Sumo Logic Security Reviews

Name: Sumo Logic Security
Brand: Sumo Logic
Rating: 4.2 (19 reviews)

Vendor: Sumo Logic

4.2 out of 5

19 reviews
91% willing to recommend

527 followers

Post review

What is Sumo Logic Security?

Sumo Logic

Get the Sumo Logic Security Buyer's Guide and find out what your peers are saying about Sumo Logic Security, Wazuh, Splunk Enterprise Security and more!

Sumo Logic Security is the #12 ranked solution in SOAR tools, #19 ranked solution in Log Management Software, and #19 ranked solution in top Security Information and Event Management (SIEM) solutions. PeerSpot users give Sumo Logic Security an average rating of 8.4 out of 10. Based on the analysis of the 19 most recent Sumo Logic Security reviews, the overall sentiment is positive, with a sentiment score of 7.4. Sumo Logic Security is most commonly compared to Wazuh: Sumo Logic Security vs Wazuh. Sumo Logic Security is popular among the large enterprise segment, accounting for 60% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 16% of all views.

Helped 816,406 peers since 2012

Featured reviews

Moole Muralidhara Reddy

DevOps and Solution Architect at ADP

We are mainly concentrating on networking. We use VPC products and application logs to monitor the genuineness of users who have logged in. We also store and monitor GuardDuty logs to see if someone is trying to access the same server multiple times. We are storing and monitoring WAF logs and GuardDuty logs. If someone faces any issues, we'll receive an email and take action based on it. If someone tries to access one of the applications from a different country, we can search in Google and identify the location of that particular IP address. Sumo Logic Security identifies whether a particular IP address is low, medium, or high risk without the help of Google. We can store logs in CloudWatch, but it is very difficult to search them in CloudWatch. We should know the query in order to do that. Searching for logs with Sumo Logic Security is very easy compared to CloudWatch. We have been using the solution for more than two years and haven't faced any issues with the solution's availability. I would recommend the solution to other users. I would recommend Sumo Logic Security instead of AWS, CloudWatch, or CloudTrail. With Sumo Logic Security, you can capture and see all the logs in a single place. If some issues occur, you can log into the solution and verify all the logs. At an organizational level, we have multiple AWS accounts for different environments. Instead of logging in to all the AWS accounts, you can log in to Sumo Logic Security and verify everything. Overall, I rate the solution a nine out of ten.

Read full review

Vinay Patel D N

SOC Analyst at a computer software company with 1,001-5,000 employees

The correlation rules and log mapping are not as mature compared to other SIM tools like Splunk. Sometimes logs will not fetch, and there are issues if the log volume exceeds a threshold. Not every tool is integrated with Sumo Logic. The response time for their support could be better, and it is not very user-friendly.

Read full review

Sourabh Pardhi

Senior Information Security Analyst at Everbridge

The query of Sumo Logic is complex. It should be improved. The solution should improve its UI. FireEye, Splunk, and LogRhythm provide proper UIs. The solution should improve its scalability and stability. Connecting the collector with Sumo is difficult if a collector or device is down. We have faced multiple challenges like this, and we are still facing these challenges. We recently raised a ticket to Sumo Logic to investigate the issue.

Read full review

Sumo Logic Security mindshare

Product category:

As of November 2024, the mindshare of Sumo Logic Security in the Security Information and Event Management (SIEM) category stands at 0.8%, down from 1.0% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Key learnings from peers

Last updated Nov 11, 2024

Valuable Features

Sumo Logic Security offers valuable features such as log aggregation, real-time observability, and customizable alerts. Users appreciate its strong integration capabilities, ease of use, and responsive GUI. The threat intelligence integration and operability for monitoring, alerting, and forensics enhance security operations. Its ability to group and compare logs, troubleshoot issues, and capture host metrics proves essential for many. The Curry language, along with automated extensions, further enriches the users' experience.

"The Log Analytics platform is the most effective. If we cannot find the data in other tools, like email security or NDR, we can fetch those logs in the Log Analytics platform of Sumo Logic."
"Sumo Logic Security is a good solution for searching the logs and identifying the issues."
"We can integrate threat intelligence solutions into the product."

Room for Improvement

Sumo Logic Security requires enhancements in API integration, user interface, and dashboard creation. There is a need for predefined setups for logs and improved alerting functionality. Users find the interface slow and cumbersome, with challenges in scaling and stability. Pricing is considered high, and issues exist with agent installation on platforms like AWS Elastic Beanstalk. Enhanced support for security teams and better import and query capabilities are desired for more seamless operations.

"I don't recommend this product."
"The correlation rules and log mapping are not as mature compared to other SIM tools like Splunk."
"Sumo Logic Security is expensive, and its pricing could be improved."

ROI

Sumo Logic troubleshooting significantly reduced downtime, improving operational efficiency by enabling quick issue resolution. It saves time by eliminating the need for individual log credentials. Companies constantly monitor ROI, placing amortized costs alongside New Relic for service teams' reference. The return on investment is satisfactory, deterring companies from seeking alternatives. However, some remain unsure about the ROI achieved.

Pricing

Enterprise buyers reported that purchasing Sumo Logic Security through the AWS Marketplace simplifies billing, making it convenient. While pricing is seen as slightly high, users agree it offers substantial value for its features. Many find it reasonably priced compared to alternatives like Splunk and QRadar, though some note it's costly for smaller organizations. Pricing is based on events processed and log storage, with mixed opinions on affordability. Overall, it balances price and functionality effectively.

"Storing logs in Sumo Logic Security is charged GB-wise, which is a little higher than other products."
"The product is costly."
"The license pricing model is based on the events that are processed through the solution."

Popular Use Cases

Sumo Logic Security is primarily used for logging, monitoring, and security alerting. Organizations utilize it to manage application logs, VPC flow, CloudTrail, and other AWS services, facilitating error detection and incident alerting. It serves as a centralized log management system, enabling dashboard visualization for operational insights. It integrates with IT assets, providing security monitoring and forensics, and supports audit log management and DevSecOps activities.

Service and Support

Customers find Sumo Logic Security's customer service responsive and helpful. They appreciate attentive support, especially when dealing with log management and exceeding quotas. Support is generally available via email, with response times varying based on the support level. Some users mention fast replies and proactive engagement, while others feel the response could improve. Most users from larger accounts report satisfactory experiences, highlighting supportive and cooperative staff, although occasional dissatisfaction with response time exists.

Deployment

The integration and setup of Sumo Logic Security in AWS environments are generally easy. Users find the process straightforward, especially with available documentation. Many automate their setups and value the sample code for Lambda. Initial deployment is likened to onboarding a server, and managing log sources affects setup time. Sumo Logic is known for smooth installation, requiring minimal staffing to manage. Deployments are also noted as simple for new users familiar with AWS.

Scalability

Sumo Logic Security scales efficiently for various environments, handling diverse workloads and data sizes without performance issues. Organizations have successfully expanded their usage from a few servers to many, even with different user bases. Scalability suits varied needs, from cloud migrations to extensive application hosting. While scalability often depends on cost, users report no significant limits to capacity. Many rate Sumo Logic Security's scalability highly, highlighting its effectiveness across multiple installations.

Stability

Sumo Logic Security is mostly very stable. Users report it handles stress well with few performance issues. Real-time logs are generally reliable, and dashboards function with minimal downtime. Some minor lags in logs and occasional unresponsive interfaces occur, but these are infrequent. Most users rate its stability highly, often between seven to nine out of ten. There's an acknowledgment of its reliability in comparison to other services.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Sumo Logic Security Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Computer Software Company

16%

Financial Services Firm

11%

Government

10%

Manufacturing Company

Educational Organization

Energy/Utilities Company

University

Retailer

Healthcare Company

Insurance Company

Construction Company

Comms Service Provider

Non Profit

Real Estate/Law Firm

Legal Firm

Media Company

Hospitality Company

Transportation Company

Wholesaler/Distributor

Outsourcing Company

Logistics Company

Performing Arts

Consumer Goods Company

Aerospace/Defense Firm

Recreational Facilities/Services Company

Pharma/Biotech Company

Compare Sumo Logic Security with alternative products

Learn more about Sumo Logic Security

Sumo Logic is a cloud-based machine data analytics company focusing on security, operations, and BI use cases. It provides log management and analytics services that leverage machine-generated big data to deliver real-time IT insights.

Sumo Logic is developed as a SaaS solution, it processes and analyzes large quantities of IT infrastructure data, spotting patterns and anomalies that can indicate a potential threat or significant event.

The platform is designed to help IT, security, and business operations teams develop, manage, and secure their applications and cloud infrastructures. It collects, aggregates, and analyzes data from various sources including servers, virtual machines, and network devices, providing visibility into complex systems.

What are the key features of Sumo Logic?

Real-time Analytics: Continuous queries and live dashboards that provide insights into application performance, user behavior, and security threats.
Advanced Machine Learning: Utilizes machine learning algorithms to identify trends, anomalies, and patterns.
Integrated Threat Intelligence: Tools and workflows to enhance security postures by detecting threats and anomalies.
Multi-tenant Cloud Service: Allows users to operate in a shared cloud environment securely.

The solution aims to simplify data complexity, streamline operations, and provide actionable insights to businesses across various industries.

Sumo Logic is designed to handle high data volumes from multiple sources without diminishing performance. It is primarily deployed in the cloud with seamless integrations for AWS, Google Cloud, and Microsoft Azure. This flexibility allows users to leverage Sumo Logic’s capabilities regardless of their existing cloud infrastructure.

In summary, Sumo Logic is a comprehensive, AI-driven analytics solution ideal for businesses looking to enhance their IT and security operations through data-driven insights and real-time monitoring. Its flexible deployment options and scalable pricing model make it accessible for various business sizes and sectors.