LogRhythm Enterprise UEBA Competitors and Alternatives

What is most valuable?

With E8, the advanced analytics has a really great overview of user behavior. I like the timeline feature the most.

What needs improvement?

The product could be improved by implementing cost use cases. I believe if it were more flexible it would be a better product. For additional features, I'd like to see more visibility in the networking.

Which solution did I use previously and why did I switch?

In production, we are actually still using QRadar in our own company simultaneously with Exabeam.

What other advice do I have?

I would recommend the product. I don't have any warnings or anything negative to tell anyone, because there are really no problems with the solution. You can pretty much make it up as you go. I would rate this product an eight out of 10.

Which other solutions did I evaluate?

We evaluated LogRhythm and Splunk as possible options but in the end, we went with Exabeam - it was the right choice for us taking into account the needs of our customers and projected future needs.

What is most valuable?

The most valuable features are the indexing and powerful search features.

What needs improvement?

The correlation engine should have persistent and definable rules. Splunk should have more features and options in regards to correlating in real-time. It should have the ability to set more permanent rules. Correlation capabilities in… more»

What's my experience with pricing, setup cost, and licensing?

Our licensing costs are on a yearly basis.

What other advice do I have?

After more than three years of using this solution, I would recommend this solution, especially for environments that have a big volume of data. I would rate this solution a nine out of ten. It is a really great product.

Which other solutions did I evaluate?

We researched many solutions before choosing Splunk like LogRhythm, ELK, and FortiSIEM.