Blumira Automated Detection & Response Reviews & Product Details

Having access to subject matter experts on the implementation and setup was key to making this a no-brainer for any size, capability IT organization to consider Review collected by and hosted on G2.com.

It did take some tweaking on the automation scripts but honestly, the whole process was a matter of days and not weeks to implement. We started seeing real triggers and not a lot of noise or excess alerts. It's been our comprehensive security blanket covering a host of servers, endpoints and other security systems. Review collected by and hosted on G2.com.

Everything is very straightforward to do -- and not in the wrong way. From getting your welcome email to having a sensor up & running, ingesting logs, takes *just* 1-2 hours depending on what do you want to set up first. The team has been great to work with and very responsive. Documentation has been perfect so far, which sadly is not the norm in our industry.

If you are ready for it, you will start getting actionable information from day 0. I can honestly say I've been impressed so far by pretty much everything; from the communications to the onboarding, to the technology -- everything has been high quality. Review collected by and hosted on G2.com.

I haven't disliked anything so far -- the only thing to mention is that due to Blumira's approach, you have limited integration options (which you can openly see on their page, not behind paywalls or exhaustive communications without clear responses). However, they currently have a *lot* of them that cover most of the use-cases that you'll find, AND they are actively working to bring on some more integrations. I liked and appreciated the attention during onboarding since they made sure to ask what tools/technologies we were using even if they didn't support them -- so they could try and do so, considering demand and all of that, of course. Review collected by and hosted on G2.com.

The Email details and actions to resolve. Review collected by and hosted on G2.com.

Nothing so far. Ilea haven't used it that long but it's been great. Review collected by and hosted on G2.com.

Simple to operate, no alert fatigue so far after a month, excellent technical account management and root cause fix for false positives, good price point, easy to install and rollout, overall really pleased. Review collected by and hosted on G2.com.

You have to put a ticket in for a manual fix for every new rule to remove repeat false positives rather than automate the process, but I can see that is a tough thing to automate Review collected by and hosted on G2.com.

We have been using Blumira for about 6 months now. It has been a great addition to our company's security profile. The best part is that I don't have to have my staff constantly monitor event logs all day long. Review collected by and hosted on G2.com.

There are times when I want to see the raw logs. It takes some experience to decipher the raw log area. I think this will be a non-issue when I get some more exposure to using the raw log area. Review collected by and hosted on G2.com.

THe ability to not only focus/do integrations but preparing EDR tools like Crowdstrike where options of read/write options in Crowdstrike as detections, actors, hosts and host groups could come. Review collected by and hosted on G2.com.

The UI is a little bit typical from that of the competition but not bad. Hoping to see more improvements over time and anything within RBAC as well would be even better. Review collected by and hosted on G2.com.

The integration with sysmon to provide real-time analysis of the behavior of domain workstations is invaluable. Review collected by and hosted on G2.com.

No major complaints with the system. We would absolutely love to see Blumira integrate with ESET cloud. Review collected by and hosted on G2.com.

Blumira was great throughout the sales process and configuration. But, the setup/configuration was the best because it was so easy. Review collected by and hosted on G2.com.

So far, there isn't anything that we dislike. We have gotten a couple of notifications and I was notified as expected and was able to take care of the issue. Review collected by and hosted on G2.com.

Blumira's strength is in their creation of high quality detections known as "findings" in the blumira dashboard. They are constantly improving the product by adding new finding types to respond to the latest threats. The step by step workflows that walk you through how to respond to each finding when it is received are very helpful especially for teams that do not have establised in house security teams or incident response capabilites. Review collected by and hosted on G2.com.

While the detection and response capabilities are great, blumira's weakness is in generic log search and threat hunting through existing logs. The provided log search tools make discovery of column names and relevant information difficult when compared to the UI of other platforms such as ELK, and humio. Still, if your primary goal is real security and not digging through logs, blumira has an excellent product. Another area that could be improved is the onboarding process for getting up and running with high signal log sources. It would be easy to miss the value of blumira if GPO audit settings, linux syslogs, sysmon, and other sources are not properly configured for good coverage. Review collected by and hosted on G2.com.

Customer service and regular updates of the product Review collected by and hosted on G2.com.

Anything that was missing was generally remedied quickly by Blumira. Review collected by and hosted on G2.com.