Logpoint Reviews

Name: Logpoint
Brand: Logpoint
Rating: 3.8 (21 reviews)

3.8 out of 5

21 reviews
89% willing to recommend

973 followers

What is Logpoint?

Logpoint is a cutting-edge security information and event management (SIEM) solution that is designed to be intuitive and flexible enough to be used by an array of different businesses. It is capable of expanding according to its users' needs.

Get the Logpoint Buyer's Guide and find out what your peers are saying about Logpoint, Wazuh, Splunk Enterprise Security and more!

Logpoint is the #7 ranked solution in top User Entity Behavior Analytics (UEBA) solutions, #15 ranked solution in SOAR tools, #26 ranked solution in top Security Information and Event Management (SIEM) solutions, #27 ranked solution in Log Management Software, and #32 ranked solution in EDR tools. PeerSpot users give Logpoint an average rating of 7.6 out of 10. Based on the analysis of the 21 most recent Logpoint reviews, the overall sentiment is positive, with a sentiment score of 6.1. (Among the lowest in the category). Logpoint is most commonly compared to Wazuh: Logpoint vs Wazuh. Logpoint is popular among the midsize enterprise segment, accounting for 73% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a educational organization, accounting for 67% of all views.

Helped 816,406 peers since 2012

Featured reviews

Subhash Sreenivasan

Head of Professional Services at NiyoSecure

The documentation part is something that needs to be improved, as well as the threat intelligence investigation part. Logpoint has a kind of site to describe what kinds of threats they are investigating. But that, I think, maybe Logpoint can improve more. The threat investigations and reporting to the end-users can be improved. Logpoint can also come up with IR [incident response] capabilities. Other important SIEM solutions have some IR services. If I am an MSSP working with LogPoint for SIEM/SOAR solutions and I need immediate support, I should be able to get some support. It can be paid support, like SecureWorks, which has those kinds of functionalities. They will immediately get in and start working on helping us identify the threats, isolate them, and give us remedies to take care of and recover from any kind of attacks. Whereas in LogPoint, that functionality is missing. We will be on our own if something happens. We will get other support from them, but there's no paid support before taking ownership and helping us recover from those kinds of attacks. They have a kind of integration for AI, but the incident response capability is what they should improve.

Read full review

Ahmad Bin Zaini

Cyber Security Engineer at IshanTech (M) Sdn Bhd

I use the product for my research and development to enhance my work. We are transitioning to a new technology, and Logpoint has proven valuable for my purposes The solution is user-friendly. Logpoint is not flexible. Its documentation is not user-friendly. I have been working with the…

Read full review

Jeroen Kroon

Security Manager at Scildon

We are moving away from this solution and are looking for something automated, like Darktrace. My advice for anybody who is implementing this solution is to first have a very clear understanding of the use cases, what you want to use it for, and what you want to report. Don't be afraid to look for a cloud-based solution, especially when it comes to SIEM products. It removes a lot of trouble related to internal servers and the complexity of accessing the SIEM from outside. If you have to implement your own MSA then I would suggest reconsidering any case of using an internal SIEM. Especially for smaller companies, this will provide much more value. I would rate this solution a seven out of ten.

Read full review

Logpoint mindshare

Product category:

As of November 2024, the mindshare of Logpoint in the Security Information and Event Management (SIEM) category stands at 0.8%, up from 0.8% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Key learnings from peers

Last updated Nov 21, 2024

Valuable Features

LogPoint's most valuable features include its user-friendly interface and integration capabilities, surpassing other products like Wazuh and LogRhythm. The exceptional dashboard and cost-efficiency are also highly regarded.

Users appreciate the ease of use, powerful query language, and accessibility through the web interface. The user and entity behavior analytics (UEBA) feature is considered valuable, along with the ability to create tailored use cases based on assets.

The combination of SIEM and SOAR in one solution sets LogPoint apart. Additionally, the translation service provided by LogPoint for logs from exotic applications is highly praised. The search feature, dashboards, and centralization of logs are also seen as valuable.

LogPoint's comprehensive capabilities for gathering and parsing logs from various systems, along with its use of AI and machine learning technology for monitoring endpoints and user activity, make it a top choice in the market.

"In my experience with medium-sized operations, LogPoint's scalability is excellent, so I would rate it a ten out of ten."
"The solution is user-friendly."
"The product is easy to use."

Room for Improvement

Improvements can be made to LogPoint in several areas. Firstly, the agent installation method needs improvement as it currently requires manual updating of IP addresses and codes. This process should be streamlined to allow for easier integration of systems into LogPoint without the need for agents. Additionally, the user and installation guides should be improved to make them more accessible to users with basic knowledge.

The graphical user interface (GUI) of LogPoint could also use improvement. While the solution is usable, the GUI lacks aesthetics and is considered outdated. Other SIEM tools such as IBM QRadar and LogRhythm have more user-friendly and visually appealing UIs. LogPoint should consider enhancing its UI with features like color and a custom dashboard to provide a better user experience.

Log management could be better in terms of log transportation from a password to the client system, as it currently takes time. LogPoint should work on optimizing this process for more efficient log management.

Handling multiple types of logs is another area for improvement. LogPoint sometimes discards logs and has difficulty processing various types of logs. Adding a multiple-log processing feature in the next release would be beneficial.

Memory consumption and performance issues have been reported with LogPoint, especially when running as virtual services. These issues should be addressed to improve the overall performance of the solution.

While LogPoint provides preset dashboards, customization options are limited. Users should have the ability to create and customize dashboards according to their specific needs.

One downside of LogPoint is that it is not a Software-as-a-Service (SaaS) solution and can only be deployed on-premises. In today's industry, it is more favorable to have cloud-native solutions that can be deployed in popular cloud platforms. LogPoint should consider offering a cloud deployment option for easier management and cost savings.

Performance is another area where LogPoint can improve. Pure speed and efficient data processing are important factors that LogPoint should focus on to enhance its performance.

Lastly, LogPoint's documentation needs improvement. While the functionality of the product is considered good, the documentation should be enhanced to provide better support and guidance to users. Ad-hoc reporting capabilities can also be improved to allow users to create custom reports more easily.

"The documentation part is something that needs to be improved, as well as the threat intelligence investigation part."
"Logpoint is not flexible. Its documentation is not user-friendly."
"Sometimes, the product is not stable."

ROI

Logpoint has provided a positive return on investment for users. Logpoint offers good value for the money and a favorable cost model.

Pricing

Logpoint offers a straightforward pricing structure with no setup costs, easing the onboarding process for users. Pricing methods typically involve subscription-based models, accommodating per-user or per-event licensing options. The pricing range is flexible, catering to organizations of different sizes and needs, providing scalable SIEM solutions.

"On a scale of one to ten, where one is cheap, and ten is expensive, I would rate LogPoint's pricing a seven. It is not very expensive compared to some of the more costly products, and it is not very cheap compared to some of the cheaper products in the SIEM market."
"Logpoint's pricing is mid-ranged and depends on the number of devices."
"It's less expensive than the competitors. The Logpoint marketing team is very accommodating and client-friendly. They offer very good reductions in price. They are pretty good in this aspect. They are transparent in their licensing and pricing."

Popular Use Cases

LogPoint is primarily used to protect clients' environments by identifying users and the tools they access. It is also used for triage, log collection, and security analysis.

Additionally, LogPoint is utilized for data aggregation, creating custom use cases, and triggering escalations to the IT team. It is used for compliance reasons, focusing on separation of duties, privilege escalation, and access to sensitive data.

LogPoint is also used as a full-blown team system for orchestrating incident responses and as a repository for logs within office systems. It monitors users and endpoints, studying their activities and triggering alarms for any deviations.

Service and Support

LogPoint's customer service and support have received positive feedback from users. The support provided in Asia is highly praised, with the team being consistently active and responsive, addressing queries within an hour.

Opening support tickets and connecting with the LogPoint support team is described as easy and efficient. However, there is some criticism regarding the lower-level support team's ability to understand issues with LogPoint, leading to frequent escalations to the higher-level team. Comparatively, the L1 support team of IBM QRadar is considered more competent.

Despite this, LogPoint's technical support is generally rated positively, with prompt ticket response and solutions provided directly by the vendor.

Deployment

The initial setup for LogPoint was described as complex by some users, especially for those without experience using the solution. However, others found it relatively easy and straightforward.

The deployment time varied, with some implementing it within a few weeks while others took several months. The number of systems needing integration with LogPoint also affected the setup time.

Maintenance and configuration required the involvement of a system administrator and security analyst.

Some users had the vendor assist with the setup, while others conducted a thorough testing period before purchasing.

Scalability

Logpoint is highly scalable, with several customers ranging from large enterprises to medium enterprises.

Stability

The stability of the Logpoint solution is generally good, with some minor issues reported by a few users. These issues were resolved by adding more resources such as RAM or CPUs. However, there were some glitches with LogPoint, particularly related to exceeding EPS limits, data normalization, and handling multiple types of logs. In some cases, logs were discarded, leading some users to switch to LogRhythm.

Despite these concerns, other users reported that LogPoint has been stable and reliable for them, with no major hiccups. It is also worth noting that LogPoint is recognized by Gartner and considered a strong player in the SIEM market, indicating its solid and stable product.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Logpoint Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Educational Organization

67%

Computer Software Company

Comms Service Provider

Manufacturing Company

Financial Services Firm

Government

Construction Company

University

Non Profit

Real Estate/Law Firm

Retailer

Healthcare Company

Insurance Company

Transportation Company

Media Company

Wholesaler/Distributor

Compare Logpoint with alternative products

Learn more about Logpoint

Benefits of Logpoint

Some of the benefits of using Logpoint include:

Unifies data logs: Logpoint creates a single system of classification for collected data. It makes it easy for users to search for and find data, which aids users when they are creating reports or alerts. Users can conserve resources while at the same time seeing a rise in the efficiency of their business operations.

Intuitive solution design: Logpoint is designed so that anyone can utilize all of its features, even if they are not an expert in network security. Logpoint’s UI is simple enough that users can utilize it without undergoing extensive training.

Highly flexible: Logpoint is designed so that users can scale it linearly to accommodate projects that are large and complex. This allows users to expand the scope of their projects according to their needs without worrying that their infrastructure won’t be able to handle the increase in size. The solution’s security features can be deployed both on the cloud and in a physical environment.

Simple role-based access security: Logpoint allows administrators to employ Microsoft’s active directory (AD) and a Lightweight Directory Access Protocol to manage user access. These can help administrators protect their systems from being abused or otherwise harmed by bad actors.

Reviews from Real Users

Logpoint is a security and management solution that stands out among its competitors for a number of reasons. Two major ones are its data gathering and artificial intelligence (AI) capabilities. Logpoint enables users to not only gather the data, but also to maximize both the amount of data that can be gathered and its usefulness. It removes many of the challenges that users may face in data collection. The solution allows users to set rules for collection and then it pulls information from sources that meet the rules that have been set. This data is then broken into manageable segments and ordered. Users can then analyze these ordered segments with ease. Additionally, LogPoint utilizes both machine learning and AI technology. Users gain the ability to protect themselves from and if necessary resolve emerging threats as soon as they arise. The AI sets security parameters for a user’s system. These act as a baseline that are triggered and notify the user if anything deviates from the rules that it set up.

The chief infrastructure & security officer at a financial services firm writes, “It is a very comprehensive solution for gathering data. It has got a lot of capabilities for collecting logs from different systems. Logs are notoriously difficult to collect because they come in all formats. Logpoint has a very sophisticated mechanism for you to be able to connect to or listen to a system, get the data, and parse it. Logs come in text formats that are not easily parsed because all logs are not the same, but with Logpoint, you can define a policy for collecting the data. You can create a parser very quickly to get the logs into a structured mechanism so that you can analyze them.”

A. Secca., a Cyber Security Analyst at a transportation company, writes, “It is an AI technology because it is using machine learning technology. So far, there is nothing better out there for UEBA in terms of monitoring endpoints and user activity. It is using machine learning language, so it is right at the top. It provides that capability and monitors all of the user’s activities. It devises a baseline and monitors if there is any deviation from the baseline.”

Product Video

Logpoint customers

AP Pension, Copenhagen Airports, KMD, Terma, DISA, Danish Crown, Durham City Council, Game, TopDanmark, Lahti Energia, Energi Midt, Synoptik, Eissmann Group Automotive, Aligro, CG50...