Sumo Logic Security Reviews

Logging all operational and security events in our enterprise environment. We use Sumo Logic to monitor all the applications that we run in the Amazon AWS cloud; we use Sumo Logic to monitor the security posture of our AWS IaaS with CloudTrail, VPC flow, S3 audit, GuardDuty, and EKS services. 

Sumo Logic is a single place to retrieve intelligence without worrying about architecture and performance.

The out of the box applications were very useful for us. We also use the Threat Intelligence integration for our security monitoring.

Automation is open to user's implementation, in my case, we used to use API to correlate and orchestrate events from Sumo Logic with other platforms, and now we are using an automation platform to centralize the various integrations.

We use it to keep our information database.

It provides easy visibility. I also like the shareable queries because we share a lot across groups.

Being able to join logs together across many services and servers.

There needs to be improvement on imported data which can be used within Sumo Logic to do more advanced queries.

We haven't had issues with it since I have been working with it.

The scalability fits our needs. It seems very fast and works well.

We just reach out via email if we need assistance.

I don't pay the bill. I've heard the AWS Marketplace pricing is high, but I like the value.

It was already in place when I joined the company, and we are not currently looking at any alternatives.

Reach out, see if you can get a demo on your data, and see how it fits your needs.

It works with all our main applications, so the integration with those products is pretty seamless from my standpoint.

We use the AWS version.

It is primarily for storing logs, then making reports out of the logs and also alert. If something goes up or down, or reaches a threshold, then we are on alert for that.

We push logs through Sumo Logic. The prime example is logs from our firewall. We have been pushing logs through Sumo Logic. Then, from there, we were able to generate reports which shows us security risks. In a way, it gives us a bird's eye view of what's happening from our connection's point of view.

We can ingest logs and make reports out of them. It is a good tool which can help us monitor any issues.

I would like to see improvement in the user experience when configuring things, ingesting logs, and creating ports.

Going forward, I would like more templates for reports, especially for common vendors, firewalls, and routers. That would be fantastic.

The stability is good. I have never had any issues with it.

The scalability is good. You can get as much as you want.

Our environment is very small. However, we are beginning to ramp up by pushing logs through Sumo Logic, as we progress with our cloud migration.

The technical support is fantastic.

The initial setup is the most stressful, like learning how to use it. Once you get hang of it, it should be all right.

I have had minimal experience of using Sumo Logic with the cloud. However, I think it's a matter of providing user credentials on your AWS account. I know they have different apps for AWS which you can easily use.

It satisfied what we required of it, but there's still room for improvement in terms of adding applications. Also, there is a little more improvement needed in terms of guiding users on the start up process.

Look at your functionalities, features, and how appropriate the solution is with what you need. Sumo Logic does give a lot of monitoring ability, even ingesting logs and integrating dashboard reports. You can do reports and alarms, which will aid whomever in the management of their infrastructure.