

EventTracker

ManageEngine

SecureWorks (Dell)

AccelOps

CheckPoint Software Technologies

Elasticsearch

SecureWorks

Security Onion

Symantec

Other...


What were the key factors that drove your decision for selecting the vendor?

Product functionality and performance

Overall cost

Strong technical/product support

Product roadmap and future vision

Strong customer focus

Strong consulting partnership

Availability of managed services

Financial/organizational viability

Pre-existing relationships

Other...


In which region(s) did your deployment take place? Multiple responses allowed.

North America

North Amerca

Asia/Pacific

Europe, Middle East and Africa