LogRhythm NextGen SIEM Review

We used it primarily for security logging of events. We created reports based on traffic awareness for security.


What is most valuable?

The reporting feature is valuable.

How has it helped my organization?

We used it primarily for security logging of events. We created reports based on traffic awareness for security.

What needs improvement?

We would like to see a better base templates for reporting.

For how long have I used the solution?

I've used it for six months.

What was my experience with deployment of the solution?

The only issue we had was getting the Net Flow incorporated. However, that was issue was because of our implementation. Once we made a change it worked.

What do I think about the stability of the solution?

There were no issues with the stability.

What do I think about the scalability of the solution?

We had no issues scaling it for our needs.

How are customer service and technical support?

Customer Service:

I'd rate customer service a 10/10.

Technical Support:

I'd rate technical support a 10/10.

Which solution did I use previously and why did I switch?

I've also used QRadar.

How was the initial setup?

It was fairly straightforward.

What about the implementation team?

LogRhythm's vendor team helped us set it up. The box was delivered and they helped us get the licensing in and the initial setup.

What's my experience with pricing, setup cost, and licensing?

I would make sure you have Events Per Second set high enough for all of the events. This will cost a little more.

What other advice do I have?

It will take time for fine tuning, expect for four months to fine tune it to exclude the false positives.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
2 visitors found this review helpful
Add a Comment
Guest