LogRhythm Enterprise UEBA Competitors and Alternatives

What is most valuable?

* User behavioral analytics allows us to pinpoint abnormal or suspicious behavior among millions of events every day. * Log search allows us to dive deep into aggregated… more»

How has it helped my organization?

InsightIDR has allowed us to find potential security issues that we did not know existed, and get remediation quickly.

What needs improvement?

Threat Intelligence: It would be useful to import threat intelligence in YARA format along with known incorrect email addresses.

What's my experience with pricing, setup cost, and licensing?

Accurately predict your licensing counts as this is a subscription based product.

Which solution did I use previously and why did I switch?

We did not use a previous solution.

What other advice do I have?

The product is a shift in paradigm being cloud-based with cloud storage. Be prepared to set up several virtual collector servers within your network, if you have a large… more»

Which other solutions did I evaluate?

We evaluated FireEye Helix, LogRhythm, Splunk, and IBM QRadar.

What is most valuable?

The most valuable features are the indexing and powerful search features.

What needs improvement?

The correlation engine should have persistent and definable rules. Splunk should have more features and options in regards to correlating in real-time. It should have the ability to set more permanent rules. Correlation capabilities in… more»

What's my experience with pricing, setup cost, and licensing?

Our licensing costs are on a yearly basis.

What other advice do I have?

After more than three years of using this solution, I would recommend this solution, especially for environments that have a big volume of data. I would rate this solution a nine out of ten. It is a really great product.

Which other solutions did I evaluate?

We researched many solutions before choosing Splunk like LogRhythm, ELK, and FortiSIEM.