We performed a comparison between Datadog and LogRhythm SIEM based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: Datadog users like its customizable displays, error tracking, and advanced AI/ML capabilities. Users praised LogRhythm SIEM for its user-friendly centralized dashboard, strong integration, and event-filtering capabilities. Datadog could enhance its usability and reduce its learning curve. Users said integration was another pain point. LogRhythm SIEM has the potential to improve its SOAR and NDR features, platform stability, and MDI integration. LogRhythm users requested expanded log storage, better load balancing, and streamlined search capabilities.
Service and Support: While many users spoke highly of Datadog’s support team, others reported slow support, especially in the Asia-Pacific region. LogRhythm SIEM was generally praised for its helpful and knowledgeable support, although there have been occasional delays and knowledge problems.
Ease of Deployment: Datadog’s setup is considered straightforward, and users often receive help from a partner or vendor. LogRhythm SIEM's setup is considered to be straightforward. However, it is more time-consuming and complex for enterprise deployments involving multiple components or vendors, and users often require assistance from professional services or LogRhythm-certified engineers.
Pricing: Opinions about Datadog's price are divided. Some users found it costly, but others thought it was acceptable. Some said the pricing model could be clearer and better explained. LogRhythm SIEM’s license typically includes all elements. However, enterprise customers may encounter complexities related to additional features and add-ons.
ROI: Users said Datadog saved them time and improved visibility into security blind spots. LogRhythm SIEM has proven to be highly valuable, delivering a significant ROI by reducing the mean time to detect and respond.
"Its logs are most valuable."
"This spectrum of solutions has allowed us to track down bugs faster and more rapidly, which allows us to limit revenue lost during downtime."
"The ingestion points are unlimited and support customization. We haven't had anything yet that we haven't been able to integrate with it."
"I don't have to worry about upgrades with the AWS version."
"It helps us better manage our logs."
"The solution's SaaS model is easy to manage and works well in single- or multi-cloud environments."
"The full stack of integrations made it easier to monitor the different technologies and platform providers, including Software as a Service providers, that otherwise would need a lot of work and customization to be able to see what is happening."
"The interface and the integrations make it so easy to connect to the cloud or to the on-premise environment."
"It has centralized monitoring for our security operations. Therefore, it improves our analysts' work."
"LogRhythm has shown to us, to this point in time, that it has the capabilities of being able to deliver actionable intelligence to the security engineers and analysts."
"As a healthcare company, what we use it for is compliance, then to protect our data from exaltation."
"We have to be able to show the evidence, and LogRhythm does a great job of putting it forward and making it easy to create reports with nice looking dashboards, which show off what we are doing as a security program."
"I like LogRhythm's ease of use. The solution has improved compared to previous versions. It had many issues before, like integration, the console, creating reports, false positives, etc. The AI engine has made it stronger in the latest version."
"It's very easy to create the correlation rules with LogRhythm, and there are some advanced features like SIEM and UEBA, which are also very valuable."
"Automations are very valuable. It provides the ability to automate some of our small use cases. The ability to integrate with other products that use an API is also very useful. LogRhythm has a plugin for it that we can connect and start to move down towards the path of a single pane of glass instead of having multiple or different tools."
"We integrated Azure logs with it and that makes it simpler. Rather than having to log into the portal, we can just check everything in one place. We can compare those to our Windows and host logs to see if any problems correlate between them."
"I sometimes log in and see items changed, either in the UI or a feature enabled. To see it for the first time without proper communication can sometimes come as a shock."
"I've found that the documentation is lacking in certain regards."
"Ingesting data from various sources to monitor the log metrics of the system can always improve so that, if something goes wrong, the right teams are alerted."
"I've only been using Datadog for a few months, and at first, it was frankly overwhelming in terms of both the UI and the available capabilities."
"Datadog could improve the flexibility with AI and ML concepts. This will allow customers to be more leveraged towards publishing."
"We need more integration with security tools like Drata."
"The more tools that they can build that allow you to run AWX playbooks, or other similar fixes, would benefit clients greatly."
"The real issue with this product is cost control."
"Right now there is the concern about being able to gather all of the data into the system."
"The built-in functionality of the solution for NDR, SOAR, SIEM, and EDS has room for improvement."
"We do about 750 million a day and some days we do 715 million. Some days we do 820 million or 1.2 billion. But there's no way to drill in and find out: "Where did I get 400,000 extra logs today?" What was going on in my environment that I was able to absorb that peak? I have no way to identify it without running reports, which will produce a long-running PDF that I have to somehow compare to another long-running PDF... I would like to see like profiling behavior awareness around systems like they've been gunned to do around users with UEBA."
"We would like to see more things out of the console into the web UI. I guess this is what they are doing in 7.4."
"The web and on-premise console interface should be the same instead of having a separate engine for each."
"LogRhythm's SOAR and NDR features don't stack up well against competitors. maybe integrating theme functionality as the other do. But in general, it's okay."
"The console installation is an area with a shortcoming in the solution that needs improvement. If LogRhythm SIEM can offer a web console, it would be great."
"The software needs to work on its pricing."
Datadog is ranked 2nd in Log Management with 137 reviews while LogRhythm SIEM is ranked 7th in Log Management with 166 reviews. Datadog is rated 8.6, while LogRhythm SIEM is rated 8.4. The top reviewer of Datadog writes "Very good RUM, synthetics, and infrastructure host maps". On the other hand, the top reviewer of LogRhythm SIEM writes "The solution reduced our investigation time from days to hours and assists in managing our workflows". Datadog is most compared with Dynatrace, Azure Monitor, New Relic, AWS X-Ray and AppDynamics, whereas LogRhythm SIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Microsoft Sentinel, Wazuh and Fortinet FortiSIEM. See our Datadog vs. LogRhythm SIEM report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.