Logpoint works as a SIEM system. It provides SOAR functionality as well. It helps clients with users' endpoint behavior analysis.
Security Engineer at a tech services company with 51-200 employees
Scalable platform with good support services
Pros and Cons
- "The main advantage of Logpoint is the support service. They reply within ten minutes to an hour to our queries."
- "It is complicated to collect daily logs from other systems."
What is our primary use case?
What is most valuable?
The product's pricing is based on the number of devices instead of the Event Per Second model like other competitors. It has in-built SOAR functionality; we don't buy a separate solution. The main advantage of Logpoint is the support service. They reply within ten minutes to an hour to our queries. They provide free-of-cost service for routing and other processes, whereas other vendors charge extra costs for it.
What needs improvement?
We encounter difficulties for the product's micro deployment regarding integration with other systems. It is complicated to collect daily logs from other systems like QRadar and LogRhythm. Our customers are unable to install agents on the endpoint to send the logs.
For how long have I used the solution?
We have been reselling Logpoint for more than five years. At present, we are providing the latest version.
Buyer's Guide
Logpoint
October 2024
Learn what your peers think about Logpoint. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,763 professionals have used our research since 2012.
What do I think about the stability of the solution?
I rate Logpoint's stability an eight. We face disruptions while collecting insights.
What do I think about the scalability of the solution?
It is a very modular system. We can quickly scale it horizontally and vertically. It has high availability. Around 70% of customers for the product are small businesses.
How was the initial setup?
The product is straightforward to install as we already have a system snapshot. We downloaded the VMware template and changed the server's admin passwords, time zone, and hostname. It requires an hour to complete. I rate the process a ten out of ten.
What's my experience with pricing, setup cost, and licensing?
Logpoint's pricing is mid-ranged and depends on the number of devices. There are extra costs included if you want to buy additional modules. Also, you can purchase a subscription for 24/7 support services apart from standard 12-hour support services.
Which other solutions did I evaluate?
LogPoint should provide comprehensive comparison tables similar to QRadar. It shows very general insights.
What other advice do I have?
I rate Logpoint an eight out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller
Security Consultant at a government with 10,001+ employees
Enables ability to design drivers for log data collection which has improved efficiency
Pros and Cons
- "Log collection, dashboards and reporting are good."
- "Dashboards could be developed further."
What is our primary use case?
We're a health care organization and we had a specific case where LogPoint was able to help develop a special collector for an earlier version of our storage system, where we had issues with migration. Some files were missing when we migrated to the new system, and we had trouble finding out why. LogPoint was very helpful in designing some drivers which could collect the log data, so we could identify the problem. We're customers of LogPoint and I'm a security consultant.
What is most valuable?
The most valuable features for us have been the log collection, dashboards, and reporting.
What needs improvement?
My issues with the product are mainly with regard to how it handles collecting logs. I'm currently thinking about implementing a new lever feature.
Additional features I'd like to see would be standard help features in developing dashboards and reports, and some of the alerts you can setup.
For how long have I used the solution?
I've been using this solution for 10 years.
What do I think about the stability of the solution?
This is a stable solution.
What do I think about the scalability of the solution?
This is a scalable solution and we're currently expanding. We have 10 users but hoping to expand to 100.
How are customer service and technical support?
The technical support is comprehensive, but you have the same issues as every company that uses India as a support center.
How was the initial setup?
I believe the initial setup was straightforward but there have been some issues with some of the vendors we are using such as Dell EMC Isilon storage systems. They have a very cool setup for sending logs to a log management system.
What other advice do I have?
I would advise people to be aware of their needs, and test some specific use cases, so that you get the benefits from the start, because you don't gain anything out of a SIEM system, if you don't have the right amount of data, from the right sources.
I would rate this product an eight out of 10. I'm Danish so nobody gets a 10! There's always room for improvement.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Logpoint
October 2024
Learn what your peers think about Logpoint. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,763 professionals have used our research since 2012.
Cyber Security Analyst at a tech services company with 11-50 employees
Great user and entity behaviour analytics with a user-friendly interface
Pros and Cons
- "We like the user and entity behaviour analytics (UEBA) and find it valuable."
- "Log management could be better because transporting the log from a password to the client system takes time."
What is our primary use case?
We have certain vendors, and our work is to deploy the SIEM solution.
What is most valuable?
We like the user and entity behaviour analytics (UEBA) and find it valuable. The interface is also user-friendly and good.
What needs improvement?
Log management could be better because transporting the log from a password to the client system takes time.
For how long have I used the solution?
We have been using this solution for six months, and we are using the latest version.
What do I think about the stability of the solution?
I rate the stability a nine out of ten.
What do I think about the scalability of the solution?
I rate the scalability a nine out of ten. We have over 50,000 people using this solution.
How are customer service and support?
I rate the technical support an eight out of ten.
Which solution did I use previously and why did I switch?
We didn't use another solution before LogPoint.
How was the initial setup?
I rate the setup an eight out of ten. The solution is deployed on cloud, and it takes a few hours to deploy with a team of five people made up of some engineers.
What was our ROI?
There is a good ROI monetarily. We have seen approximately a 40% ROI.
What's my experience with pricing, setup cost, and licensing?
I rate the pricing an eight out of ten because it is quite expensive. There are no additional costs that I know of.
What other advice do I have?
I rate this solution a nine out of ten. It is a good product, and while it has complex security, it has many features.
Disclosure: My company has a business relationship with this vendor other than being a customer: partner
Security Professional with 501-1,000 employees
It's a product that you can get up and running in a few hours. As it's fairly new, it is swamped with small and fairly large problems.
How has it helped my organization?
It's a product that will get the job done as a simple version of a SIEM or an advanced logger, and the price makes it a very competitive product.
What is most valuable?
LogPoint is a good logger. It's a product that you can get up and running in a few hours. It's fast.
What needs improvement?
As LogPoint is fairly new, it is swamped with small and fairly large problems. Most of these are eventually fixed by patches or by manually editing the system.
Also, they need to listen more to the technical users to evolve this to a real SIEM and not "SIEM but different".
What do I think about the stability of the solution?
Yes. As the product is fairly new, they do have some problems with stability.
The syslog_collector service needs some work.
The ODBC_Fetcher needs a lot of work and they do have other problems.
What do I think about the scalability of the solution?
This is something that LogPoint is good at. It's very modular so it's very forgiving if you have the need to change something.
How are customer service and technical support?
Customer Service:
This is a HUGE problem. Their customer service is getting better, but sometimes it can take several days before I even got a first reply on a critical error.
Technical Support:
As I worked a lot with them and they are not that many, their technical competence and ways to attack a problem differ greatly. A few have a 7/10 skill and some have a 10/10 skill.
There are no levels of support, and if they can't help, R&D had to get involved.
The common thing they all have is a 3/10 English skill and this is a problem. I'm not saying I'm 10/10, but this made it very difficult and there were many misunderstandings.
Which solution did I use previously and why did I switch?
We used a different solution, and we switched because of the price.
How was the initial setup?
At first glance, LogPoint is easy to set up. But when you lift the hood, this is where problems start and the learning curve is very steep.
What about the implementation team?
I am a certified LogPoint Technical Specialist, and I had help from colleagues who are also certified, LogPoint support, and the local sales engineer.
What's my experience with pricing, setup cost, and licensing?
Price and licensing are very good and simple, but they have been known to change it.
Which other solutions did I evaluate?
Yes, we evaluated some of the larger SIEM software solutions.
What other advice do I have?
Even if I bash a lot on LogPoint, I must say that it's a "bang for the buck" product. Yes, they do have a lot of problems, they will paint the landscape as the perfect world, and they will say "Yes" to a lot of questions, some of which may work and some of which may not.
If you understand your needs, if you know the size of your wallet, and talk to someone who knows this product and understands its limitations, this can be a good enough solution for you.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Security Architect at a tech services company with 51-200 employees
A user friendly solution that is scalable and very straightforward to set up
Pros and Cons
- "The flexibility of the search feature and the solution's analytics features are the most valuable parts of the solution."
- "The solution should offer more integrations and third-party solutions like incident response platforms or allow access to third-party big data"
What is our primary use case?
On a high-level, we primarily use the solution for creating security operation centers.
What is most valuable?
The flexibility of the search feature and the solution's analytics features are the most valuable parts of the solution.
It's also very user-friendly.
What needs improvement?
The solution should offer more integrations with third-party solutions, like incident response platforms, or allow access to third-party big data.
For how long have I used the solution?
I have been reselling the solution for one year.
What do I think about the stability of the solution?
The solution is stable.
What do I think about the scalability of the solution?
The solution is scalable.
How was the initial setup?
The initial setup is straightforward. Deployment takes about one month, but it depends on the scope of the project.
What other advice do I have?
We are a reseller, so we recommend a variety of solutions, including this one, to our clients.
I really like the solution's licensing model. It's very useful.
I would rate this solution eight out of ten. I would recommend it to others.
Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller.
Buyer's Guide
Download our free Logpoint Report and get advice and tips from experienced pros
sharing their opinions.
Updated: October 2024
Product Categories
Security Information and Event Management (SIEM) Log Management User Entity Behavior Analytics (UEBA) Endpoint Detection and Response (EDR) Security Orchestration Automation and Response (SOAR)Popular Comparisons
Wazuh
Splunk Enterprise Security
Microsoft Sentinel
IBM Security QRadar
Elastic Security
AWS Security Hub
LogRhythm SIEM
Rapid7 InsightIDR
Fortinet FortiSIEM
Splunk SOAR
Cybereason Endpoint Detection & Response
AlienVault OSSIM
USM Anywhere
Exabeam
ArcSight Enterprise Security Manager (ESM)
Buyer's Guide
Download our free Logpoint Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- What Solution for SIEM is Best To Be NIST 800-171 Compliant?
- When evaluating Security Information and Event Management (SIEM), what aspect do you think is the most important feature to look for?
- What are the main differences between Nessus and Arcsight?
- Which is the best SIEM solution for a government organization?
- What is the difference between IT event correlation and aggregation?
- What Is SIEM Used For?
- What Questions Should I Ask Before Buying SIEM?
- RSA-EMC vs. other SIEM products?
- What are the pros and cons of internal SOC vs SOC-as-a-Service?
- Between AlienVault and LogRhythm, which solution is suitable for Banks in Gulf Region