We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"It's a per gigabyte cost for ingestion of data. For every gigabyte that you ingest, it's whatever you negotiated your price for. Compared to other contracts that we've had for cloud providers, it's significantly less."
"We have an OEM agreement with Devo. It is very similar to the standard licensing agreement because we are charged in the same way as any other customer, e.g., we use the backroom."
"I'm not involved in the financial aspect, but I think the licensing costs are similar to other solutions. If all the solutions have a similar cost, Devo provides more for the money."
"Devo is definitely cheaper than Splunk. There's no doubt about that. The value from Devo is good. It's definitely more valuable to me than QRadar or LogRhythm or any of the old, traditional SIEMs."
"[Devo was] in the ballpark with at least a couple of the other front-runners that we were looking at. Devo is a good value and, given the quality of the product, I would expect to pay more."
"Be cautious of metadata inclusion for log types in pricing, as there are some "gotchas" with that."
"There is no charge for using the open-source version."
"It's a monthly cost with Elastic SIEM, but I am not sure of the exact cost."
"Its price is fine. Its licensing works on a yearly basis. We have to renew the license every year. I also have a good experience with Darktrace. When we buy Darktrace, we get training free of cost, which is not there in Elastic. We have to pay extra for training. There is certainly room for improvement."
Earn 20 points
Devo is the only cloud-native logging and security analytics platform that releases the full potential of all your data to empower bold, confident action when it matters most. Only the Devo platform delivers the powerful combination of real-time visibility, high-performance analytics, scalability, multitenancy, and low TCO crucial for monitoring and securing business operations as enterprises accelerate their shift to the cloud.
Elastic SIEM equips security practitioners with easy data ingestion via Beats, shareable analytics based on the Elastic Common Schema (ECS), and the ability to interact with security data using the SIEM app in Kibana. As threats continue to evolve, so too will Elastic SIEM.
Ignite’s SenSage AP is anEvent Data Warehouse (EDW) that enables advanced data analysis, detailed forensics and ad hoc investigations on a wide variety of data formats at very large scale. As an EDW designed specifically for event data, it collects and stores more data, from more sources, over longer periods of time – years or even decades – so that you can conduct faster, more sophisticated analytics.
See how Devo allows you to free yourself from data management, and make machine data and insights accessible.
Elastic SIEM is ranked 13th in Security Information and Event Management (SIEM) with 6 reviews while SenSage AP is ranked 41st in Security Information and Event Management (SIEM). Elastic SIEM is rated 7.8, while SenSage AP is rated 0.0. The top reviewer of Elastic SIEM writes "Continuously evolving on the security front and it has good speed, detail, and visualization". On the other hand, Elastic SIEM is most compared with Splunk, Azure Sentinel, AlienVault OSSIM, IBM QRadar and FireEye Helix, whereas SenSage AP is most compared with Splunk.
See our list of best Security Information and Event Management (SIEM) vendors.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.