Its Security Information and Event Management (SIEM) capabilities (security analysis, forensics) are the most valuable features for us.
LogRhythm NextGen SIEM Review
The Advanced Intelligence Engine alerts the SOC to potential security issues, though File Integrity Monitoring needs improvement.
What is most valuable?
How has it helped my organization?
The LogRhythm AIE (Advanced Intelligence Engine) is very good at alerting my SOC to events of interest and potential security issues without flooding my team with noise.
What needs improvement?
There is room for improvement in the area of File Integrity Monitoring.
For how long have I used the solution?
I've used it for 15 months.
What was my experience with deployment of the solution?
No issues encountered.
What do I think about the stability of the solution?
No issues encountered.
What do I think about the scalability of the solution?
No issues encountered.
How are customer service and technical support?
Customer Service:
It's excellent.
Technical Support:It's excellent.
Which solution did I use previously and why did I switch?
I have used Tripwire, which was a poor SIEM solution.
What about the implementation team?
We used a vendor team. I recommend using LogRhythm's professional services for assistance with implementation.
What other advice do I have?
I highly recommend LogRythm for SIEM.
**Disclosure: I am a real user, and this review is based on my own experience and opinions.
Last updated: Sep 30 2015
Author
it_user320625
Senior Security Engineer at Gemalto
Vendor
BUYER'S GUIDE
Download our free Security Information and Event Management (SIEM) Report and find out what your peers are saying about LogRhythm, Splunk, IBM, and more!
