Its Security Information and Event Management (SIEM) capabilities (security analysis, forensics) are the most valuable features for us.
LogRhythm NextGen SIEM Review
The Advanced Intelligence Engine alerts the SOC to potential security issues, though File Integrity Monitoring needs improvement.
What is most valuable?
How has it helped my organization?
The LogRhythm AIE (Advanced Intelligence Engine) is very good at alerting my SOC to events of interest and potential security issues without flooding my team with noise.
What needs improvement?
There is room for improvement in the area of File Integrity Monitoring.
For how long have I used the solution?
I've used it for 15 months.
What was my experience with deployment of the solution?
No issues encountered.
What do I think about the stability of the solution?
No issues encountered.
What do I think about the scalability of the solution?
No issues encountered.
How are customer service and technical support?
Customer Service:
It's excellent.
Technical Support:It's excellent.
Which solution did I use previously and why did I switch?
I have used Tripwire, which was a poor SIEM solution.
What about the implementation team?
We used a vendor team. I recommend using LogRhythm's professional services for assistance with implementation.
What other advice do I have?
I highly recommend LogRythm for SIEM.
Which version of this solution are you currently using?
6.3.3
**Disclosure: I am a real user, and this review is based on my own experience and opinions.
Last updated: Sep 30 2015
More LogRhythm NextGen SIEM reviews from users
Learn what your peers think about LogRhythm NextGen SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
455,164 professionals have used our research since 2012.
Author
it_user320625
Senior Security Engineer at a tech vendor with 10,001+ employees
MSP
Highlights
The ability to investigate a particular period of time where you can analyze logs is its most valuable feature.
The feature that makes it usable is the web interface.
We use this solution to examine disparate log sources and provide a cohesive method to search for anomalous behavior.
I have found the Advanced Intelligence Engine has provided the most value to us because we can customize alarms based on our requirements and have created hundreds of alarms that notify different people for different scenarios.
The initial setup is pretty easy.
The most valuable feature is that we can alternate incident automations.
In terms of security, LogRhythm NextGen SIEM is great.
Popular Comparisons
IBM QRadar
ELK Logstash
ArcSight Enterprise Security Manager (ESM)
AT&T AlienVault USM
Rapid7 InsightIDR
Fortinet FortiSIEM
Fortinet FortiAnalyzer
Securonix Security Analytics
RSA NetWitness Logs and Packets (RSA SIEM)
Google Stackdriver
Buyer's Guide
Download our free LogRhythm NextGen SIEM Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Does LogRhythm NextGen SIEM offer good security?
- Which is the best SIEM solution for a government organization?
- What Is SIEM Used For?
- What is the difference between IT event correlation and aggregation?
- What are the threats associated with using ‘bogus’ cybersecurity tools?
- Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?
- What are the must-haves for a SIEM solution?
- What is the difference between SIEM and SOAR platforms?
- What is the difference between log management and SIEM?
- Are you using a SIEM platform with AWS Cloudwatch?