Sold by: Sumo Logic Inc.
Deployed on AWS
Monitor your entire AWS environment in minutes. Sumo Logic integrates with your AWS SaaS services, providing unparalleled visibility into your cloud infrastructure and security data at scale.
4.4
Overview
Logs for Security provides a unified security and compliance audit view of your AWS infrastructure and insight into threat activity across that environment. It leverages native AWS tools and telemetry to accelerate the work of development, operations, security, and reliability management teams in maintaining security, monitoring their environment, and managing their risk and attack surface.
Modern ever-changing cloud environments need ongoing audits of configuration, vulnerability, versioning, activity, and other factors to ensure they are well maintained and not subject to vulnerability created by aging or drifting configuration, access rights, or software. Logs for Security helps teams get rapid, ongoing security visibility into the diverse aspects of their environment and provides customizable alerting, evaluation, and remediation of issues.
Sumo Logic rapid onboarding process makes setup easy, allowing AWS users to visualize and begin improving the security posture of their environments in minutes.
New Sumo Logic AWS Built In automation and integration. An AWS Certified deployment that reduces the time and effort to configure your multi-account environment, starting with AWS Control Tower and key Cloud Foundational Services to achieve a stronger security posture that drives efficiency and reduces risk in your business critical applications.
The price below is for a two year subscription to ingest up to 5 GB per day. If you require more than 5 GB per day, please contact your AWS sales representative.
Highlights
- Unified security visibility and analytics across your entire AWS environment using native and 3rd-party data sources.
- Integrated threat intel which accelerates threat detection and reduces the time to detect and investigate
- Global Intelligence Service that creates statistical baselines for Amazon GuardDuty and AWS CloudTrail to help accurately pinpoint investigations and resources
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/24 months |
|---|---|---|
5GB/Day Ingest | 5GB/day ingest with 365 days retention | $13,350.00 |
Vendor refund policy
Please see seller website for refund details.
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
Start by visiting Sumo Logic Support at https://support.sumologic.com/support/s/ or email us directly at support@sumologic.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Sumo Logic Inc.
By CrowdStrike
By Rapid7
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Unified Security Visibility
Provides unified security and compliance audit view across entire AWS infrastructure using native and third-party data sources with analytics capabilities
Threat Intelligence Integration
Integrates threat intelligence to accelerate threat detection and reduce time to detect and investigate security incidents
Statistical Baseline Analysis
Leverages Global Intelligence Service that creates statistical baselines for Amazon GuardDuty and AWS CloudTrail to pinpoint investigations and resources
Multi-Account Environment Configuration
Supports AWS Certified deployment with AWS Control Tower integration for automated configuration of multi-account environments
Customizable Security Alerting
Provides customizable alerting, evaluation, and remediation capabilities for configuration, vulnerability, versioning, and activity monitoring
Cloud Native Application Protection Platform
Adversary-focused Cloud Native Application Protection Platform with holistic intelligence providing end-to-end protection from host to cloud
Multi-Cloud Threat Detection and Response
Threat detection and response capabilities across AWS, Azure, and GCP with industry-fastest threat detection and response mechanisms
Container and Kubernetes Security
Container and Kubernetes protection with container image security, runtime protection, and support for on-premises, hybrid, and multi-cloud environments
Cloud Security Posture Management
Continuous posture management with discovery, visibility, and compliance monitoring across cloud infrastructure with automated misconfigurations detection
Workload Runtime Protection
Workload runtime protection with automated discovery, EDR for cloud workloads and containers, and managed threat hunting on a single lightweight agent
Threat Detection Engine
Library of 900+ out-of-the-box detections with user and attacker behavior analytics backed by community threat intelligence
Data Ingestion and Integration
Ingests CloudTrail, GuardDuty, EC2 network traffic, raw logs via SQS from multiple AWS accounts, on-premises networks, remote endpoints, and SaaS solutions
Investigation and Response Capabilities
Visual investigation timeline with detailed log timelines, automated response workflows, and instant actions such as asset quarantining
Deception Technology
Honeypots, honey credentials, and honey files for layered defense mechanisms
Compliance and Monitoring
File Integrity Monitoring (FIM) with support for PCI, HIPAA, and GDPR compliance requirements, plus detection of new AWS regions, services, and EC2 instance types
Standard contract
No
No
No
Customer reviews
Marcia N.
Effortless Data Monitoring With Native Cloud Integration
Reviewed on Mar 11, 2026
Review provided by G2
What do you like best about the product?
What really won me over was its native cloud integration. It lets me handle massive volumes of data effortlessly, and best of all, it takes the headache out of having to manage or maintain the monitoring infrastructure myself.
What do you dislike about the product?
What really worries me is their pay-as-you-go billing model. If you’re not careful, the cost can skyrocket without any warning.
What problems is the product solving and how is that benefiting you?
It feels like a robust and completely reliable platform. The ease of exchanging reports and relevant data with other areas of the company greatly streamlines our work, and its focus on security gives us absolute peace of mind.
Information Technology and Services
Good platform for centralized logging and audit evidence collection
Reviewed on Mar 06, 2026
Review provided by G2
What do you like best about the product?
Sumo Logic has been very helpful for collecting and retaining logs that we use as audit evidence. It makes it straightforward to centralize logs from multiple systems and then quickly search across them when we need to demonstrate activity for compliance or security reviews. The search functionality is both powerful and flexible, which is especially useful when we’re trying to pinpoint specific events across large volumes of logs. I also appreciate that it integrates well with many cloud services, making it easier to bring everything together in one place.
What do you dislike about the product?
The learning curve for building queries and dashboards can feel a bit steep, especially for new users who aren’t familiar with the query language. Some workflows also take a few extra steps compared to other tools, and troubleshooting ingestion issues can sometimes be time-consuming.
What problems is the product solving and how is that benefiting you?
Sumo Logic helps us centralize logs and maintain a reliable record of system activity that we can use for security monitoring and audit evidence. This is especially valuable when we’re preparing for compliance reviews or responding to internal audit requests, because we can quickly retrieve historical logs and show what actions took place across our systems. Having a single place to search, retain, and reference this data saves time and reduces the effort required to gather evidence from multiple sources.
Job S.
Smooth Cloud-Native Performance with Powerful Anomaly Detection
Reviewed on Mar 04, 2026
Review provided by G2
What do you like best about the product?
I like how smoothly it works as a cloud-native solution, which completely removes the worry of managing servers. I also highly value its anomaly detection capabilities.
What do you dislike about the product?
The interface occasionally feels cluttered—just that.
What problems is the product solving and how is that benefiting you?
Thanks to this tool, we’ve eliminated blind spots, automated incident management, and strengthened our security standards.
reviewer2806851
Clean dashboards have improved daily threat monitoring but cloud integrations still need work
Reviewed on Mar 03, 2026
Review provided by PeerSpot
What is our primary use case?
I use Sumo Logic Security .
What is most valuable?
The first thing that I like about Sumo Logic Security is the earlier UI and the latest one, which has a clean layout. Since I can track so many good things, the UI has improved from before when it was not as good. Compared to other tools, I prefer the UI much better as it categorizes data very well for me. If I were using other security tools or other SIEM tools, I would need to think a bit and find something, which would be hard and fast. However, I am so adapted to this tool, and the features that they have implemented, including filters and other things, are the best.
Since we are using Sumo Logic Security on the security part, we need to look through all the things and maintain them since there might be some crashes in the data that we are receiving. If we do not update the data points each and every time, some data points might have failed. If the server is offline, it might not report in Sumo Logic, so we need to check at the server level why this issue is being caused. We need to update the agent for Sumo Logic Security and ensure it is up-to-date.
What needs improvement?
I would say there are a few more things that Sumo Logic Security can improve on. It is not the tool; it is a technical part. From the app point of view, I would say when we need to include a few latest features that have currently started in the market, such as new cloud integrations, it is a bit lengthy because it is not available on Sumo Logic Security. Then we have to get some ideas and go through workarounds. We are able to do that, but that is the hard part that I find with Sumo Logic Security. Because they are new to the market, it takes time, but still, since Sumo Logic Security is that famous, it needs to have better integration.
With the market trend, we have some cloud vendors for which we need to do some integration part. It is not directly integrated since it is a third party. On Sumo Logic Security, it is not supported that well compared to other SIEMs or other applications that we might be using. The integration is quite easy, but in Sumo Logic Security, it is not easy.
For how long have I used the solution?
I have been using Sumo Logic Security for more than one and a half years since I joined this organization, and my team has been using it for more than three years.
What do I think about the scalability of the solution?
Sumo Logic Security is quite scalable; it depends on your team and how you implement it.
How are customer service and support?
We have a weekly meeting with the technical team for all our queries since it is included in our package.
I would rate the quality and speed of Sumo Logic Security support seven out of ten since the meetings are close to other vendors only, but they can improve on that part.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I have tried using Azure Sentinel in our organization.
With the length of data transfer that we are having day in and day out, I do not find Azure Sentinel to be much feasible compared to Sumo Logic Security that we are currently using. It all depends on the data transfer credits that we are using day in and day out.
How was the initial setup?
It is easy to deploy Sumo Logic Security, since we are always on call with the support team, and there was a specific SME deployed for us from Sumo Logic Security who helps us whenever we get stuck in some part or cannot proceed. They help us in that part.
What's my experience with pricing, setup cost, and licensing?
I would say that the pricing for Sumo Logic Security is in the medium part of the market. If you go to the well-known vendors such as Azure Sentinel or other tools like Splunk, you are going to find them costly since they are well-known and they have much more integration compared to Sumo Logic Security. They have been earlier in the market and have a vast network of backing behind them. So they charge for their integrity and their well-connectedness. Sumo Logic Security comes in the medium part; it is not very costly and not very light on the pocket. It is in the middle part, and we can say it is close to the best value that we are having right now.
What other advice do I have?
My overall rating of Sumo Logic Security is seven out of ten.
Ken C.
Clean, Shareable Dashboards with Seamless AWS Integration
Reviewed on Mar 03, 2026
Review provided by G2
What do you like best about the product?
I really appreciate the clean design of their dashboards and how easy it is to share them live. Another strong point is the native integration with AWS; it’s almost instantaneous and hassle-free.
What do you dislike about the product?
It takes a considerable time investment to fully master. Furthermore, technical support can be slow at times to escalate more complex issues to higher levels. That’s all.
What problems is the product solving and how is that benefiting you?
The biggest benefit for me has been the security of storing important data; the platform feels robust and inspires a lot of confidence. It’s clearly a top-tier monitoring solution.