LogRhythm NextGen SIEM Review

The Advanced Intelligence Engine alerts the SOC to potential security issues, though File Integrity Monitoring needs improvement.

What is most valuable?

Its Security Information and Event Management (SIEM) capabilities (security analysis, forensics) are the most valuable features for us.

How has it helped my organization?

The LogRhythm AIE (Advanced Intelligence Engine) is very good at alerting my SOC to events of interest and potential security issues without flooding my team with noise.

What needs improvement?

There is room for improvement in the area of File Integrity Monitoring.

For how long have I used the solution?

I've used it for 15 months.

What was my experience with deployment of the solution?

No issues encountered.

What do I think about the stability of the solution?

No issues encountered.

What do I think about the scalability of the solution?

No issues encountered.

How are customer service and technical support?

Customer Service:

It's excellent.

Technical Support:

It's excellent.

Which solution did I use previously and why did I switch?

I have used Tripwire, which was a poor SIEM solution.

What about the implementation team?

We used a vendor team. I recommend using LogRhythm's professional services for assistance with implementation.

What other advice do I have?

I highly recommend LogRythm for SIEM.

**Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment