LogRhythm NextGen SIEM Pros and Cons

LogRhythm NextGen SIEM Pros

Avraham Sonenthal
Senior Network Engineer at a government with 5,001-10,000 employees
The feature that makes it usable is the web interface.
View full review »
reviewer1283208
Information Security Officer, Network Analyst at a university with 1,001-5,000 employees
Automations are very valuable. It provides the ability to automate some of our small use cases. The ability to integrate with other products that use an API is also very useful. LogRhythm has a plugin for it that we can connect and start to move down towards the path of a single pane of glass instead of having multiple or different tools.
View full review »
Surendra Singh
Systems Administrator at a tech services company with 11-50 employees
File Integrity Monitoring is really valuable because we have it set up on our core assets. This is one of the key features that I utilize. We also use it quite a lot for event management to do reporting.
View full review »
Learn what your peers think about LogRhythm NextGen SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
456,495 professionals have used our research since 2012.
Shreenkhala Bhattarai
Cyber Security Researcher at a tech services company with 1-10 employees
The initial setup is pretty easy.
View full review »
Vp9875
Vice President at a financial services firm with 201-500 employees
The ability to investigate a particular period of time where you can analyze logs is its most valuable feature.
View full review »
Chmini Ellawala
Engineer - Network & Security at Connex Information Technologies
The most valuable feature is that we can alternate incident automations.
View full review »
Jason Gagnon
Senior Cyber Security Engineer at a individual & family service with 10,001+ employees
I have found the Advanced Intelligence Engine has provided the most value to us because we can customize alarms based on our requirements and have created hundreds of alarms that notify different people for different scenarios.
View full review »
Shreenkhala Bhattarai
Cyber Security Researcher at a tech services company with 1-10 employees
In terms of security, LogRhythm NextGen SIEM is great.
View full review »
KatMcMillian
Sr IT Security Engineer at Puget Sound Energy
We use this solution to examine disparate log sources and provide a cohesive method to search for anomalous behavior.
View full review »

LogRhythm NextGen SIEM Cons

Avraham Sonenthal
Senior Network Engineer at a government with 5,001-10,000 employees
It is a product that is very hard to use.
View full review »
reviewer1283208
Information Security Officer, Network Analyst at a university with 1,001-5,000 employees
Their ticketing system for managing cases can be improved. They can either do that or adopt some of the open-source ticket systems into theirs. The current system works and gets the job done, but it is very bare-bones and basic. There are some things that could be improved there. They should also bring in more threat intelligence into the product and also probably start to look into the integration of more cloud or SAS products for ingesting logs. They're doing the work, but with the explosion of COVID, a lot of businesses have started to move towards more cloud applications or SAS applications. There is a whole diverse suite of SAS products out there, which is a challenge for them and I get it. They seem to be focusing on the big ones, but it'll be nice to be able to, for example, pull in Microsoft logs from Office 365. They are working towards a better way of doing that, and they have a product in the pipeline to pull logs in from other SAS applications. The biggest thing for them is going to be moving away from a Windows Server infrastructure into a straight-up Linux, which is more stable in my eyes. For the backend, they can maybe move into more of an up-to-date Elastic search engine and use less of Microsoft products.
View full review »
Surendra Singh
Systems Administrator at a tech services company with 11-50 employees
It should have some more message monitoring features. It can also have some free message monitoring tools.
View full review »
Learn what your peers think about LogRhythm NextGen SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
456,495 professionals have used our research since 2012.
Shreenkhala Bhattarai
Cyber Security Researcher at a tech services company with 1-10 employees
For our market, the solution is quite expensive. It would be ideal if they could work on and improve their existing pricing plans to help make it more affordable in our country.
View full review »
Vp9875
Vice President at a financial services firm with 201-500 employees
I would like to see more integration with more products that are out there within the same security field.
View full review »
Chmini Ellawala
Engineer - Network & Security at Connex Information Technologies
We need to get better training for things like creating code and playlists. The way it's done now takes a long time.
View full review »
Jason Gagnon
Senior Cyber Security Engineer at a individual & family service with 10,001+ employees
There used to be the ability to create alarms based on message text that was included in LR Version 6.x that has been removed in LogRhythm 7.x, and on that, I would like to see it added back.
View full review »
Shreenkhala Bhattarai
Cyber Security Researcher at a tech services company with 1-10 employees
Scalability-wise, it's not that great.
View full review »
KatMcMillian
Sr IT Security Engineer at Puget Sound Energy
I would like to see support added for Exchange 2016, and CheckPoint OPSec Lea.
View full review »
Learn what your peers think about LogRhythm NextGen SIEM. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
456,495 professionals have used our research since 2012.