Sold by: Sumo Logic Inc.Â
Deployed on AWS
Monitor your entire AWS environment in minutes. Sumo Logic integrates with your AWS SaaS services, providing unparalleled visibility into your cloud infrastructure and security data at scale.
Overview
Logs for Security provides a unified security and compliance audit view of your AWS infrastructure and insight into threat activity across that environment. It leverages native AWS tools and telemetry to accelerate the work of development, operations, security, and reliability management teams in maintaining security, monitoring their environment, and managing their risk and attack surface.
Modern ever-changing cloud environments need ongoing audits of configuration, vulnerability, versioning, activity, and other factors to ensure they are well maintained and not subject to vulnerability created by aging or drifting configuration, access rights, or software. Logs for Security helps teams get rapid, ongoing security visibility into the diverse aspects of their environment and provides customizable alerting, evaluation, and remediation of issues.
Sumo Logic rapid onboarding process makes setup easy, allowing AWS users to visualize and begin improving the security posture of their environments in minutes.
New Sumo Logic AWS Built In automation and integration. An AWS Certified deployment that reduces the time and effort to configure your multi-account environment, starting with AWS Control Tower and key Cloud Foundational Services to achieve a stronger security posture that drives efficiency and reduces risk in your business critical applications.
The price below is for a two year subscription to ingest up to 5 GB per day. If you require more than 5 GB per day, please contact your AWS sales representative.
Highlights
- Unified security visibility and analytics across your entire AWS environment using native and 3rd-party data sources.
- Integrated threat intel which accelerates threat detection and reduces the time to detect and investigate
- Global Intelligence Service that creates statistical baselines for Amazon GuardDuty and AWS CloudTrail to help accurately pinpoint investigations and resources
Details
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/24 months |
|---|---|---|
5GB/Day Ingest | 5GB/day ingest with 365 days retention | $13,350.00 |
Vendor refund policy
Please see seller website for refund details.
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA)Â .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
Start by visiting Sumo Logic Support at https://support.sumologic.com/support/s/Â or email us directly at support@sumologic.comÂ
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Sumo Logic Inc.
By Mission
Top
100
In Log Analysis
Top
25
In Security Observability, Data Security and Governance
Top
25
In Data Governance, Infrastructure as Code
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Security Monitoring
Provides unified security and compliance audit view of AWS infrastructure with comprehensive threat activity insights
Threat Detection
Integrates native AWS tools and telemetry to accelerate security monitoring and risk management across cloud environment
Cloud Configuration Analysis
Performs ongoing audits of configuration, vulnerability, versioning, and activity to identify potential security drifts
Threat Intelligence Integration
Leverages Global Intelligence Service to create statistical baselines for Amazon GuardDuty and AWS CloudTrail for precise investigations
Multi-Account Security Management
Supports automated deployment and integration across multi-account AWS environments using AWS Control Tower and Cloud Foundational Services
Endpoint Security
Advanced detection capabilities with both agent-based and agentless scanning across traditional infrastructure, serverless environments, and containers
Threat Intelligence Correlation
Cross-domain intelligence and telemetry integration for unified investigations, detection, and response through a single console
Identity and Access Management
Intelligent credential security with multi-factor authentication enforcement, identity provider integration, and privileged account management
Vulnerability Management
Predictive CVE detection and prioritization mechanism for effective vulnerability patching and remediation
Compliance Monitoring
Comprehensive compliance reporting and scoring against multiple frameworks including PCI, SOC2, NIST, and HIPAA with resource compliance tracking
Cloud Infrastructure Monitoring
Continually monitor public cloud infrastructure across AWS, Azure, and GCP environments to provide comprehensive visibility of resources and potential threats
Vulnerability Detection
Identify infrastructure vulnerabilities impacting security and compliance best practice standards with risk profiling and contextual alerts
Multi-Cloud Asset Management
Achieve a complete picture of cloud assets across multi-cloud environments, monitoring configurations, deployments, and access anomalies
Security Configuration Analysis
Detect insecure configurations, over-privileged IAM roles, and compliance failures from development through live service stages
API Integration Capabilities
Provide programmatic access to security features via REST API for seamless integration with third-party SIEM and DevOps tools
Standard contract
No
No
No
Customer reviews
4
3 ratings
3 AWS reviews
|
358 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
Shay Chouker
Has improved implementation speed and coverage but lacks contextual accuracy in alerts
Reviewed on Oct 29, 2025
Review from a verified AWS customer
What is our primary use case?
My main use cases with Sumo Logic Security are the same as Splunk; it is not log management, but rather security events and information, a security information system like SIEM .
What is most valuable?
The features I find most useful in Sumo Logic Security are the ease of implementation and connectors; they have a very easy connection and many connectors to important systems, making it very easy to implement and fast to start running in production.
Sumo Logic's diverse log sources support very much for my digital transformation, and this is a strong side of the system. They have wide support for connectors, enabling me to implement almost any system with webhooks and connect whatever I want, so this aspect is definitely a strong side of this product.
What needs improvement?
One major improvement I would suggest for Sumo Logic Security is in its risk-based alerting system; while it initially sounds clever and modern, it works as a point-based system where an IP address or entity gets points for bad actions, raising alerts when enough points are collected. This can lead to alerts that are collections of disjointed signals that sometimes make no sense and lack real context; this simplistic approach makes it hard to find coherent stories during investigations.
To improve in the support area, I recommend enhancing the technical part because, while the process is good, the actual quality may depend on the personnel involved.
For how long have I used the solution?
I have been working with Sumo Logic Security for fourteen months.
What do I think about the stability of the solution?
I have used Sumo Logic Security's threat detection feature, and I think it is very easy to use. The query language is pretty straightforward and easy, and it is very powerful for building different searches and dashboards that will serve for later exploration of the same interests I have.
I have used the anomaly detection capabilities in Sumo Logic Security, and it works pretty well out of the box. We did not verify the effectiveness, but it identifies a lot of anomalies and functions as a risk-based system mainly, where each log can become a signal. Each one gets several points, and if an entity or user and IP gets enough bad points, then an alert is raised. Each person or IP in a company has a bucket, and for each bad signal, you put a point in this bucket, and when you reach a certain point, an alert is created. However, while it is very easy and automated, it is also a negative side because it provides less context for things I am interested in finding in the alerting system.
What do I think about the scalability of the solution?
I did not face any significant issues with Sumo Logic Security, but the pricing may be a concern as they try to upsell and raise the prices very quickly.
How are customer service and support?
I would rate the support from Sumo Logic Security as about a seven. It depends on the person providing support, but in general, they usually provide continuous support post-implementation, being in touch and trying to help, which makes their after-sale process better than Splunk.
How would you rate customer service and support?
Positive
How was the initial setup?
The initial setup for Sumo Logic Security is pretty easy and straightforward.
What about the implementation team?
For Sumo Logic Security, I believe the deployment was internal, while for Splunk, it involved some hours from a reseller and Splunk themselves, making it a hybrid approach.
What was our ROI?
My company has not calculated ROI for Sumo Logic Security.
Which other solutions did I evaluate?
When comparing Sumo Logic Security with other tools such as Splunk, I see advantages such as its easier implementation, especially for companies that lack cybersecurity know-how; Sumo Logic Security can be beneficial for quick setup. However, while it is good for average tasks without needing three engineers, Splunk allows for more configuration to meet specific organizational needs, although it requires more expertise and time.
What other advice do I have?
The compliance reporting tool in Sumo Logic Security is pretty acceptable; nothing special, but it is okay in helping meet regulatory requirements for my organization.
Overall, I think Sumo Logic Security is acceptable; it is a pretty slick, nice product, with no significant additional features that I feel need to be added or improved.
For those considering using Sumo Logic Security, I would recommend checking it out.
I do not rate it a ten because I find some aspects of how the system works overall to be strange. My review rating for Sumo Logic Security is seven.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Lisa N.
Powerful Insights with Sumo Logic, But Data Retention Costs Add Up
Reviewed on Oct 28, 2025
Review provided by G2
What do you like best about the product?
What I appreciate most about Sumo Logic is its Continuous Intelligence feature. It brings together vast amounts of diverse data and, with the help of AI, quickly transforms this information into actionable insights. This capability significantly speeds up the resolution of both security and operational issues.
What do you dislike about the product?
The licensing plan imposes strict limits on data retention, so storing logs and metrics for longer periods comes with extra costs.
What problems is the product solving and how is that benefiting you?
This tool has played a vital role in helping me resolve issues swiftly, thanks to its real-time search and analysis capabilities. It delivers essential security, allowing for proactive threat detection and supporting the smooth operation of our entire infrastructure.
Sri D.
Easy Log Search, No Complaints
Reviewed on Oct 15, 2025
Review provided by G2
What do you like best about the product?
Ease to search for logs, properly grouped logging structure
What do you dislike about the product?
Nothinng to dislike about this amazing product
What problems is the product solving and how is that benefiting you?
I used sumo logic to log our backend server logs. It was very helpful in terms of debugging and monitoring
Johnny M.
Fantastic Value for Small Teams, but a Bit Clunky
Reviewed on Oct 07, 2025
Review provided by G2
What do you like best about the product?
- Runtime calculated fields are incredible. Unlike Datadog (where calculated fields must be defined at ingestion time), Sumo Logic lets you define them on the fly. This is a massive productivity boost when you’re iterating on queries or exploring new log patterns.
- Outstanding value. Hosting my entire company’s logs cost roughly $100/month, which is shockingly affordable compared to Datadog or similar platforms.
- Easy integration with Heroku. The setup was quick and straightforward—no complex pipelines or custom agents required.
- Powerful search and flexibility. Once you get comfortable with its syntax, the query language is expressive and great for digging deep into logs.
- Outstanding value. Hosting my entire company’s logs cost roughly $100/month, which is shockingly affordable compared to Datadog or similar platforms.
- Easy integration with Heroku. The setup was quick and straightforward—no complex pipelines or custom agents required.
- Powerful search and flexibility. Once you get comfortable with its syntax, the query language is expressive and great for digging deep into logs.
What do you dislike about the product?
- Clunky UI. The interface feels dated and can be unintuitive to navigate, especially compared to modern tools like Datadog or Grafana Cloud.
- Alerting delays. Alerts tend to fire a bit slower than other platforms. Datadog, for example, seems to detect and trigger incidents faster in my experience.
- Limited ecosystem integration. For larger organizations, the lack of tight integration with APM and error-tracking tools can create friction—you end up context-switching across multiple dashboards to investigate an issue.
- Alerting delays. Alerts tend to fire a bit slower than other platforms. Datadog, for example, seems to detect and trigger incidents faster in my experience.
- Limited ecosystem integration. For larger organizations, the lack of tight integration with APM and error-tracking tools can create friction—you end up context-switching across multiple dashboards to investigate an issue.
What problems is the product solving and how is that benefiting you?
Sumo Logic gives us centralized log management across all of our apps and services, without the cost or setup complexity. It solves many problems for me:
- Unified visibility into production logs – We can search across all Heroku apps and services from a single place, making debugging and audits much faster.
- Ad-hoc analytics and troubleshooting – The runtime calculated fields are incredibly powerful. I can slice, transform, and aggregate logs on the fly instead of predefining every field at ingestion time (which is a big limitation in tools like Datadog).
- Automated alerting for critical issues – Sumo Logic monitors our logs in real time and triggers alerts when system-critical patterns appear, helping us catch problems before they escalate into outages.
- Affordable observability for startups – It provides serious log analysis capabilities at a fraction of the cost. We were able to ingest and retain all company logs for around $100/month, which made full observability feasible early on.
- Unified visibility into production logs – We can search across all Heroku apps and services from a single place, making debugging and audits much faster.
- Ad-hoc analytics and troubleshooting – The runtime calculated fields are incredibly powerful. I can slice, transform, and aggregate logs on the fly instead of predefining every field at ingestion time (which is a big limitation in tools like Datadog).
- Automated alerting for critical issues – Sumo Logic monitors our logs in real time and triggers alerts when system-critical patterns appear, helping us catch problems before they escalate into outages.
- Affordable observability for startups – It provides serious log analysis capabilities at a fraction of the cost. We were able to ingest and retain all company logs for around $100/month, which made full observability feasible early on.
Jerry J.
Sumo Logic great product
Reviewed on Sep 26, 2025
Review provided by G2
What do you like best about the product?
Very easy to search through large amounts of logs. The query language allows me to filter to exactly what am looking for.
What do you dislike about the product?
There is a bit of a learning curve for advanced queries and they sometimes take a bit longer to come back with results.
What problems is the product solving and how is that benefiting you?
Sumo Logic has provided us with a great tool to aid in security incidents to correlate events and quickly pinpoint issues.