Try our new research platform with insights from 80,000+ expert users
CISO at a religious institution with 501-1,000 employees
Real User
Daily alerts allow me to quickly find security and operational issues
Pros and Cons
  • "The daily alerts allow me to quickly find security and operations issues which need to be addressed."
  • "More detail in the alerts given to avoid additional searches, as often the source or destination associated with the alert is not evidenced."

What is our primary use case?

The primary use case is an analysis of server logs with some deeper analysis done on searches. Reports help ensure various departments have daily notices of any activity that they should be reviewing.

How has it helped my organization?

  • Alerts to account usage errors.
  • Reports of malware from the antivirus.
  • Reports application errors presented in logs.

What is most valuable?

Daily alerts: These allow me to quickly find security and operational issues which need to be addressed.

What needs improvement?

More detail in the alerts given to avoid additional searches, as often the source or destination associated with the alert is not evidenced.

Buyer's Guide
LogRhythm SIEM
December 2024
Learn what your peers think about LogRhythm SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,053 professionals have used our research since 2012.

For how long have I used the solution?

One to three years.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
it_user418188 - PeerSpot reviewer
IT Security Manager at a financial services firm with 501-1,000 employees
Vendor
We used it primarily for security logging of events. We created reports based on traffic awareness for security.

What is most valuable?

The reporting feature is valuable.

How has it helped my organization?

We used it primarily for security logging of events. We created reports based on traffic awareness for security.

What needs improvement?

We would like to see a better base templates for reporting.

For how long have I used the solution?

I've used it for six months.

What was my experience with deployment of the solution?

The only issue we had was getting the Net Flow incorporated. However, that was issue was because of our implementation. Once we made a change it worked.

What do I think about the stability of the solution?

There were no issues with the stability.

What do I think about the scalability of the solution?

We had no issues scaling it for our needs.

How are customer service and technical support?

Customer Service:

I'd rate customer service a 10/10.

Technical Support:

I'd rate technical support a 10/10.

Which solution did I use previously and why did I switch?

I've also used QRadar.

How was the initial setup?

It was fairly straightforward.

What about the implementation team?

LogRhythm's vendor team helped us set it up. The box was delivered and they helped us get the licensing in and the initial setup.

What's my experience with pricing, setup cost, and licensing?

I would make sure you have Events Per Second set high enough for all of the events. This will cost a little more.

What other advice do I have?

It will take time for fine tuning, expect for four months to fine tune it to exclude the false positives.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
LogRhythm SIEM
December 2024
Learn what your peers think about LogRhythm SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,053 professionals have used our research since 2012.
it_user756384 - PeerSpot reviewer
Systems Administrator at a construction company
Vendor
Our security analytics have clearly improved

What is most valuable?

  • Security analytics
  • Compliance: The reason we implemented was compliance. We're hoping to use it more now.

How has it helped my organization?

Security analytics have definitely improved. It is definitely more dynamic than our old flat file archives system.

As a security organization, the key challenges and goal are data integrity and definitely user access to insure that certain sections are kept more secure than others.

What needs improvement?

It seems with all of the advanced features that we haven't quite figured them out.

It is very complex. More training maybe, in addition to the LogRhythm training on the community website, which is a lot. Better adoption starting out, so we are more comfortable when we start and when we go live.

For how long have I used the solution?

We are pretty new.

What was my experience with deployment of the solution?

We are learning more as the days go on. I am sure a lot of the really impressive stuff will come later.

What do I think about the scalability of the solution?

Scalability is extremely great. We are looking to scale it way more than we already are as we grow.

How is customer service and technical support?

We haven't contacted them yet.

How was the initial setup?

The initial setup was straightforward.

What about the implementation team?

LogRhythm came in and did so much for us. We were up and running before the week was over.

What other advice do I have?

Take advantage of the feature set that LogRhythm has to offer. It has more features than a lot of their competitors. You will be further in the end.

Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
PeerSpot user
reviewer1115169 - PeerSpot reviewer
Consultant at a tech services company with 11-50 employees
Consultant
User-friendly security solution
Pros and Cons
  • "NextGen SIEM's most valuable feature is its user-friendliness."
  • "NextGen SIEM's integration with other software is good but could be improved."

What is our primary use case?

NextGen SIEM is primarily used by the SOC team to detect attacks. 

What is most valuable?

NextGen SIEM's most valuable feature is its user-friendliness.

What needs improvement?

NextGen SIEM's integration with other software is good but could be improved.

For how long have I used the solution?

I've been working with LogRhythm NextGen SIEM for three years.

What do I think about the stability of the solution?

NextGen SIEM is stable.

How was the initial setup?

The initial setup was straightforward.

What other advice do I have?

I would recommend NextGen SIEM to those considering implementing it and would rate it eight out of ten.

Which deployment model are you using for this solution?

Private Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer:
PeerSpot user
Buyer's Guide
Download our free LogRhythm SIEM Report and get advice and tips from experienced pros sharing their opinions.
Updated: December 2024
Buyer's Guide
Download our free LogRhythm SIEM Report and get advice and tips from experienced pros sharing their opinions.