Improvements needed in Logsign SIEM are providing specific security alerts that can be filtered and configured more effectively. There should be a focus on delivering alerts tailored to specific needs rather than overwhelming users with numerous alerts. Additionally, incorporating more mature data about threats is necessary for better threat detection.
SIEM Administrator at Network Intelligence (I) Pvt. Ltd.
Real User
Mar 15, 2024
I hope they address the pricing model for Logsign Next-Gen SIEM, especially regarding regional variations. The pricing should not differ based on the country of operation as it can lead to dissatisfaction among customers. A fixed pricing structure would be more favorable for us. I would also suggest enhancing the GUI interface and adding features similar to xFi Exchange from IBM Pure. This would streamline operations and save time for analysts.
Network Monitoring Engineer at a computer software company with 501-1,000 employees
Real User
Jan 8, 2024
Logsign is a log management system based on Elasticsearch. When creating alerts and correlations, you use the Kibana query, based on the Elasticsearch queries. The query language is freaky. It's not always possible to correlate some of that. Logsign needs to fix the correlation engine. So you can monitor and correlate events on the different parts of the system. Also, users need to be able to build the alerts and regulations much easier.
Log Management centralizes the collection, analysis, and storage of log data from diverse systems, providing valuable insights into system performance and security events. It enables organizations to enhance visibility and streamline their IT operations. A comprehensive Log Management solution offers centralized log data aggregation, simplifying the monitoring of network infrastructure and applications. By providing real-time analytics, these solutions help detect anomalies, track trends,...
It does not have much AI and machine learning features yet. They are developing them and will be releasing them in a few months.
Improvements needed in Logsign SIEM are providing specific security alerts that can be filtered and configured more effectively. There should be a focus on delivering alerts tailored to specific needs rather than overwhelming users with numerous alerts. Additionally, incorporating more mature data about threats is necessary for better threat detection.
I hope they address the pricing model for Logsign Next-Gen SIEM, especially regarding regional variations. The pricing should not differ based on the country of operation as it can lead to dissatisfaction among customers. A fixed pricing structure would be more favorable for us. I would also suggest enhancing the GUI interface and adding features similar to xFi Exchange from IBM Pure. This would streamline operations and save time for analysts.
Logsign is a log management system based on Elasticsearch. When creating alerts and correlations, you use the Kibana query, based on the Elasticsearch queries. The query language is freaky. It's not always possible to correlate some of that. Logsign needs to fix the correlation engine. So you can monitor and correlate events on the different parts of the system. Also, users need to be able to build the alerts and regulations much easier.