LogRhythm NextGen SIEM Reviews

Filter by:Reset all filters
industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
rating
Loading...
Filter Unavailable
Gene Cupstid
Real User
Security Engineer at a logistics company with 10,001+ employees
Nov 23 2018

What is most valuable?

Specific to LogRhythm SIEM, I would say the dash boarding capability is pretty spectacular, so having the advanced UI available to just instantly drag and drop widgets into the… more»

How has it helped my organization?

LogRhythm's improved our organization by allowing all sorts of members of the organization to be able to access this data in a much easier way than they have been able to in the past… more»

What needs improvement?

I think LogRhythm definitely has some opportunity to grow in its documentation space, particularly like if I just use Splunk as an example. Splunk has amazing documentation. It's… more»

What other advice do I have?

We do have quite a few log sources. Currently we've got around 30 or 40 completely different kinds of log sources and roughly six or 7,000 different devices currently reporting in. We… more»
JimMohr
Real User
Principal Security Analyst at a healthcare company with 10,001+ employees
Dec 06 2018

What is most valuable?

Most valuable features for our organization are the centralized painted glass for us to go through and triage and see everything going on in our environment. We're a mature… more»

How has it helped my organization?

We have a product that is a security orchestration and response tool Demisto and I think that from the standpoint of automation and response perhaps the first version of the playbooks… more»

What needs improvement?

There's two that I can think about off the top of my head. One is service protection. So for example to compare it to the antivirus product, if I'm an admin on a server I can't… more»

What other advice do I have?

LogRhythm gives us the ability to automate. We do have some smart response plugins that we're using. Unfortunately with healthcare you end up using more contextual smart response… more»
Find out what your peers are saying about LogRhythm, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: March 2019.
326,282 professionals have used our research since 2012.
Reno Thomas
Real User
Senior Security Engineer at Augeo Marketing
Oct 26 2017

What is most valuable?

Provides visibility into the network. We got it for PCI compliance for the most part, and we also do SOC 1 and SOC 2 compliance, so we can show… more»

How has it helped my organization?

It takes good log sources. We have investments in endpoint protection and Mail Gateway, and our firewalls are going to be catching up soon. To have… more»

What needs improvement?

Our key challenge is working with disparate IT groups. We are a brand new security team within our organization. It's a pretty small company. They… more»

If you previously used a different solution, which one did you use and why did you switch?

I had a little bit of experience with QRadar and a customized SIEM solution at my last job where we had used an MSSP environment, so really a lot… more»

What other advice do I have?

Smaller, medium-sized companies, I would actually steer them towards LogRhythm and have them look into it, then I would share my lessons learned… more»
Kevin Merolla
Real User
Security Manager at a manufacturing company with 1,001-5,000 employees
Nov 23 2018

What is most valuable?

The most valuable features in LogRhythm, honestly for me, the single most valuable feature is the web console. That is actually the primary reason we chose LogRhythm over some of… more»

How has it helped my organization?

This solution has been almost like a transformative change in how we detect and then respond to incidence. Quite honestly before, we didn't know what was going on and we couldn't… more»

What needs improvement?

It honestly comes back to me for log sources. The time to get support to onboard a log source runs about 18 months, and that's just too long. Like I said, I'm a lone wolf running the… more»

What other advice do I have?

I'm going to give them an eight. It's a fantastic solution and I totally support what they're doing and I like where it's going. But there is room for improvement, and there are some… more»
Jeremy Alder
Real User
Security Lead at a financial services firm with 201-500 employees
Jan 01 2019

What is most valuable?

LogRhythm has really improved, I think, my personal sense of security as far as our organization. I feel that I can trust the data that it's pulling in. Through its metrics, I can see… more»

How has it helped my organization?

We've seen mean time to detect and to respond go down pretty significantly. We actually recently implemented the CloudAI solution, which allowed us to look into our users' anomalous… more»

What needs improvement?

I think condensing and consolidating what a user accesses over and over again and just having CloudAI understand that that's all of the user's, and you can consider it as one thing… more»

What other advice do I have?

If I had to rate LogRhythm and CloudAI out of 10, I think I'd give it an eight. There's still room for LogRhythm to improve, and they've laid out a pretty great roadmap for what they… more»
Joe Benjamin
Real User
SIEM Architect at Marsh & McLennan Companies, Inc.
Oct 31 2018

What is most valuable?

I've worked with a lot of SIEMs. It's nice that it's straightforward.

How has it helped my organization?

We use Dell SecureWorks right now for our SOC. But in a much quicker-than-expected manner - literally a few months after we started really bringing everything in, and we took over… more»

What needs improvement?

My biggest complaint is documentation. Everyone tells me, "We have documentation on the Community site." I have searched for different types of documentation on numerous occasions… more»

What other advice do I have?

My advice: * Get a SIEM. * Which SIEM I would suggest really depends on what your key use cases are. There are other SIEMs that do other things better. As an example, Splunk brings in… more»
Jim Mohr
Real User
Principal Security Analyst at a healthcare company with 501-1,000 employees
Oct 31 2018

What is most valuable?

There's value in all of it. The most valuable is the reduction in time to triage. We take in around 750 million logs a day. We have a lot of products and that would be a lot of… more»

How has it helped my organization?

In terms of seeing a measurable decrease in the meantime to detect and respond to threats, we live in the Web Console and we see things when they come in right away, and then we… more»

What needs improvement?

There are two improvements we'd like to see. I mentioned these last year and they haven't implemented them yet. The first one is service protection. I have Windows administrators who… more»

What other advice do I have?

From a performance standpoint, I have no problems recommending LogRhythm because it allows me to get in under the hood and tweak some things. It also comes with stuff out-of-the-box… more»
Jack Callaghan
Real User
Senior Security Analyst at a financial services firm with 501-1,000 employees
Nov 21 2017

What is most valuable?

The breadth and harvesting of information the SIEM is capable of doing. I've been in this probably going on 30 years, and I've seen the growth. I… more»

How has it helped my organization?

We're a financial service. As our title implies we deal in mortgages, which means we see a lot of personal information, credit reports, financial… more»

What needs improvement?

I really can't think of a particular one, I've been very satisfied with what's happening. I know they're going to get another spike in customer… more»

If you previously used a different solution, which one did you use and why did you switch?

I had to do a proof of concept review two years ago when we were doing a rebid, and LogRhythm was the incumbent. I looked at some other companies… more»

What other advice do I have?

Things that are important: the first time you get a SIEM in your hands you think it's great to gather everything. Then you find out within a couple… more»
See 97 More LogRhythm NextGen SIEM Reviews

Articles

User Assessments By Topic About LogRhythm NextGen SIEM

Find out what your peers are saying about LogRhythm, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: March 2019.
326,282 professionals have used our research since 2012.

LogRhythm NextGen SIEM Questions

LogRhythm NextGen SIEM Projects By Members

What is LogRhythm NextGen SIEM?

LogRhythm, a leader in security intelligence and analytics, empowers organizations with it's Threat Lifecycle Management Platform, which provides a complete, end-to-end workflow for detecting, investigating and responding to cyber threats. The company’s award-winning platform unifies next-generation SIEM, log management, network/endpoint forensics, and advanced security analytics.

In addition to protecting customers from the risks associated with cyber threats, LogRhythm provides innovative compliance automation and assurance, and enhanced IT intelligence.


Also known as
LogRhythm, LogRhythm Threat Lifecycle Management, LogRhythm TLM
LogRhythm NextGen SIEM customers
Macy's, NASA, Fujitsu, US Air Force, EY, Abbott, HD Supply, SAB Miller, UCLA, Raytheon, Amtrak, Cargill

Sign Up with Email