# LogRhythm SIEM vs Sophos Endpoint Comparison --- ## AI Generated Summary - **G2 reviewers report** that Sophos Endpoint excels in user satisfaction, boasting a significantly higher overall score compared to LogRhythm SIEM. Users appreciate its **centralized management** capabilities, which streamline threat protection and compliance monitoring. - **According to verified reviews** , Sophos Endpoint is praised for its **ease of deployment** and integration with existing systems, making it a favorite among users who value quick setup and minimal disruption. In contrast, LogRhythm SIEM, while effective, has received feedback indicating a more complex setup process. - **Reviewers mention** that Sophos Endpoint's documentation and support resources are extensive, aiding users in policy preparation and client management. This level of support is a notable advantage over LogRhythm SIEM, which, despite having good correlation capabilities, has fewer recent reviews highlighting its support experience. - **Users say** that Sophos Endpoint's performance in threat detection is impressive, with high detection rates and effective integration with firewalls. LogRhythm SIEM also offers strong real-time threat detection, but some users feel it may not be as user-friendly in day-to-day operations. - **According to recent feedback** , Sophos Endpoint is particularly well-suited for mid-market companies, with a majority of its reviews coming from this segment. LogRhythm SIEM, while also serving mid-market clients, has a smaller proportion of reviews from this group, which may affect its perceived relevance for similar users. - **G2 reviewers highlight** that Sophos Endpoint consistently meets user requirements with high ratings in usability and administration. In comparison, LogRhythm SIEM, while effective in its core functionalities, has received mixed feedback regarding its administrative ease, indicating potential challenges for users managing the platform. | | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Star Rating** | 4.2 out of 5 | 4.7 out of 5 | | **Total Reviews** | 152 | 826 | | **Largest Market Segment** | Mid-Market (43.1% of reviews) | Mid-Market (63.0% of reviews) | | **Entry Level Price** | Contact for Info | No pricing available | --- ## Top Pros & Cons ### LogRhythm SIEM **Not enough data** ### Sophos Endpoint Pros: - Ease of Use (191 reviews) - Protection (180 reviews) Cons: - Slow Performance (73 reviews) - High Resource Usage (52 reviews) --- ## Ratings Comparison | Rating | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Meets Requirements** | 8.5 (110 reviews) | 9.4 (638 reviews) | | **Ease of Use** | 8.3 (108 reviews) | 9.3 (647 reviews) | | **Ease of Setup** | 8.0 (61 reviews) | 9.3 (606 reviews) | | **Ease of Admin** | 7.7 (64 reviews) | 9.3 (555 reviews) | | **Quality of Support** | 8.5 (105 reviews) | 9.0 (625 reviews) | | **Has the product been a good partner in doing business?** | 8.6 (60 reviews) | 9.3 (548 reviews) | | **Product Direction (% positive)** | 8.4 (105 reviews) | 9.4 (621 reviews) | --- ## Pricing ### LogRhythm SIEM #### Entry-Level Pricing Plan: Enterprise Licensing Program Price: Contact for Info Key Features: - Simplifies the purchasing model for global organizations - Available for appliance and software-based deployments - Provides predictable and consistent cost structure [Browse all 4 editions](https://www.g2.com/products/exabeam-logrhythm-siem/pricing) #### Free Trial No ### Sophos Endpoint #### Entry-Level Pricing No pricing available #### Free Trial Yes --- ## Features Comparison By Category ### Endpoint Protection Platforms | Product | Score | Reviews | |---|---|---| | **LogRhythm SIEM** | N/A | N/A | | **Sophos Endpoint** | 9.2/10 | 403 | #### Administration | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Compliance** | Not enough data | 9.3 (365 reviews) | | **Web Control** | Not enough data | 9.2 (370 reviews) | | **Application Control** | Not enough data | 9.3 (364 reviews) | | **Asset Management** | Not enough data | 8.8 (353 reviews) | | **Device Control** | Not enough data | 9.3 (362 reviews) | #### Functionality | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **System Isolation** | Not enough data | 9.3 (362 reviews) | | **Firewall** | Not enough data | 9.2 (354 reviews) | | **Endpoint Intelligence** | Not enough data | 9.4 (362 reviews) | | **Malware Detection** | Not enough data | 9.5 (367 reviews) | #### Analysis | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Automated Remediation** | Not enough data | 9.2 (359 reviews) | | **Incident Reports** | Not enough data | 9.2 (356 reviews) | | **Behavioral Analysis** | Not enough data | 9.2 (354 reviews) | ### Extended Detection and Response (XDR) Platforms | Product | Score | Reviews | |---|---|---| | **LogRhythm SIEM** | N/A | N/A | | **Sophos Endpoint** | 9.1/10 | 275 | #### Detection & Response | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Response Automation** | Not enough data | 9.2 (252 reviews) | | **Threat Hunting** | Not enough data | 9.4 (257 reviews) | | **Rule-Based Detection** | Not enough data | 9.3 (256 reviews) | | **Real-Time Detection** | Not enough data | 9.6 (258 reviews) | #### Management | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Extensibility** | Not enough data | 9.2 (247 reviews) | | **Workflow Automation** | Not enough data | 8.8 (244 reviews) | | **Unified Visibility** | Not enough data | 9.1 (246 reviews) | #### Analytics | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Threat Intelligence** | Not enough data | 9.3 (257 reviews) | | **Artificial Intelligence & Machine Learning** | Not enough data | 8.8 (249 reviews) | | **Data Collection** | Not enough data | 9.1 (247 reviews) | #### Agentic AI - Extended Detection and Response (XDR) Platforms | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Autonomous Task Execution** | Not enough data | 8.5 (136 reviews) | | **Proactive Assistance** | Not enough data | 8.6 (137 reviews) | | **Decision Making** | Not enough data | 8.6 (137 reviews) | #### Services - Extended Detection and Response (XDR) | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Managed Services** | Not enough data | 9.4 (138 reviews) | ### Antivirus | Product | Score | Reviews | |---|---|---| | **LogRhythm SIEM** | N/A | N/A | | **Sophos Endpoint** | 7.7/10 | 241 | #### Generative AI | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **AI Text Generation** | Not enough data | 7.7 (233 reviews) | | **AI Text Summarization** | Not enough data | 7.7 (234 reviews) | ### Endpoint Detection & Response (EDR) | Product | Score | Reviews | |---|---|---| | **LogRhythm SIEM** | N/A | N/A | | **Sophos Endpoint** | 9.5/10 | 132 | #### Services - Endpoint Detection & Response (EDR) | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Managed Services** | Not enough data | 9.5 (126 reviews) | ### Incident Response | Product | Score | Reviews | |---|---|---| | **LogRhythm SIEM** | 8.6/10 | 70 | | **Sophos Endpoint** | N/A | N/A | #### Response | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Resolution Automation** | 8.2 (46 reviews) | Not enough data | | **Resolution Guidance** | 8.4 (44 reviews) | Not enough data | | **System Isolation** | 8.1 (45 reviews) | Not enough data | | **Threat Intelligence** | 8.7 (54 reviews) | Not enough data | | **Incident Investigation** | Not enough data | Not enough data | #### Records | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Incident Logs** | 8.8 (59 reviews) | Not enough data | | **Incident Reports** | 8.9 (55 reviews) | Not enough data | #### Management | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Incident Alerts** | 8.8 (57 reviews) | Not enough data | | **Incident Case Management** | 8.7 (51 reviews) | Not enough data | | **Workflow Management** | 8.6 (49 reviews) | Not enough data | #### Generative AI | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **AI Text Generation** | Not enough data | Not enough data | | **AI Text Summarization** | Not enough data | Not enough data | ### Cloud Security | Product | Score | Reviews | |---|---|---| | **LogRhythm SIEM** | N/A | N/A | | **Sophos Endpoint** | N/A | N/A | #### Cloud Visibility | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Data Discovery** | Not enough data | Not enough data | | **Cloud Registry** | Not enough data | Not enough data | | **Cloud Gap Analytics** | Not enough data | Not enough data | #### Security | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Data Security** | Not enough data | Not enough data | | **Data loss Prevention** | Not enough data | Not enough data | | **Security Auditing** | Not enough data | Not enough data | #### Identity | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **SSO** | Not enough data | Not enough data | | **Governance** | Not enough data | Not enough data | | **User Analytics** | Not enough data | Not enough data | ### Security Information and Event Management (SIEM) | Product | Score | Reviews | |---|---|---| | **LogRhythm SIEM** | 8.7/10 | 90 | | **Sophos Endpoint** | N/A | N/A | #### Network Management | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Activity Monitoring** | 8.9 (76 reviews) ✓ Verified | Not enough data | | **Asset Management** | 8.6 (69 reviews) ✓ Verified | Not enough data | | **Log Management** | 9.0 (76 reviews) ✓ Verified | Not enough data | #### Incident Management | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Event Management** | 8.6 (78 reviews) ✓ Verified | Not enough data | | **Automated Response** | 8.7 (71 reviews) ✓ Verified | Not enough data | | **Incident Reporting** | 8.8 (75 reviews) ✓ Verified | Not enough data | #### Security Intelligence | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Threat Intelligence** | 8.7 (73 reviews) ✓ Verified | Not enough data | | **Vulnerability Assessment** | 8.4 (65 reviews) ✓ Verified | Not enough data | | **Advanced Analytics** | 8.6 (70 reviews) ✓ Verified | Not enough data | | **Data Examination** | 8.4 (71 reviews) ✓ Verified | Not enough data | #### Agentic AI - Security Information and Event Management (SIEM) | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Autonomous Task Execution** | Not enough data | Not enough data | | **Multi-step Planning** | Not enough data | Not enough data | | **Proactive Assistance** | Not enough data | Not enough data | | **Decision Making** | Not enough data | Not enough data | ### Endpoint Protection | Product | Score | Reviews | |---|---|---| | **LogRhythm SIEM** | N/A | N/A | | **Sophos Endpoint** | N/A | N/A | #### System Control | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Device Control** | Not enough data | Not enough data | | **Web Control** | Not enough data | Not enough data | | **Application Control** | Not enough data | Not enough data | | **Asset Management** | Not enough data | Not enough data | | **System Isolation** | Not enough data | Not enough data | #### Vulnerability Prevention | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Endpoint Intelligence** | Not enough data | Not enough data | | **Firewall** | Not enough data | Not enough data | | **Malware Detection** | Not enough data | Not enough data | #### Security Management | Feature | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Incident Reports** | Not enough data | Not enough data | | **Security Validation** | Not enough data | Not enough data | | **Compliance ** | Not enough data | Not enough data | --- ## Categories **Shared Categories (1):** [Extended Detection and Response (XDR) Platforms](https://www.g2.com/categories/extended-detection-and-response-xdr-platforms) **Unique to LogRhythm SIEM (2):** [Incident Response Software](https://www.g2.com/categories/incident-response), [Security Information and Event Management (SIEM) Software](https://www.g2.com/categories/security-information-and-event-management-siem) **Unique to Sophos Endpoint (3):** [Endpoint Protection Platforms](https://www.g2.com/categories/endpoint-protection-platforms), [Endpoint Detection & Response (EDR) Software](https://www.g2.com/categories/endpoint-detection-response-edr), [Antivirus Software](https://www.g2.com/categories/antivirus) --- ## Reviewer Demographics ### By Company Size | Segment | LogRhythm SIEM | Sophos Endpoint | |---|---|---| | **Small-Business** | 16.1% | 17.8% | | **Mid-Market** | 43.1% | 63.0% | | **Enterprise** | 40.9% | 19.3% | ### By Industry #### LogRhythm SIEM - **Information Technology and Services:** 27.0% - **Computer & Network Security:** 19.0% - **Financial Services:** 6.6% - **Computer Software:** 6.6% - **Banking:** 5.1% - **Telecommunications:** 2.9% - **Security and Investigations:** 2.2% - **Government Administration:** 2.2% - **Information Services:** 2.2% - **Health, Wellness and Fitness:** 1.5% - **Other:** 24.8% #### Sophos Endpoint - **Information Technology and Services:** 15.1% - **Manufacturing:** 6.2% - **Computer & Network Security:** 5.9% - **Hospital & Health Care:** 4.1% - **Construction:** 4.0% - **Education Management:** 3.6% - **Computer Software:** 3.6% - **Automotive:** 2.9% - **Primary/Secondary Education:** 2.5% - **Retail:** 2.5% - **Other:** 49.8% --- ## Alternatives ### Alternatives to LogRhythm SIEM - [Sumo Logic](https://www.g2.com/products/sumo-logic/reviews) — 4.3/5 stars (398 reviews) - [IBM QRadar SIEM](https://www.g2.com/products/ibm-ibm-qradar-siem/reviews) — 4.4/5 stars (335 reviews) - [Microsoft Sentinel](https://www.g2.com/products/microsoft-sentinel/reviews) — 4.4/5 stars (295 reviews) - [Splunk Enterprise Security](https://www.g2.com/products/splunk-enterprise-security/reviews) — 4.3/5 stars (246 reviews) - [Rapid7 Next-Gen SIEM](https://www.g2.com/products/rapid7-next-gen-siem/reviews) — 4.4/5 stars (74 reviews) - [LevelBlue USM Anywhere](https://www.g2.com/products/levelblue-usm-anywhere/reviews) — 4.4/5 stars (114 reviews) - [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) — 4.6/5 stars (409 reviews) - [Datadog](https://www.g2.com/products/datadog/reviews) — 4.4/5 stars (705 reviews) - [FortiSIEM](https://www.g2.com/products/fortisiem/reviews) — 4.3/5 stars (41 reviews) - [Splunk Enterprise](https://www.g2.com/products/splunk-enterprise/reviews) — 4.3/5 stars (432 reviews) ### Alternatives to Sophos Endpoint - [ESET PROTECT](https://www.g2.com/products/eset-protect/reviews) — 4.6/5 stars (971 reviews) - [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) — 4.6/5 stars (409 reviews) - [Check Point Harmony Endpoint](https://www.g2.com/products/check-point-harmony-endpoint/reviews) — 4.5/5 stars (284 reviews) - [SentinelOne Singularity Endpoint](https://www.g2.com/products/sentinelone-singularity-endpoint/reviews) — 4.7/5 stars (201 reviews) - [Bitdefender GravityZone XDR](https://www.g2.com/products/bitdefender-gravityzone-xdr/reviews) — 4.0/5 stars (85 reviews) - [ThreatDown](https://www.g2.com/products/threatdown/reviews) — 4.6/5 stars (1083 reviews) - [Trellix Endpoint Security](https://www.g2.com/products/trellix-endpoint-security/reviews) — 4.3/5 stars (327 reviews) - [Microsoft Defender for Endpoint](https://www.g2.com/products/microsoft-defender-for-endpoint/reviews) — 4.4/5 stars (310 reviews) - [Cynet](https://www.g2.com/products/cynet/reviews) — 4.7/5 stars (250 reviews) - [WatchGuard Endpoint Security](https://www.g2.com/products/watchguard-endpoint-security/reviews) — 4.4/5 stars (123 reviews) --- ## Top Discussions ### LogRhythm SIEM - Title: [How do you edit templates?](https://www.g2.com/discussions/12429-how-do-you-edit-templates) — 5 comments, 2 upvotes > **Top comment:** "Hi Eleazar, what templates are you referring? " - Title: [Do you guys also have problems with the customer support?](https://www.g2.com/discussions/12241-do-you-guys-also-have-problems-with-the-customer-support) — 2 comments, 1 upvote > **Top comment:** "They're not completely bad, no. Are you jumping through all their hoops, and supplying all the data they want? And can't you reach out to your account..." - Title: [Is there anyway to get more than 5000 search results at a time?](https://www.g2.com/discussions/25920-is-there-anyway-to-get-more-than-5000-search-results-at-a-time) — 1 comment, 1 upvote > **Top comment:** "It can, but is not recommended since it will take a really long time to parse data. It recommended to do about 100000 log searches, any more will take most..." - Title: [Integration with Tenable.sc](https://www.g2.com/discussions/24723-integration-with-tenable-sc) — 1 comment, 1 upvote > **Top comment:** "Hi Isaac, please open up a support ticket. We'd be happy to walk you through it. https://logrhythm.com/services/global-support-services/" ### Sophos Endpoint - Title: [Is Sophos Endpoint an antivirus?](https://www.g2.com/discussions/is-sophos-endpoint-an-antivirus) — 3 comments > **Top comment:** "Yes." - Title: [What is Sophos Intercept X: Next-Gen Endpoint used for?](https://www.g2.com/discussions/what-is-sophos-intercept-x-next-gen-endpoint-used-for) — 1 comment > **Top comment:** "Sophos Intercept X (Next‑Gen Endpoint) is an advanced endpoint protection solution designed to shield devices (like PCs and servers) from a wide range of..." - Title: [Is Sophos intercept x any good?](https://www.g2.com/discussions/is-sophos-intercept-x-any-good) — 1 comment > **Top comment:** "Yes, it is good. Low footprint and updates are small so faster updating of definition files. " --- **Source:** [G2.com](https://www.g2.com) | [Comparison Page](https://www.g2.com/compare/exabeam-logrhythm-siem-vs-sophos-endpoint)