Elastic Security Reviews

Name: Elastic Security
Brand: Elastic
Rating: 3.8 (61 reviews)

3.8 out of 5

61 reviews
85% willing to recommend

802 followers

What is Elastic Security?

Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.

Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

Get the Elastic Security Buyer's Guide and find out what your peers are saying about Elastic Security, Wazuh, Splunk Enterprise Security and more!

Elastic Security is the #5 ranked solution in Log Management Software, #5 ranked solution in top Security Information and Event Management (SIEM) solutions, #6 ranked solution in SOAR tools, #8 ranked solution in XDR Security products, and #16 ranked solution in EDR tools. PeerSpot users give Elastic Security an average rating of 7.6 out of 10. Based on the analysis of the 61 most recent Elastic Security reviews, the overall sentiment is positive, with a sentiment score of 8.2. (The highest in the category). Elastic Security is most commonly compared to Wazuh: Elastic Security vs Wazuh. Elastic Security is popular among the large enterprise segment, accounting for 53% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 17% of all views.

Helped 816,406 peers since 2012

Featured reviews

Gajewski Marek

Chief Technology Officer & Co-founder at CS2

We previously used Splunk but switched to Elastic Security because Splunk was more expensive. Feature-wise, both tools are pretty much the same. They have almost the same functions. Elastic Security has a much better AI assistant that allows you to ask questions like a normal person. With Elastic Security, I can also predict the price and how much it will cost. Splunks's pricing depends on how much data we use and the different add-ons I have to add. The pricing is much better with Elastic Security.

Read full review

Nikhil-Kumar

Assistant Manager - IT Security at Photon inc

The initial setup can be complex if you don't have technical knowledge. However, once it is deployed, it works well. I'm not sure how long it took to deploy. I wasn't there when it was set up and configured. We have an internal team that handles deployment and maintenance. It doesn't require too many people to deploy. Five or six people would be enough. However, for 24/7 monitoring, you need to have someone always on it.

Read full review

Matthew DeGrandis

System Administrator at a financial services firm with 11-50 employees

Elastic Security has a steep learning curve, so it takes some time to tune it and set it up for your environment. There are some costs associated with logging things that don't have value. So you need to be cautious to only log things that make sense and keep them around for as long as you need. You shouldn't hold onto things just because you think you might need them.

Read full review

Elastic Security mindshare

Product category:

As of November 2024, the mindshare of Elastic Security in the Log Management category stands at 5.0%, down from 8.1% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Log Management

Key learnings from peers

Last updated Nov 21, 2024

Valuable Features

Elastic Security is highly flexible and can handle large loads, with customizable dashboards and machine learning capabilities. It is open-source and free to use, with good technical support and a helpful community. The search function is particularly helpful due to its speed and ability to search through terabytes of log data. It integrates well with other solutions, such as the ELK Stack. The solution is also praised for its prevention methods and incident alerts, as well as its flexibility and ability to monitor application performance.

"The solution's most valuable features are anomaly detection and connectivity reporting."
"The tool's functionality is good for overall security and incident response times."
"Elastic Security makes data communication easier."

Room for Improvement

Improvements needed for Elastic Security include better pagination for the logs list, improved permissions management, simplification of the setup process, more automation in responding to detections, and a simpler user interface. Others noted the need for better premium support, improved documentation, better integration and graphical interfaces, more features for Linux, more clarity on space utilization, and more out-of-the-box use cases for SIEM. Additional features that would help are more advanced modules in Logstash, and improved troubleshooting and diagnostic tools.

"The solution's basic setup takes time, and a lot of effort is required from the beginning to make it actually work."
"I want to find an automatic security system in the tool, like a SOAR solution. I am looking forward to seeing a SOAR system in the tool."
"The solution should generate an automatic product that integrates with ELK Stack to use artificial intelligence."

ROI

Users mention that the product efficiently identifies bugs and provides a return on investment. It is also noted that a good return on investment typically becomes apparent within one and a half to two years after deploying Elastic Security.

Pricing

Elastic Security offers a transparent pricing structure typically without setup costs, ensuring a seamless integration process for users. Pricing methods commonly revolve around a subscription model, allowing businesses to customize their investment based on usage and features required. Costs vary depending on deployment size and specific needs, catering to diverse organizational budgets.

"Compared to other tools, Elastic Security is a cheaper solution."
"I can say that the product is cheaply priced."
"The solution is not expensive and costs around ten dollars a month."

Popular Use Cases

Elastic Security is used for logging application logs in a microservice architecture, managing logs and time series data, collecting logs from Active Directory servers, log management, and analyzing logs for security teams. Other use cases include threat hunting and identification, and as a SIEM for monitoring client environments, and application performance monitoring.

Service and Support

Some users have positive experiences and find the support staff knowledgeable and helpful, offering support throughout all project stages. Others have had negative experiences with premium support, finding the staff unresponsive and unhelpful. Some users rely on community support and documentation, which can be helpful but may take longer to resolve issues.

Deployment

The initial setup for Elastic Security depends on the user's technical knowledge and requirements. Some find it straightforward and easy to implement, while others find it highly complex and challenging. The documentation is sometimes lacking, but the product has a large support community. Maintenance requirements vary depending on the project.

Scalability

Elastic Security is highly scalable. It is easy to expand according to need, but doing so my require a certain level of skill, and integration with other products may be a bit difficult.

Stability

The stability of Elastic Security varies depending on factors such as proper configuration and upgrades. Many users find it to be stable and reliable, with few bugs or glitches.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Elastic Security Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

10%

Government

10%

University

Manufacturing Company

Comms Service Provider

Educational Organization

Retailer

Healthcare Company

Energy/Utilities Company

Insurance Company

Media Company

Construction Company

Non Profit

Real Estate/Law Firm

Hospitality Company

Wholesaler/Distributor

Recreational Facilities/Services Company

Legal Firm

Outsourcing Company

Aerospace/Defense Firm

Transportation Company

Pharma/Biotech Company

Performing Arts

Security Firm

Leisure / Travel Company

Logistics Company

Recruiting/Hr Firm

Compare Elastic Security with alternative products

Learn more about Elastic Security

Additional offerings and benefits:

The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

Elastic Security was previously known as Elastic SIEM, ELK Logstash.