Sign in
Categories
Your Saved List Partners Sell in AWS Marketplace Amazon Web Services Home Help

LogRhythm NextGen SIEM Platform 7.4.9

LogRhythm | LogRhythm NextGen SIEM 7.4.9

Windows, Windows Server 2016 with SQL Server 2016 Standard Windows Server 2016 with SQL 2016 Standard Edition - 64-bit Amazon Machine Image (AMI)

Reviews from AWS Marketplace

0 AWS reviews
  • 5 star
    0
  • 4 star
    0
  • 3 star
    0
  • 2 star
    0
  • 1 star
    0

External reviews

119 reviews
from G2

External reviews are not included in the AWS star rating for the product.


    Ankit K.

Helps us with daily monitoring of our systems.

  • January 05, 2021
  • Review provided by G2

What do you like best?
The security system as well as the LogRhythm AI engine regulations are beneficial for rapid detection of malicious pursuits. Use-cases could be helpful in producing effective use cases with different features. The LR search choice is yet another terrific feature. For a particular time period we can carry out a log search with different filters. The LR event search functionality usually allows you to check for AI engine rules as well as logs which have turned into incidents. This's practical in investigating incidents.
What do you dislike?
Time that is a different zone on the downloaded CSV for logs. It is always GMT+0 without any choice to change it. LR still doesn't seem to possess a functionality for log massage change in time zone. You've to check out as well as provide before long, because many customers face issues in figuring out the actual period of the contest.
What problems are you solving with the product? What benefits have you realized?
Don't need some time to monitor LR dashboards. When you've created efficient and reliable cases, we can depend on the alarm system. The fine-tuning alarm system with exclusion is straightforward and has LR features. Use cases can be simple to create and easy to adjust. Easy to determine whether we've a situation where such an assault is recognized with event search.
Recommendations to others considering the product:
We want to work out how different log messages from LR is generalized. The development of uses might be undisturbed.


    Parth P.

One of the Best SIEM Tools

  • November 30, 2020
  • Review verified by G2

What do you like best?
LogRhythm provides powerful Rule Creation & Integration APIs that can collect logs from various devices at once. It can process millions of logs every second - very powerful.
What do you dislike?
Drill down on Multiple Alarms through LR Console is not possible. they really need to add this feature. ArcSight has this feature.
What problems are you solving with the product? What benefits have you realized?
Extended Detection and Response (XDR) Platforms & Security Information and Event Management (SIEM)


    Suchir J.

SIEM tool in our toolkit.

  • November 04, 2020
  • Review provided by G2

What do you like best?
LogRhythm is among the very best SIEM toools I've previously used. It allows for security analysts to fairly quickly examine and completely analyse protection functions. It's a user friendly user interface and LogRhythm assessments can be simple to perform. Additionally, rapid filtering during the investigation procedure is incredibly useful.
What do you dislike?
The implementation of the item was a little complicated and we'd a number of issues with log evaluation when transferring logs from Arcsight SIEM logs to LogRhythm log collector.
What problems are you solving with the product? What benefits have you realized?
From the very first exposure to the provider to implementation, targets are maxed out in every respect. The sales representative was extremely receptive and made sure the item was ideal for the needs of ours. The schedule and implementation had been completed as scheduled. We evaluated seven various SIEM company platforms and LogRhythm was probably the best.
Recommendations to others considering the product:
With the instrument panel, the process is much better regarding overall performance, control and functionality.


    Bhavik P.

Contrary to any other SIEM.

  • November 02, 2020
  • Review provided by G2

What do you like best?
LogRhythm, unlike any other SIEMs, can be an intricate platform. By adding 2 os's, SIEM LogRhythm has among the easy-to-use and aerodynamic most configurations in the marketplace, with a heavy client and site interface. The heavy client is fully functional and additionally the web user interface provides essentially the most commonly used functions like the control board and SOAR.
What do you dislike?
In many configurations, LogRhythm is very reliant on a huge client, as is usually true on many SIEM platforms. Its web-interface isn't as complete as we'd love it to be. Several of the attached dull file protocols , like those worn at the mail gateway, don't differ since they don't incorporate straight into the Mimecast wedge.
What problems are you solving with the product? What benefits have you realized?
With a strong platform as LogRhythm, we are able to gather logs across the whole business, such as end user, server and also workstation infrastructures, ensuring almost all logs are aggregated as well as correlated. This enables us to look at potential events and security logs through one pane.
Recommendations to others considering the product:
In case you're searching for a simple TU, LogRhythm will be the best solution for you. It would seem LogRhythm has incorporated more functions into the web user interface, that is certainly a move in the correct path.


    Dave D.

LogRhythm- Great SIEM

  • September 16, 2020
  • Review provided by G2

What do you like best?
LogRhythm, like any other SIEM, can be a complicated platform. Having used two other SIEM platforms, LogRhythm has one of the most streamlined configurations and overall usability. The SIEM comes with both a thick-client and web interface. The thick-client is comprehensive, while the web interface features the most common features such as dashboards, and SOAR.
What do you dislike?
LogRhythm relies heavily on the thick-client for most of the configuration, which has traditionally been the case with most SIEM platforms. The web interface is not as comprehensive as I would like. Some of the flat-file ingestion of logs, such as for an email gateway (Mimecast) integration is less than stellar as their is no direct integration with the Mimecast platform.
What problems are you solving with the product? What benefits have you realized?
Using a robust platform, such as LogRhythm allows us to ingest logs from across the enterprise, including infrastructure, servers, and end-user workstations, allow for aggregation and correlation across all logs. This allows us a single pane of glass to review security logs and potential incidents.
Recommendations to others considering the product:
If you are looking for a streamlined SIEM, LogRhythm is the platform for you. LogRhythm, with the release of 7.5, appears to be incorporating more features into the web interface, which is definitely a step in the right direction.


    Mohammed B.

LogRhythm NextGen SIEM

  • September 14, 2020
  • Review provided by G2

What do you like best?
This particular solution is primarily used by our staff also as by firewall administrators. We put it to use to aggregate logs, correlate functions and automate firewall protection policies. The main purpose of its is actually updating the security policy depending on the changing threat vectors of the Internet of ours.
What do you dislike?
The administrator management panel is quite unintuitive and some functions are hard to find
What problems are you solving with the product? What benefits have you realized?
Major issues in multi-platform hunting and threat detection. We also have to communicate the maturity of ours and security potential much more accurately.
Recommendations to others considering the product:
LogRhythm is actually perfect for management logs from systems that are different, correlating events and giving a worldwide view of the ecosystem. One of the main advantages of its is actually the control board, information mining, search as well as alarm continuity.


    Jose P.

Logrhythym Information

  • July 31, 2020
  • Review provided by G2

What do you like best?
How logrhythm offers appliance, cloud and software install. This helps when you depend on a data center to provide infrastructure to spin up VM's. Also how we can customize dashboards for different teams. Restrict what other teams can see. How can we remove unwanted logs from being captured thus making appliance faster. Integration with Microsoft, such Azure and O365, specially the security components.
What do you dislike?
Integration with not well known devices, such mikrotik. I could leverage API, but there are not much information on how to use API. This is not Logrhythm fault, but I would like to see more local groups that are using Logrhythm to collaborate so we can discuss issues or features that can benefit each other.
What problems are you solving with the product? What benefits have you realized?
Alerts, that's the core for us, data storage and plus nice dashboards that we can broadcast to upper management. Also how we can customize dashboards for different teams. Support is amazing. Incident response is great, Logrhythm community is amazing. Pro support is great too. It has helped spot attacks on web services, DMZ, web pages, network equipment ans users.
Recommendations to others considering the product:
Logrhythm has integration with many software and appliances. Sometimes integrations are not easy, but once integration is done, Logrhythm can pretty much alert on anything.


    Thivaharan R.

LogRythm is a good addition to an organizations security infrastructure

  • July 16, 2020
  • Review provided by G2

What do you like best?
LogRythm NextGen SIEM is a very useful addition to the security infrastructure. Through LogRythm it is possible to monitor all the devices within the network and get real-time alerts regarding security incidents. Investigating a security incident through LogRythm is very easy because the tool grabs the necessary information and provides it to the user. The suggested response increases the speed of the response. LogRythm also has very interactive interfaces which make it easy to use.
What do you dislike?
There is nothing bad to say about this product.
What problems are you solving with the product? What benefits have you realized?
LogRythm allows us to easily monitor, track and resolve security incidents.
Recommendations to others considering the product:
I would recommend LogRythm for use in an organizational enviornment.


    Chetan G.

Just another SIEM with fancy Dashboards

  • June 18, 2020
  • Review provided by G2

What do you like best?
- Logrhythm is very easy to deploy
- Log source monitoring and administration is very flexible and easy to configure.
- Huge Library of OOB connectors
- Endpoint Forensic collection is very easy through its System Monitor Agents
- Log visualization and threat hunting is very easy and flexible.
- Logrhythm community is very good resource for customers, partners and administrators
What do you dislike?
- frequent SIEM breakdowns, Stability issues.
- Rule based correlation heavily dependent on Analyst skills.
- Performance impact if large set of data is visualized on WebUI.
What problems are you solving with the product? What benefits have you realized?
Compliance regulations
Forensic Investigation

Benefits -
Provides complete visibility to Security Operations team
Recommendations to others considering the product:
Logrhythm has excellent integration and visualization capabilities, but lack on advance correlation, machine learning analytics and UEBA capabilities.


    John Q.

Logrhythm Experience

  • May 26, 2020
  • Review provided by G2

What do you like best?
Customer support is amazing & I had some P1 & P2 cases with them & got support immediately
What do you dislike?
Nothing so far but they should have trial option available for future customers
What problems are you solving with the product? What benefits have you realized?
Monitoring Network
Recommendations to others considering the product:
Have a call with Sales team & go for a demo