LogRhythm NextGen SIEM Review

Facilitates compliance and auditing of adherence to regulations


What is our primary use case?

We use this solution to examine disparate log sources and provide a cohesive method to search for anomalous behavior. 

How has it helped my organization?

In our compliance environments (NERC and SOX), we are able to provide evidence of compliance.

What is most valuable?

The most valuable feature is scheduling the KB update, which reduces administrative effort.

What needs improvement?

I would like to see support added for Exchange 2016, and Check Point OPSec Lea.

Adding the capability to identify and perform an auto import of new log sources (especially Windows-based systems), based on specified criteria, would be a useful feature. 

Enhancing the creation of report packages would also improve this solution.

For how long have I used the solution?

Between four and five years.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
Guest
Sign Up with Email