Sold by: Sumo Logic Inc.
Deployed on AWS
Monitor your entire AWS environment in minutes. Sumo Logic integrates with your AWS SaaS services, providing unparalleled visibility into your cloud infrastructure and security data at scale.
4.4
Overview
Logs for Security provides a unified security and compliance audit view of your AWS infrastructure and insight into threat activity across that environment. It leverages native AWS tools and telemetry to accelerate the work of development, operations, security, and reliability management teams in maintaining security, monitoring their environment, and managing their risk and attack surface.
Modern ever-changing cloud environments need ongoing audits of configuration, vulnerability, versioning, activity, and other factors to ensure they are well maintained and not subject to vulnerability created by aging or drifting configuration, access rights, or software. Logs for Security helps teams get rapid, ongoing security visibility into the diverse aspects of their environment and provides customizable alerting, evaluation, and remediation of issues.
Sumo Logic rapid onboarding process makes setup easy, allowing AWS users to visualize and begin improving the security posture of their environments in minutes.
New Sumo Logic AWS Built In automation and integration. An AWS Certified deployment that reduces the time and effort to configure your multi-account environment, starting with AWS Control Tower and key Cloud Foundational Services to achieve a stronger security posture that drives efficiency and reduces risk in your business critical applications.
The price below is for a two year subscription to ingest up to 5 GB per day. If you require more than 5 GB per day, please contact your AWS sales representative.
Highlights
- Unified security visibility and analytics across your entire AWS environment using native and 3rd-party data sources.
- Integrated threat intel which accelerates threat detection and reduces the time to detect and investigate
- Global Intelligence Service that creates statistical baselines for Amazon GuardDuty and AWS CloudTrail to help accurately pinpoint investigations and resources
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/24 months |
|---|---|---|
5GB/Day Ingest | 5GB/day ingest with 365 days retention | $13,350.00 |
Vendor refund policy
Please see seller website for refund details.
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
Start by visiting Sumo Logic Support at https://support.sumologic.com/support/s/ or email us directly at support@sumologic.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Sumo Logic Inc.
By CrowdStrike
By Rapid7
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Unified Security Visibility
Provides unified security and compliance audit view across entire AWS infrastructure using native and third-party data sources with analytics capabilities
Threat Intelligence Integration
Integrates threat intelligence to accelerate threat detection and reduce time to detect and investigate security incidents
Statistical Baseline Analysis
Leverages Global Intelligence Service that creates statistical baselines for Amazon GuardDuty and AWS CloudTrail to pinpoint investigations and resources
Multi-Account Environment Configuration
Supports AWS Certified deployment with AWS Control Tower integration for automated configuration of multi-account environments
Customizable Security Alerting
Provides customizable alerting, evaluation, and remediation capabilities for configuration, vulnerability, versioning, and activity monitoring
Cloud Native Application Protection Platform
Adversary-focused Cloud Native Application Protection Platform with holistic intelligence providing end-to-end protection from host to cloud
Multi-Cloud Threat Detection and Response
Threat detection and response capabilities across AWS, Azure, and GCP with industry-fastest threat detection and response mechanisms
Container and Kubernetes Security
Container and Kubernetes protection with container image security, runtime protection, and support for on-premises, hybrid, and multi-cloud environments
Cloud Security Posture Management
Continuous posture management with discovery, visibility, and compliance monitoring across cloud infrastructure with automated misconfigurations detection
Workload Runtime Protection
Workload runtime protection with automated discovery, EDR for cloud workloads and containers, and managed threat hunting on a single lightweight agent
Threat Detection Engine
Library of 900+ out-of-the-box detections with user and attacker behavior analytics backed by community threat intelligence
Data Ingestion and Integration
Ingests CloudTrail, GuardDuty, EC2 network traffic, raw logs via SQS from multiple AWS accounts, on-premises networks, remote endpoints, and SaaS solutions
Investigation and Response Capabilities
Visual investigation timeline with detailed log timelines, automated response workflows, and instant actions such as asset quarantining
Deception Technology
Honeypots, honey credentials, and honey files for layered defense mechanisms
Compliance and Monitoring
File Integrity Monitoring (FIM) with support for PCI, HIPAA, and GDPR compliance requirements, plus detection of new AWS regions, services, and EC2 instance types
Standard contract
No
No
No
Customer reviews
Hu D.
Great Log Search, Overall Solid Experience
Reviewed on Feb 11, 2026
Review provided by G2
What do you like best about the product?
What stands out to me is Sumo Logic’s real-time analytics and ease of deployment. The agent-based and API-driven ingestion makes onboarding fast, and the query language is powerful yet intuitive. The platform’s machine learning capabilities for anomaly detection are also valuable for proactive threat detection and operational visibility.
What do you dislike about the product?
While the query language is powerful, there can be a learning curve for teams coming from tools like Splunk or Elastic. Advanced queries and dashboard optimization sometimes require deeper platform familiarity.
What problems is the product solving and how is that benefiting you?
For me, the benefit is better decision-making. Instead of reacting to incidents blindly, I get actionable insights—whether that’s identifying anomalous behavior, proving compliance with logging requirements, or correlating security and operational events in one platform.
Juliana M.
Visually Powerful KPIs and Time-Saving LogReduce/LogCompare
Reviewed on Feb 09, 2026
Review provided by G2
What do you like best about the product?
I like it because it’s visually powerful and flexible when it comes to displaying availability KPIs. On top of that, tools like LogReduce and LogCompare save me hours of work by filtering out noise and junk in the logs, so I can focus on what really matters.
What do you dislike about the product?
The downside is that if the Data Tiers aren’t configured correctly, the bills can increase considerably.
What problems is the product solving and how is that benefiting you?
It has benefited me by breaking down data silos through the integration of operational and security visibility. It has also taken a weight off my shoulders when it comes to audit compliance.
Camille P.
Hands-Off Security: Instant Threat Detection and Automatic Updates
Reviewed on Jan 28, 2026
Review provided by G2
What do you like best about the product?
The best thing about Sumo is that it takes care of everything for me. I can just send the data and not worry about installing patches or keeping up with updates. Its ability to detect threats instantly is truly incredible.
What do you dislike about the product?
One thing to keep in mind is that it’s quite expensive; if you send a lot of data, your monthly bill can increase significantly.
What problems is the product solving and how is that benefiting you?
It’s fast and high-performing. The best part is that you can forget about anomalies, since the system automatically alerts you whenever it detects something unusual. Plus, thanks to its pre-configured templates, you save a lot of manual work and can focus on what matters.
Dustin C.
Flexible Log Management with Speedy Search
Reviewed on Jan 26, 2026
Review provided by G2
What do you like best about the product?
I appreciate Sumo Logic for its flexibility and its ability to parse various log sources. The search functionality is excellent and quite fast. I value the ability to ingest various sources without worrying about how it's supported. The initial setup was easy, and although it took some time to configure all the parsers, the ongoing maintenance is relatively low.
What do you dislike about the product?
I wish Sumo Logic supported a more lightweight agent for Endpoint log collection. Currently, it relies on Syslog and WEC/WEF to gather these logs.
What problems is the product solving and how is that benefiting you?
I use Sumo Logic to collect logs from various systems and meet PCI logging requirements. It solves problems by ingesting various sources seamlessly without compatibility worries.
Joseph J.
With SumoLogic you will gain total observability and visibility in your environment!
Reviewed on Jan 16, 2026
Review provided by G2
What do you like best about the product?
I really like how easy it is to download and deploy the various Sumologic collectors.
What do you dislike about the product?
While the folks over at SumoLogic are actively working on them, most of their pre-built apps are still in their classic format. As such we, the customers, are forced to wait until they deploy the "Next Gen" version of these apps.
What problems is the product solving and how is that benefiting you?
Sumo Logic is helping us gain observability and visibility in our environment.