Improvements needed in Logsign SIEM are providing specific security alerts that can be filtered and configured more effectively. There should be a focus on delivering alerts tailored to specific needs rather than overwhelming users with numerous alerts. Additionally, incorporating more mature data about threats is necessary for better threat detection.
SIEM Administrator at Network Intelligence (I) Pvt. Ltd.
Real User
Top 20
2024-03-15T10:51:00Z
Mar 15, 2024
I hope they address the pricing model for Logsign Next-Gen SIEM, especially regarding regional variations. The pricing should not differ based on the country of operation as it can lead to dissatisfaction among customers. A fixed pricing structure would be more favorable for us. I would also suggest enhancing the GUI interface and adding features similar to xFi Exchange from IBM Pure. This would streamline operations and save time for analysts.
Logsign is a log management system based on Elasticsearch. When creating alerts and correlations, you use the Kibana query, based on the Elasticsearch queries. The query language is freaky. It's not always possible to correlate some of that. Logsign needs to fix the correlation engine. So you can monitor and correlate events on the different parts of the system. Also, users need to be able to build the alerts and regulations much easier.
It does not have much AI and machine learning features yet. They are developing them and will be releasing them in a few months.
Improvements needed in Logsign SIEM are providing specific security alerts that can be filtered and configured more effectively. There should be a focus on delivering alerts tailored to specific needs rather than overwhelming users with numerous alerts. Additionally, incorporating more mature data about threats is necessary for better threat detection.
I hope they address the pricing model for Logsign Next-Gen SIEM, especially regarding regional variations. The pricing should not differ based on the country of operation as it can lead to dissatisfaction among customers. A fixed pricing structure would be more favorable for us. I would also suggest enhancing the GUI interface and adding features similar to xFi Exchange from IBM Pure. This would streamline operations and save time for analysts.
Logsign is a log management system based on Elasticsearch. When creating alerts and correlations, you use the Kibana query, based on the Elasticsearch queries. The query language is freaky. It's not always possible to correlate some of that. Logsign needs to fix the correlation engine. So you can monitor and correlate events on the different parts of the system. Also, users need to be able to build the alerts and regulations much easier.