We performed a comparison between Datadog and LogRhythm SIEM based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Datadog users like its customizable displays, error tracking, and advanced AI/ML capabilities. Users praised LogRhythm SIEM for its user-friendly centralized dashboard, strong integration, and event-filtering capabilities. Datadog could enhance its usability and reduce its learning curve. Users said integration was another pain point. LogRhythm SIEM has the potential to improve its SOAR and NDR features, platform stability, and MDI integration. LogRhythm users requested expanded log storage, better load balancing, and streamlined search capabilities.
Service and Support: While many users spoke highly of Datadog’s support team, others reported slow support, especially in the Asia-Pacific region. LogRhythm SIEM was generally praised for its helpful and knowledgeable support, although there have been occasional delays and knowledge problems.
Ease of Deployment: Datadog’s setup is considered straightforward, and users often receive help from a partner or vendor. LogRhythm SIEM's setup is considered to be straightforward. However, it is more time-consuming and complex for enterprise deployments involving multiple components or vendors, and users often require assistance from professional services or LogRhythm-certified engineers.
Pricing: Opinions about Datadog's price are divided. Some users found it costly, but others thought it was acceptable. Some said the pricing model could be clearer and better explained. LogRhythm SIEM’s license typically includes all elements. However, enterprise customers may encounter complexities related to additional features and add-ons.
ROI: Users said Datadog saved them time and improved visibility into security blind spots. LogRhythm SIEM has proven to be highly valuable, delivering a significant ROI by reducing the mean time to detect and respond.
"It helps us better manage our logs."
"The integration and configuration are incredibly simple. The SaaS offering is remarkably easy to set up, especially if you're coming from a Graphite environment or anything that uses a StatsD."
"I have found some of the most valuable features to be the way things all come together that gives us a point of view that is useful. The panel is very beautiful and customizable."
"The observability on offer is the most useful aspect of the product."
"The platform appeals to companies spanning many industries on a global scale."
"It has a nice UI."
"Anything I've wanted to do, I found a way to get it done through Datadog."
"Dashboards and their versatility are among the most valuable features."
"The PCI compliance pieces that help us produce reports for our external auditor, and their support."
"We have NetFlow information going into it, so we can examine a lot of traffic patterns and anomalies, especially if something stands out and is not the baseline. This helps a lot."
"It gives us insight into our entire installation, where we are multiple sites, going as far as the East Coast to the Central West Coast."
"The artificial intelligence engine."
"It allows us to automate a lot of things with a smaller team."
"Currently, we are in the implementation phase. LogRhythm is better than QRadar from the point of view of collecting Windows events. It has a much higher view. You can enable monitoring by default."
"The log analysis feature is valuable."
"The ability to drill down and pivot from an event is one of the biggest advantage the product has compared to other things that I have seen in the market."
"More granular control over dashboard sharing. Timeboard sharing."
"Geo-data is also something very critical that we hope to see in the future."
"When I started using it years ago, it had stability problems. I remember, specifically, we ran everything in Docker containers. There were some problems getting it into a Docker container with very specific memory limits."
"Managing dashboards as IaC is a bit hard to work out at times."
"Additional metrics should be included."
"While I like the ease of use, when compared with Tenable Nessus they could still improve their usability."
"One area where I was really looking for improvement was the CSPM product line. I had really wanted to have team-level visibility for findings, since the team managing the resources has much more context and ability to resolve the issue, as the service owner. However, this has been added to the announcement in a recent keynote."
"It would be ideal if the product offered a bit more monitoring from our dashboard."
"Sometimes the Platform Manager crashes because it's built around Windows."
"We have run into problems with stability going through upgrade processes. Recently, we have been on the front edge of the upgrade path. When that happens we tend to run into issues either with certain functionality not working after the upgrades or stability issues because of the upgrades."
"The security playbook could be pre-defined and available to other analysts with similar security issues."
"I would like to see support added for Exchange 2016, and CheckPoint OPSec Lea."
"When we originally got LogRhythm, their tech support was fantastic, and I loved them. Now, we don't quite get as quick of a response. I've been disappointed in the more recent tech support. When you call in, they'll say that they will get you somebody, and you'll finally get someone who will contact you back a day or so later. Whereas before, I would get help right away."
"Only area I can think of to improve on is the proof reading and using the guides before releasing them. Out the the 20+ guides I used one had issues with wrong information in it."
"My big thing is the easability. I don't like to go to two different systems. The fat client that you have to install to configure it, then the web console which is just for reporting and analysis. These features need to collapse, and it needs to be in a single solution. Going through the web solution in the future is the way to do it, because right now, it is a bit cumbersome."
"In terms of blind spots, we are looking for more improvements since we don't have visibility over everything."
Datadog is ranked 3rd in Log Management with 137 reviews while LogRhythm SIEM is ranked 7th in Log Management with 166 reviews. Datadog is rated 8.6, while LogRhythm SIEM is rated 8.4. The top reviewer of Datadog writes "Very good RUM, synthetics, and infrastructure host maps". On the other hand, the top reviewer of LogRhythm SIEM writes "The solution reduced our investigation time from days to hours and assists in managing our workflows". Datadog is most compared with Dynatrace, Azure Monitor, New Relic, AWS X-Ray and Elastic Observability, whereas LogRhythm SIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Microsoft Sentinel, Wazuh and LogRhythm Axon. See our Datadog vs. LogRhythm SIEM report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.