LogRhythm SIEM Reviews

The primary use case is an analysis of server logs with some deeper analysis done on searches. Reports help ensure various departments have daily notices of any activity that they should be reviewing.

• Alerts to account usage errors.
• Reports of malware from the antivirus.
• Reports application errors presented in logs.

Daily alerts: These allow me to quickly find security and operational issues which need to be addressed.

More detail in the alerts given to avoid additional searches, as often the source or destination associated with the alert is not evidenced.

• Clarity of information
• Ease of deployment

The ability to provide insights and simplification for complex volumes of information.

The ability to customize certain features of the product.

I've used it for one year.

I find that the system is stable and handling our traffic very well.

The customer service teams is excellent and have they resolved anything we have thrown at them in a timely fashion.

The technical support team is excellent and have they resolved anything we have thrown at them in a timely fashion.

We do not have one yet, but we definitely foresee a ROI.

NextGen SIEM's best feature is how it presents logs. For example, the dashboard view is detachable from other things.

NextGen SIEM has separate rules for AI, advanced intelligence, and MP rules - it would be better to have a centralized way to write the rules and create alarms. In the next release, I would like to see the network hierarchy diagram that QRadar offers.

I've been using LogRhythm NextGen SIEM for one year.

NextGen SIEM's performance is quite good.

NextGen SIEM is easy to scale.

I previously used QRadar SIEM.

The initial setup was simple, and it took two days to deploy.

NextGen SIEM's pricing is moderate. There are additional costs for different applications.

I would recommend NextGen SIEM to other users as it is a leading solution with new features at a better price than competitors like Splunk and QRadar.

NextGen SIEM is primarily used by the SOC team to detect attacks. 

NextGen SIEM's most valuable feature is its user-friendliness.

NextGen SIEM's integration with other software is good but could be improved.

I've been working with LogRhythm NextGen SIEM for three years.

NextGen SIEM is stable.

The initial setup was straightforward.

I would recommend NextGen SIEM to those considering implementing it and would rate it eight out of ten.

• Security analytics
• Compliance: The reason we implemented was compliance. We're hoping to use it more now.

Security analytics have definitely improved. It is definitely more dynamic than our old flat file archives system.

As a security organization, the key challenges and goal are data integrity and definitely user access to insure that certain sections are kept more secure than others.

It seems with all of the advanced features that we haven't quite figured them out.

It is very complex. More training maybe, in addition to the LogRhythm training on the community website, which is a lot. Better adoption starting out, so we are more comfortable when we start and when we go live.

We are pretty new.

We are learning more as the days go on. I am sure a lot of the really impressive stuff will come later.

Scalability is extremely great. We are looking to scale it way more than we already are as we grow.

We haven't contacted them yet.

The initial setup was straightforward.

LogRhythm came in and did so much for us. We were up and running before the week was over.

Take advantage of the feature set that LogRhythm has to offer. It has more features than a lot of their competitors. You will be further in the end.