# LogRhythm SIEM Reviews **Vendor:** Exabeam **Category:** [Security Information and Event Management (SIEM) Software](https://www.g2.com/categories/security-information-and-event-management-siem) **Average Rating:** 4.2/5.0 **Total Reviews:** 152 ## About LogRhythm SIEM Rapidly deploy LogRhythm SIEM, the leading self-hosted SIEM, to secure your organization with powerful detections, synchronized threat intelligence, automated workflows, and achieve faster, more accurate threat detection, investigation, and response (TDIR). ## LogRhythm SIEM Reviews ### 1. LogRhythm SIEM - Best Solution In Market **Rating:** 5.0/5.0 stars **Reviewed by:** Vishwa K. | Security Administrator, Mid-Market (51-1000 emp.) **Reviewed Date:** July 31, 2025 **What do you like best about LogRhythm SIEM?** I am having very good experience on LogRhythm SIEM.The most and very effective part of the LogRhythm is it is having very good correlation capabilities as it will take logs from many end log sources and give us very effective output in all the correlation manner across all the use cases, dashboards,reports etc. It is having very simple and effective GUI which is also having navigation facility so that new users can easily understand the console and better to operate the same.And dashboard making, Report fetching are also very simple in LogRhythm. **What do you dislike about LogRhythm SIEM?** There are no such things to dislike in LogRhythm SIEM. **What problems is LogRhythm SIEM solving and how is that benefiting you?** We were having too much issues on our existing SIEM regarding the logs collection and the logs enrichment. So that to solve those problems we have inducted LogRhythm. ### 2. More than a SIEM **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Banking | Mid-Market (51-1000 emp.) **Reviewed Date:** November 15, 2024 **What do you like best about LogRhythm SIEM?** It allows me to extract specific logs with the System Monitor agent in a very precise manner (Windows events easily, the events we want from Linux/UNIX) and the server is capable of forwarding the logs to other SIEM systems just as it receives them, allowing it to become an on-premises pivot. Another additional point is that the agent allows for FIM very easily without consuming resources. **What do you dislike about LogRhythm SIEM?** The web UI should be more user-friendly, as there are other next-generation SIEMs with better graphical interfaces. **What problems is LogRhythm SIEM solving and how is that benefiting you?** It allows me to meet the requirements of certification such as PCI DSS. ### 3. Exploring the Effectiveness and Functionality of LogRhythm's NetworkXDR: A Comprehensive Review **Rating:** 5.0/5.0 stars **Reviewed by:** Muhammad Ashar A. | Network Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** December 07, 2023 **What do you like best about LogRhythm SIEM?** Realtime threat detection & behavorial analysis. **What do you dislike about LogRhythm SIEM?** Setting up and configuring NetworkXDR might be complex for some users. **What problems is LogRhythm SIEM solving and how is that benefiting you?** LogRhythm NetworkXDR integrated with LogRhythm SIEM collectively tackles several critical cybersecurity challenges and, the combination enables a comprehensive view of the network, incorporating endpoint, network, and user monitoring. ### 4. Most Reliable NDR solution **Rating:** 4.0/5.0 stars **Reviewed by:** Ashwini J. | BIM Engineer, Information Technology and Services, Small-Business (50 or fewer emp.) **Reviewed Date:** November 07, 2023 **What do you like best about LogRhythm SIEM?** The LogRhythm NDR is the most reliable and accurate DR solution to get over of cyber security threads, It also offered great solution to block immediate unwanted traffic with the most of the accuracy which makes it more effective to use. **What do you dislike about LogRhythm SIEM?** The one thing which I am not liking about this is it's search options because of its big data search options it takes longer time to get the specific results that we require. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Basically it helps to improve compilation and risk management and thus improving the business processes. And eventually improving the outcome and revenue growth. ### 5. Worst SIEM option **Rating:** 0.5/5.0 stars **Reviewed by:** Brandon C. | Mid-Market (51-1000 emp.) **Reviewed Date:** February 12, 2024 **What do you like best about LogRhythm SIEM?** Its nice to look at. But when the rubber meets the road, doing the most simple of tasks is arduous at best. **What do you dislike about LogRhythm SIEM?** Doing anything at all. There are no helpful errors. Finding information outside of their community is next to impossible. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Its possible to use to query some of the sys logs but its not intuitive and runs clunky. ### 6. SIEM with excellent UI , very intuitive **Rating:** 5.0/5.0 stars **Reviewed by:** Aak P. | Enterprise (> 1000 emp.) **Reviewed Date:** July 08, 2023 **What do you like best about LogRhythm SIEM?** Comprehensive threat detection and log management is simple. I absolutely love the UI. The interface is extremely intuitive and the tool offers great correlated insights, which are easy for the user to interpret. **What do you dislike about LogRhythm SIEM?** Scalability could be an issue. There are few opportunities for customization and flexibility. Deployment of the tool can also prove to be cumbersome and requires some enhancements. **What problems is LogRhythm SIEM solving and how is that benefiting you?** LogRhythm SIEM helps us address the challenge of managing and analyzing vast amounts of log and event data generated by diverse systems and applications. ith its centralized log and event management capabilities, LogRhythm SIEM simplifies incident investigation and forensics. It provides security analysts with the necessary tools and context to investigate security incidents, conduct forensic analysis, and perform root cause analysis, leading to faster and more accurate incident resolution. ### 7. Best performing GUI **Rating:** 4.0/5.0 stars **Reviewed by:** Shishir P. | Geotechnical Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** November 01, 2023 **What do you like best about LogRhythm SIEM?** The software is most reliable and easier to acess.Leaning and implemantion of the software is very easy. **What do you dislike about LogRhythm SIEM?** The software lack number of feature which could have been implaetmented. **What problems is LogRhythm SIEM solving and how is that benefiting you?** The product helps to correlate the data with the SIEM dashboards. the client are alerted of the incident via email whcih is quite helpful. ### 8. Amazing solution with excellent features **Rating:** 4.5/5.0 stars **Reviewed by:** Qamar S. | AVP / Unit Head IT Risk - Information Security Division, Enterprise (> 1000 emp.) **Reviewed Date:** January 02, 2022 **What do you like best about LogRhythm SIEM?** The product is very effective and easily manageable along with many other tools which I think was not offered by any other SIEM solution we are using for system log management and use it with different servers over the time we found it very Agile and effective. **What do you dislike about LogRhythm SIEM?** Reporting templates require some customisation it may be in hardest so please digging up for better opportunities. Setup of Logrhythm is difficult. Lack of compatibility with legacy integration mechanism. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Logrhythm is a user-friendly easy presentable and understandable visual data. The analytic functions of LR allows us to review quick and adhoc queries to identify threads. the LR has smart capabilities of data management. it allows us to bring wide range of multiple log sources such as windows linux etc to one place. ### 9. A Powerful Monitoring Platform **Rating:** 4.0/5.0 stars **Reviewed by:** Aalam K. | Engineer.Cloud Infrastructure.Cyber Security, Enterprise (> 1000 emp.) **Reviewed Date:** April 06, 2023 **What do you like best about LogRhythm SIEM?** LogRhythm does real-time monitoring and not also detects threats but also gives alerts of any suspicious activity on time. It gives brief information about alarms if we drill down the alarm. **What do you dislike about LogRhythm SIEM?** Overall it's a good security platform only sometimes it lags too much. Also, it's a little difficult to implement it in large organizations and it takes time to implement. **What problems is LogRhythm SIEM solving and how is that benefiting you?** LogRhythm alerts me about suspicious activities like password failure, and new account creation in the organization and also gives alerts about threats. It gives alerts quickly if some external IPs trying to access the organization's systems. ### 10. Enhancing Cybersecurity with LogRhythm NetworkXDR **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Internet | Mid-Market (51-1000 emp.) **Reviewed Date:** November 01, 2023 **What do you like best about LogRhythm SIEM?** I appreciate how LogRhythm NetworkXDR goes above and beyond in detecting and thwarting potential cyber threats, offering me a strong sense of security. **What do you dislike about LogRhythm SIEM?** I find LogRhythm NetworkXDR's interface somewhat overwhelming, making it challenging to navigate and utilize the platform efficiently. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Its proactive threat detection capabilities significantly reduce the likelihood of security breaches, allowing me to focus on strategic tasks rather than firefighting imminent cyber incidents. ### 11. Logrhythm XDR **Rating:** 5.0/5.0 stars **Reviewed by:** Shibli K. | Enterprise (> 1000 emp.) **Reviewed Date:** April 27, 2023 **What do you like best about LogRhythm SIEM?** Logrhythm Xdr helps us to collect and centralized all the log and machine data. It also has the provision of Intrusion Detection, identify the security events using extensive workflow and threat remediation. **What do you dislike about LogRhythm SIEM?** It is a helpful tool but it requires more testing as it has some bug issues. Also it does not provide the much needed security polices and it has bit of stability issues. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Logrhythm help me to detect possibe network threats that may occur time to time. It is a complete package with intrusion prevention as well as threat detection. ### 12. LogRhythm SIEM **Rating:** 3.5/5.0 stars **Reviewed by:** Sanjeev K. | Cyber Security Senior Specialist, Enterprise (> 1000 emp.) **Reviewed Date:** April 18, 2023 **What do you like best about LogRhythm SIEM?** LogRhythm SIEM it is very easy to integrate with the other security tools like Proofpoint, crowdstrike, Active Directory, Firewall, Vulnerability Management tool etc. **What do you dislike about LogRhythm SIEM?** In LogRhythm SIEM tool sometime while deboarding the assets we need to remove assets from multiple places, it should allow us to remove the assets completely from one place only, rest everything is fine. **What problems is LogRhythm SIEM solving and how is that benefiting you?** LogRhythm SIEM tool is very good for incident response team. Also LogRhythm tool is very useful for threat Analysis as well. This tool is giving complete visibility over logs from multiple log sources. ### 13. Logrythm SIEM **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** April 21, 2023 **What do you like best about LogRhythm SIEM?** Lastly I used logrythm SIEM to integrate my endpoint security solutions and it's pretty simple and complete use cases creating were done in few days. **What do you dislike about LogRhythm SIEM?** Working with API sometimes time consuming and there is little information present in internet for API integration. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Consolidated event collection and reporting on single console. I don't need to login to multiple tools console to chek for any activity rather i can check on SIEM console. ### 14. LogRhythm NetworkXDR Review **Rating:** 5.0/5.0 stars **Reviewed by:** Rohit B. | Assistant Manager - Endpoint Security, Insurance, Small-Business (50 or fewer emp.) **Reviewed Date:** March 27, 2023 **What do you like best about LogRhythm SIEM?** - It's real time detections of actions. - Integration with EDR and Firewall solutions. - Built-in MITRE ATT&CK Engine. **What do you dislike about LogRhythm SIEM?** - Complexity to integrate different vendors. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Network threat and detections solutions. ### 15. fast & efficient **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** June 24, 2022 **What do you like best about LogRhythm SIEM?** LogRhythm's SIEM solution combines enterprise log management, security analytics, user entity and behavioral analytics (UEBA), network traffic and behavioral analytics (NTBA) **What do you dislike about LogRhythm SIEM?** addons to connect new products are less, customize dashboard. **Recommendations to others considering LogRhythm SIEM:** LogRhythm's SIEM can be purchased as an appliance or as software, and deployments can be on premises, cloud or hybrid. Third-party providers offer fully hosted and managed solutions as well.LogRhythm 7.3 added collection support for additional cloud infrastructure and SaaS providers, more than doubled the solution's per-node data processing and indexing throughput, and added TrueIdentity data enrichment features to improve user-based threat detection. **What problems is LogRhythm SIEM solving and how is that benefiting you?** LogRhythm is a good fit for companies seeking a contained platform that includes core SIEM functionality as well as complementary host and network monitoring capabilities, Gartner reports, noting that the product is also a good match for organizations that need to monitor the security of their ICS/SCADA or OT environments, or that seek to merge security event monitoring of IT and OT environments. ### 16. Nice siem solution in market **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Electrical/Electronic Manufacturing | Enterprise (> 1000 emp.) **Reviewed Date:** August 18, 2022 **What do you like best about LogRhythm SIEM?** The best part of it was that one can use automation with help of powershell, apart from that Gui is user-friendly and love the concept of adding playbooks in the same section. **What do you dislike about LogRhythm SIEM?** complex deployment of this product and console management is also complex which other siem are doing in a much better way , plus Threat intelligence feature is also lagging **What problems is LogRhythm SIEM solving and how is that benefiting you?** Log push and pull mechanism is good in this product and is better than other Siem platforms and automation part also plays a major role, where the analyst can perform the task without reaching out to it service help desk teams. ### 17. Logrhythm : A complete SIEM security Solution **Rating:** 4.5/5.0 stars **Reviewed by:** Sapna J. | Security Analyst, Enterprise (> 1000 emp.) **Reviewed Date:** July 08, 2021 **What do you like best about LogRhythm SIEM?** Logrhythm is a complete SIEM solution best for real-time log analysis. Compatible with all kinds f log sources, including windows system, Syslog server, any database, EOP, EDR, all network and security devices on-premise and cloud-based both. The feature I like most about LR is smart response feature that gives us the capability to take action on the triggered alarm with monitoring. In LR, there is an elastic search database capable of handling a large amount of log data and provides effective search capabilities. We also have options of the customized parser, that broaden our scope of integrating and collecting device logs per our requirement. **What do you dislike about LogRhythm SIEM?** Logrtym GUI is not user-friendly. Only an experienced person can work better with LR web and admin portal. LR resources are not frequently available as ither SIEM. Not a cloud based platform. **Recommendations to others considering LogRhythm SIEM:** Highly recommended **What problems is LogRhythm SIEM solving and how is that benefiting you?** Earlier We were using EDR in our environment. Still, after having LR , we can monitor all kinds of logs at the endpoint, including file integrity, Binary reputation and all network connections and machine analytics. Thus, LR overcomes EDR dependency, which is the best benefit. Log retention capactiy is also high, we have 4 database for log storage. Logrthym AIE advanced corelation rule engine is also very useful that allows us to make compund corelation rules too. In LR, there is even behavioral rule block that co relate information to show any behavior change from normal traffic in your environment. ### 18. LogRhythm NextGen SIEM **Rating:** 4.5/5.0 stars **Reviewed by:** NITIN K. | Senior Network Security Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** February 02, 2022 **What do you like best about LogRhythm SIEM?** LogRhythm NextGen SIEM is one of the best-centralized log management security platform. We can download customized reports for every specific security device. **What do you dislike about LogRhythm SIEM?** LogRhythm NextGen SIEM sometimes lost console access when it got some packet drops in the network. it loses its session. **Recommendations to others considering LogRhythm SIEM:** LogRhythm NextGen SIEM is easy to use and monitor as compare to Logsign NextGen SIEM. **What problems is LogRhythm SIEM solving and how is that benefiting you?** We can manage all the security device logs and topology centrally we can trace what changes have been done in an organization. ### 19. Great SIEM product and cool design **Rating:** 4.0/5.0 stars **Reviewed by:** Wendy C. | security analyst, Enterprise (> 1000 emp.) **Reviewed Date:** May 20, 2021 **What do you like best about LogRhythm SIEM?** Its community and ability to integrate with different applications and automate actions in one platform. LogRhythm has a lot of support and conferences available in the community. I would recommend it to whoever is considering the SIEM platform. **What do you dislike about LogRhythm SIEM?** Maybe too many pieces of configuration that are related to each other. But it is also a benefit! Maybe too many pieces of configuration that are related to each other. But it is also a benefit! LogRhythm has a lot of support and conferences available in the community. I would recommend it to whoever is considering the SIEM platform. **Recommendations to others considering LogRhythm SIEM:** LogRhythm has a lot of support and conferences available in the community. I would recommend it to whoever is considering the SIEM platform. LogRhythm has a lot of support and conferences available in the community. I would recommend it to whoever is considering the SIEM platform. LogRhythm has a lot of support and conferences available in the community. I would recommend it to whoever is considering the SIEM platform. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Alarms and analytics are to notify the team about the events. SOAR structure in incident response management serves as a great tool that creates a smooth handling process. LogRhythm has a lot of support and conferences available in the community. I would recommend it to whoever is considering the SIEM platform. ### 20. All about LogRhythm Tool **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** January 28, 2022 **What do you like best about LogRhythm SIEM?** Overall experience with the LogRhythm is very impressed with the critical feature to detect threat across the cross-platform endpoints, network, URL.etc.The UI is very Handy to help and understand the issue very well. With the help of the GUI and the once Analytics interests machine data, it normalizes and enriches it so that's all of your data in the same format. **What do you dislike about LogRhythm SIEM?** As of now, we haven't faced any problems **What problems is LogRhythm SIEM solving and how is that benefiting you?** LogRhythm NextGen SIEM Platform improves our organization security standards ### 21. SIEM **Rating:** 2.5/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** February 10, 2022 **What do you like best about LogRhythm SIEM?** Great for threat detection and security log monitoring.plus support is great **What do you dislike about LogRhythm SIEM?** Nothing everything about the platform was great but UI could be made bot easy to use special log searching. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Security monitoring and compliance ### 22. LogRhythm NextGen SIEM review **Rating:** 3.5/5.0 stars **Reviewed by:** Ramnesh D. | Technical Specialist, Enterprise (> 1000 emp.) **Reviewed Date:** June 06, 2021 **What do you like best about LogRhythm SIEM?** LogRhythm SIEM best thing below: 1. Easy to understand its components and functionality. 2. Easy implementation and configuration. 3.Use case available as per industry compliance (like, PCI DSS, SOX , HIPAA etc) 4. Requires less resources to manage SIEM. 5.Efficient dashboard for real-time monitoring. **What do you dislike about LogRhythm SIEM?** 1. Limited resources available for learning. 2. Some time facing issue with log source integration. 3. Training and certification costsly. 4.need to improve some reports part. 5.logging is always necessary. **What problems is LogRhythm SIEM solving and how is that benefiting you?** 1.LR SOAR part is very helpful for incident management team, easy to handling incident management process. 2. Community portal is very nice for help and good Article. 3.Events details very useful to threat hunting team and investigation team. ### 23. Strong Product - Has All that's needed. Still room for improvement. **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** February 02, 2021 **What do you like best about LogRhythm SIEM?** Logrhythm has everything you need in a SIEM product. Loads of different Log sources, customization, Pre-built rules, Easy search synax, Reporting, Archival. Customization, in my opinion, is the single greatest asset the Logrhythm provides. The ability to create log sources for any log, no matter how non-standard or obscure it is, is hugely helpful. Similarly, the possibilities within the alarm/report builder are limitless. You can have extremely narrow and simple alarms/reports or be extremely broad and complex - to a level i've not seen in some competitors. **What do you dislike about LogRhythm SIEM?** Missing some nice to have's. Very old school design (not very appealing). Relatively slow development. New log source development/updates take a long time. Not very scalable. In larger deployments of Logrhythm, it can struggle to handle the load of incoming logs. It can take quite a bit of work to configure everything in a way that it doesn't cause issues for the system to process everything and index it. It is not uncommon for a particular log source (debug often times) to cause processing or indexing issues that can completely bottleneck the entire system. Sometimes preventing virtually any log from getting processed/indexed. These situations can be monumentally frustrating as there is little you can do without extensive knowledge of the inner workings of the product. This probably isn't something every-day users or administrators should have to deal with. However, if you do learn how to deal with the issues, you can overcome these issues and configure things in a way where you are less likely to run into them or have a quicker response in resolving these issues when they inevitably come up. **Recommendations to others considering LogRhythm SIEM:** Have patience, the product has some difficulties in initial setup and build-out. However, the end game is worth it. If you become a 'power-user', the product can become so much more powerful than what you are initially presented with. **What problems is LogRhythm SIEM solving and how is that benefiting you?** There is no shortage of problems that we have thrown at logrhythm that we haven't been able to solve. Anything that can write an output to a file can be pulled in, provided you put in the work. With the ability to create custom log parsing, alarms and reports, we can take any output - pull it into logrhythm and do some level of analysis or archival of it. This is a huge benefit! It takes work to learn how to do everything, but once you do there are few limits. We output emails, text files, web logs and other non-standard things, create custom logic for them and are able to do all sorts of real-time analysis on them! ### 24. LogR comparison with Other tools **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Enterprise (> 1000 emp.) **Reviewed Date:** June 05, 2021 **What do you like best about LogRhythm SIEM?** Finding the logs are Quiet easy than RSA. **What do you dislike about LogRhythm SIEM?** But still, I suggest creating a Effective TAB as Microfocus have in ARCMC **Recommendations to others considering LogRhythm SIEM:** I believe LogR is one of the best SIEM tools, and if we see it, Gartner Quadrant shows the impact of LogR tools, so I think we should go for this tool. Aside from if you compare it with RSA then certain things you find that - Its GUI is much better than RSA Its Search tab is much better and shows what you find, unlike RSA netwitness **What problems is LogRhythm SIEM solving and how is that benefiting you?** As analyst L2 position we generally analyze the logs on day to day basis and on a monthly basis but I suggest LogR team to create a dedicated TAB for Graphs view. ### 25. Helps us with daily monitoring of our systems. **Rating:** 4.5/5.0 stars **Reviewed by:** Ankit K. | Software Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** January 05, 2021 **What do you like best about LogRhythm SIEM?** The security system as well as the LogRhythm AI engine regulations are beneficial for rapid detection of malicious pursuits. Use-cases could be helpful in producing effective use cases with different features. The LR search choice is yet another terrific feature. For a particular time period we can carry out a log search with different filters. The LR event search functionality usually allows you to check for AI engine rules as well as logs which have turned into incidents. This's practical in investigating incidents. **What do you dislike about LogRhythm SIEM?** Time that is a different zone on the downloaded CSV for logs. It is always GMT+0 without any choice to change it. LR still doesn't seem to possess a functionality for log massage change in time zone. You've to check out as well as provide before long, because many customers face issues in figuring out the actual period of the contest. **Recommendations to others considering LogRhythm SIEM:** We want to work out how different log messages from LR is generalized. The development of uses might be undisturbed. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Don't need some time to monitor LR dashboards. When you've created efficient and reliable cases, we can depend on the alarm system. The fine-tuning alarm system with exclusion is straightforward and has LR features. Use cases can be simple to create and easy to adjust. Easy to determine whether we've a situation where such an assault is recognized with event search. ### 26. I've been working with it and so good to use **Rating:** 4.0/5.0 stars **Reviewed by:** Asperiandi . | SOC Analyst, Small-Business (50 or fewer emp.) **Reviewed Date:** June 04, 2021 **What do you like best about LogRhythm SIEM?** it synchronous with our daily work as security Analyst **What do you dislike about LogRhythm SIEM?** still need dynamic enhance to make it more usefull **Recommendations to others considering LogRhythm SIEM:** LogRhytm is wonderfull nexgen SIEM for Security Engineer or Analyst **What problems is LogRhythm SIEM solving and how is that benefiting you?** I could fine related anomaly when an event occur ### 27. Best Security Information and event management system **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Mining & Metals | Mid-Market (51-1000 emp.) **Reviewed Date:** October 04, 2021 **What do you like best about LogRhythm SIEM?** Event management and log management function is easy to use **What do you dislike about LogRhythm SIEM?** We had a problem with the DELL server and it was hard to back up the log **What problems is LogRhythm SIEM solving and how is that benefiting you?** Managing and securing our logs ### 28. Powerful and useful SIEM solution **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Mid-Market (51-1000 emp.) **Reviewed Date:** September 02, 2021 **What do you like best about LogRhythm SIEM?** The LogRhythm web interface makes things easy to visualize and search, and newer case/incident management provides a great overall solution. **What do you dislike about LogRhythm SIEM?** Searching older/archived logs is a bit cumbersome. **What problems is LogRhythm SIEM solving and how is that benefiting you?** LogRhythm correlates event log data from many different devices and device types and meets logging retention requirements. ### 29. SIEM tool in our toolkit. **Rating:** 4.5/5.0 stars **Reviewed by:** Suchir J. | Mulesoft Senior Consultant and API developer, Enterprise (> 1000 emp.) **Reviewed Date:** November 04, 2020 **What do you like best about LogRhythm SIEM?** LogRhythm is among the very best SIEM toools I've previously used. It allows for security analysts to fairly quickly examine and completely analyse protection functions. It's a user friendly user interface and LogRhythm assessments can be simple to perform. Additionally, rapid filtering during the investigation procedure is incredibly useful. **What do you dislike about LogRhythm SIEM?** The implementation of the item was a little complicated and we'd a number of issues with log evaluation when transferring logs from Arcsight SIEM logs to LogRhythm log collector. **Recommendations to others considering LogRhythm SIEM:** With the instrument panel, the process is much better regarding overall performance, control and functionality. **What problems is LogRhythm SIEM solving and how is that benefiting you?** From the very first exposure to the provider to implementation, targets are maxed out in every respect. The sales representative was extremely receptive and made sure the item was ideal for the needs of ours. The schedule and implementation had been completed as scheduled. We evaluated seven various SIEM company platforms and LogRhythm was probably the best. ### 30. Contrary to any other SIEM. **Rating:** 4.5/5.0 stars **Reviewed by:** Bhavik P. | Senior back-end developer, Mid-Market (51-1000 emp.) **Reviewed Date:** November 02, 2020 **What do you like best about LogRhythm SIEM?** LogRhythm, unlike any other SIEMs, can be an intricate platform. By adding 2 os's, SIEM LogRhythm has among the easy-to-use and aerodynamic most configurations in the marketplace, with a heavy client and site interface. The heavy client is fully functional and additionally the web user interface provides essentially the most commonly used functions like the control board and SOAR. **What do you dislike about LogRhythm SIEM?** In many configurations, LogRhythm is very reliant on a huge client, as is usually true on many SIEM platforms. Its web-interface isn't as complete as we'd love it to be. Several of the attached dull file protocols , like those worn at the mail gateway, don't differ since they don't incorporate straight into the Mimecast wedge. **Recommendations to others considering LogRhythm SIEM:** In case you're searching for a simple TU, LogRhythm will be the best solution for you. It would seem LogRhythm has incorporated more functions into the web user interface, that is certainly a move in the correct path. **What problems is LogRhythm SIEM solving and how is that benefiting you?** With a strong platform as LogRhythm, we are able to gather logs across the whole business, such as end user, server and also workstation infrastructures, ensuring almost all logs are aggregated as well as correlated. This enables us to look at potential events and security logs through one pane. ### 31. Great Application to use **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** June 06, 2021 **What do you like best about LogRhythm SIEM?** Best siem platform to use. Threat hunting **What do you dislike about LogRhythm SIEM?** None, beacause most of the services are great to use. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Attack identification, threat hunting, alert notification ### 32. Reliable and simple **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** June 07, 2021 **What do you like best about LogRhythm SIEM?** The features are good and perform well as expected **What do you dislike about LogRhythm SIEM?** Setup is quite rigid and complex, Need training and materials for users **Recommendations to others considering LogRhythm SIEM:** It's a good all in one tool for your siem needs , can consider for larger setup and also for mid size setups **What problems is LogRhythm SIEM solving and how is that benefiting you?** The platform helps to share in-depth details of logs and events in the organisation ### 33. LogRhythm- Great SIEM **Rating:** 4.5/5.0 stars **Reviewed by:** Dave D. | Information Security Manager, Enterprise (> 1000 emp.) **Reviewed Date:** September 16, 2020 **What do you like best about LogRhythm SIEM?** LogRhythm, like any other SIEM, can be a complicated platform. Having used two other SIEM platforms, LogRhythm has one of the most streamlined configurations and overall usability. The SIEM comes with both a thick-client and web interface. The thick-client is comprehensive, while the web interface features the most common features such as dashboards, and SOAR. **What do you dislike about LogRhythm SIEM?** LogRhythm relies heavily on the thick-client for most of the configuration, which has traditionally been the case with most SIEM platforms. The web interface is not as comprehensive as I would like. Some of the flat-file ingestion of logs, such as for an email gateway (Mimecast) integration is less than stellar as their is no direct integration with the Mimecast platform. **Recommendations to others considering LogRhythm SIEM:** If you are looking for a streamlined SIEM, LogRhythm is the platform for you. LogRhythm, with the release of 7.5, appears to be incorporating more features into the web interface, which is definitely a step in the right direction. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Using a robust platform, such as LogRhythm allows us to ingest logs from across the enterprise, including infrastructure, servers, and end-user workstations, allow for aggregation and correlation across all logs. This allows us a single pane of glass to review security logs and potential incidents. ### 34. Easy to learn and Handel and it’s utilise less CPU & memory **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** June 05, 2021 **What do you like best about LogRhythm SIEM?** Have experience with logrythem tool Easy to configure and administrate. specific use cases and helps to Handel faster **What do you dislike about LogRhythm SIEM?** Haven't face any issue so far .. going on smooth **Recommendations to others considering LogRhythm SIEM:** Cost effective , easy configure and administrate . Consuming less cpu memory **What problems is LogRhythm SIEM solving and how is that benefiting you?** Installation , configure and filtering mechanism ### 35. One of the Best SIEM Tools **Rating:** 4.0/5.0 stars **Reviewed by:** Parth P. | Consultant, Small-Business (50 or fewer emp.) **Reviewed Date:** November 30, 2020 **What do you like best about LogRhythm SIEM?** LogRhythm provides powerful Rule Creation & Integration APIs that can collect logs from various devices at once. It can process millions of logs every second - very powerful. **What do you dislike about LogRhythm SIEM?** Drill down on Multiple Alarms through LR Console is not possible. they really need to add this feature. ArcSight has this feature. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Extended Detection and Response (XDR) Platforms & Security Information and Event Management (SIEM) ### 36. LogRhythm NextGen SIEM **Rating:** 4.5/5.0 stars **Reviewed by:** Mohammed B. | Sr. Linux System Administrator, Enterprise (> 1000 emp.) **Reviewed Date:** September 14, 2020 **What do you like best about LogRhythm SIEM?** This particular solution is primarily used by our staff also as by firewall administrators. We put it to use to aggregate logs, correlate functions and automate firewall protection policies. The main purpose of its is actually updating the security policy depending on the changing threat vectors of the Internet of ours. **What do you dislike about LogRhythm SIEM?** The administrator management panel is quite unintuitive and some functions are hard to find **Recommendations to others considering LogRhythm SIEM:** LogRhythm is actually perfect for management logs from systems that are different, correlating events and giving a worldwide view of the ecosystem. One of the main advantages of its is actually the control board, information mining, search as well as alarm continuity. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Major issues in multi-platform hunting and threat detection. We also have to communicate the maturity of ours and security potential much more accurately. ### 37. Logrhythym Information **Rating:** 5.0/5.0 stars **Reviewed by:** Jose P. | Cyber Security Analyst II, Small-Business (50 or fewer emp.) **Reviewed Date:** February 27, 2020 **What do you like best about LogRhythm SIEM?** How logrhythm offers appliance, cloud and software install. This helps when you depend on a data center to provide infrastructure to spin up VM's. Also how we can customize dashboards for different teams. Restrict what other teams can see. How can we remove unwanted logs from being captured thus making appliance faster. Integration with Microsoft, such Azure and O365, specially the security components. **What do you dislike about LogRhythm SIEM?** Integration with not well known devices, such mikrotik. I could leverage API, but there are not much information on how to use API. This is not Logrhythm fault, but I would like to see more local groups that are using Logrhythm to collaborate so we can discuss issues or features that can benefit each other. **Recommendations to others considering LogRhythm SIEM:** Logrhythm has integration with many software and appliances. Sometimes integrations are not easy, but once integration is done, Logrhythm can pretty much alert on anything. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Alerts, that's the core for us, data storage and plus nice dashboards that we can broadcast to upper management. Also how we can customize dashboards for different teams. Support is amazing. Incident response is great, Logrhythm community is amazing. Pro support is great too. It has helped spot attacks on web services, DMZ, web pages, network equipment ans users. ### 38. All you need in a SIEM **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Mid-Market (51-1000 emp.) **Reviewed Date:** April 13, 2021 **What do you like best about LogRhythm SIEM?** Great product. Handles enterprise software. Can add on an artificial intelligence engine if necessary. Network monitoring functionality added on. **What do you dislike about LogRhythm SIEM?** Does not function in the cloud as seamlessly. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Detect malicious logs in the network. Network monitoring ### 39. LogRhythm Is the leading SIEM in the industry that provide more functionalities to the users. **Rating:** 4.0/5.0 stars **Reviewed by:** Sandun M. | Information Security Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** March 19, 2020 **What do you like best about LogRhythm SIEM?** LogRhythm AI engine rules and alarm system is very helpful to detects malicious activities quickly. Use-Cases can create with various functionalities that is very helpful while creating effective use cases.Another super feature is LR search option. we could run a log search with different type of filters for given time period. LR event search feature always helps to catch AI engine rules and also logs that became events.This feature very helpful while incident investigating. **What do you dislike about LogRhythm SIEM?** Time zone for logs messages different on downloaded CSV. No option to change it.it is always GMT +0. functionality for log massage time zone change still seems to be not available with LR. need to check and provide soon, since lot of customers facing trouble to identify what is the exact time for the event.some time we have to manually change the log times times on CSV. **Recommendations to others considering LogRhythm SIEM:** we need to find a way to generalize different type of log messages that collects from LR(most of the time security toos by adding more Fields like common events). Then it will be very easy to creates Usecases. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Do not want to wast time on monitoring LR dashboards, we could depend on alarms system after you have created good and effective use-cases. fine tuning alarm system is very easy with exclude and include functionality of LR.Very easy to create use cases and very easy to fine tune them. easy to check whether we have a use case to detect such attack with event search functionality. ### 40. LogRhythm is the main SIEM solution we are currently using in securing the enterprise environment. **Rating:** 5.0/5.0 stars **Reviewed by:** Manoj s. | Mid-Market (51-1000 emp.) **Reviewed Date:** May 26, 2020 **What do you like best about LogRhythm SIEM?** LogRhythm is one of the best SIEM solutions i have used so far. it provide security analysts ability to perform quick drill down investigations and do deep analysis of the security incidents. It has a easy to use UI design and performing investigations on the LogRhythm is very easy. Quick filters in the investigations are also very helpful in investigations. Ability to integrate all the major product and services logs, as well as support for all the one offs. It has a user-friendly dashboard. Therefore, even a beginner can easily understand and monitor the dashboard. Also, I like to dark theme of the LogRhythm. It was competitively priced compared to other SIEM solutions and they helped with the entire deployment so that was greatly appreciated. The best part of the SIEM is the quick review of logs. Customer service responses quickly, and continues until the problem is resolved. Installation was not difficult, but configuration is the biggest challenge. Linux systems are simple to configure for log forwarding but the Windows side required some research and trial and error. There are some components in my network that had to be upgraded to integrate with the SIEM. **What do you dislike about LogRhythm SIEM?** Actually, the correlation is a little bit difficult thing. So, you should have a good knowledge of that. Also, somewhat expensive when compared with other similar products. Product implementation is somewhat difficult and we faced some log parsing issues when the logs were forwarded from Arcsight SIEM log forwarder to the LogRhythm log Collectors. I don’t like the login screen. I just think it doesn’t fit well with a security management tool. Also, LogRhytm needs to improve with its documentation. There are too many tutorials written, but maybe adding video content with the most common issues could work better. Also, the information showed when an alarm rings should be configurable, in order to show only the priority data. **Recommendations to others considering LogRhythm SIEM:** The professional service guys are great. They always seem to be up for a challenge. We've had some interesting items pop-up where those guys will dig right in to attempt to get what we need via an alarm, dashboard, or report. **What problems is LogRhythm SIEM solving and how is that benefiting you?** LogRhythm AI engine rules and alarm system is very helpful to detects malicious activities quickly. Use-Cases can create with various functionalities that is very helpful while creating effective use cases.Another super feature is LR search option. we could run a log search with different type of filters for given time period. LR event search feature always helps to catch AI engine rules and also logs that became events.This feature very helpful while incident investigating. LogRhythm is very flexible, you can either run it virtually, on your own hardware or using an Appliance. It is straightforward to set up exactly how you want it, whether you are an IT department or a stand-alone SOC. ### 41. LogRhythm is a worthwhile investment to get detailed analytics of your network **Rating:** 4.5/5.0 stars **Reviewed by:** Mark S. | Infrastructure Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** April 23, 2020 **What do you like best about LogRhythm SIEM?** LogRhythm is very flexible, you can either run it virtually, on your own hardware or using an Appliance. It is straightforward to set up exactly how you want it, whether you are an IT department or a stand-alone SOC. **What do you dislike about LogRhythm SIEM?** Its power and flexibility can be overwhelming at times, but this is the nature of a mature SIEM solution, and therer is always LogRhythm Support or 3rd party implementation services available to assist with any query. **What problems is LogRhythm SIEM solving and how is that benefiting you?** We were looking to align our network monitoring with the requirements for UK GPG13 and needed a centralised platform for monitoring. As we were a department of 7, it needed to be set and "forget" with little hands-on work other than reviewing alerts. As a test, we wanted to capture users logging onto the system, so we set a filter up for usernames longer than 4 characters and found users were accidentally typing passwords into the username field. We educated users to be careful when logging in and the number of instances were reduced. We also had actionable reports on alerts from the systems and we were then able to confirm whether or not the reports required actioning. ### 42. User friendly & one of the good SIEM product **Rating:** 4.0/5.0 stars **Reviewed by:** Jiban Jyoti R. | Information Security Analyst, Enterprise (> 1000 emp.) **Reviewed Date:** April 17, 2020 **What do you like best about LogRhythm SIEM?** As an Analyst, I liked the WEB-UI of LogRhythm. Dashboards are very useful in investigating an alert. You can also create custom dashboard with some awesome widgets. Quick drill-down log search. Case management is also an advanced feature to track-down incidents & escalation. The AIE alarm rule is very useful in defining the complex use-cases to detect various attack methods. The product architecture & components are very well designed to adapt all varieties of business needs. **What do you dislike about LogRhythm SIEM?** The product was not stable, I have seen several component failure randomly, due to the capacity & log processing. I have seen frequent upgrades to fix issues. May be it was the capacity limitation in my organisation. **Recommendations to others considering LogRhythm SIEM:** LogRhythm SIEM is one of the best product, can be used to achieve high fidelity security context. **What problems is LogRhythm SIEM solving and how is that benefiting you?** I have used LogRhythm to investigate security alerts & troubleshoot silent log sources. LogRhythm community has some good documents to help you troubleshoot issue. ### 43. Just another SIEM with fancy Dashboards **Rating:** 3.0/5.0 stars **Reviewed by:** Chetan G. | Team Lead - Security Architect, Mid-Market (51-1000 emp.) **Reviewed Date:** June 18, 2020 **What do you like best about LogRhythm SIEM?** - Logrhythm is very easy to deploy - Log source monitoring and administration is very flexible and easy to configure. - Huge Library of OOB connectors - Endpoint Forensic collection is very easy through its System Monitor Agents - Log visualization and threat hunting is very easy and flexible. - Logrhythm community is very good resource for customers, partners and administrators **What do you dislike about LogRhythm SIEM?** - frequent SIEM breakdowns, Stability issues. - Rule based correlation heavily dependent on Analyst skills. - Performance impact if large set of data is visualized on WebUI. **Recommendations to others considering LogRhythm SIEM:** Logrhythm has excellent integration and visualization capabilities, but lack on advance correlation, machine learning analytics and UEBA capabilities. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Compliance regulations Forensic Investigation Benefits - Provides complete visibility to Security Operations team ### 44. LogRythm is a good addition to an organizations security infrastructure **Rating:** 5.0/5.0 stars **Reviewed by:** Thivaharan R. | Mid-Market (51-1000 emp.) **Reviewed Date:** July 15, 2020 **What do you like best about LogRhythm SIEM?** LogRythm NextGen SIEM is a very useful addition to the security infrastructure. Through LogRythm it is possible to monitor all the devices within the network and get real-time alerts regarding security incidents. Investigating a security incident through LogRythm is very easy because the tool grabs the necessary information and provides it to the user. The suggested response increases the speed of the response. LogRythm also has very interactive interfaces which make it easy to use. **What do you dislike about LogRhythm SIEM?** There is nothing bad to say about this product. **Recommendations to others considering LogRhythm SIEM:** I would recommend LogRythm for use in an organizational enviornment. **What problems is LogRhythm SIEM solving and how is that benefiting you?** LogRythm allows us to easily monitor, track and resolve security incidents. ### 45. In the world of AI, helping customer provide security and correlation. **Rating:** 5.0/5.0 stars **Reviewed by:** Girish V. | Architect - Cloud Services, Mid-Market (51-1000 emp.) **Reviewed Date:** April 23, 2020 **What do you like best about LogRhythm SIEM?** Their simple to us interface and AI building blocks are something that we helps companies focus on their security threat vector. The other thing is they keep on innovating themselves. I love their work from TAC. They provide a good support from their team with expert but it’s for US TAC only. **What do you dislike about LogRhythm SIEM?** The challenge on keeping their products updated along with complex design architecture is some thing that is challenging. However, this is not a blocker as this makes their design scalable. But i also don’t like the approach of documentation as it is clear on how to get things done easily. **Recommendations to others considering LogRhythm SIEM:** I would recommend this product only when you think you can develop sufficient expertise both on its software and have an in house SQL guy who can help you maintain database performance. **What problems is LogRhythm SIEM solving and how is that benefiting you?** Correlation. Threat Vector Identification as well as automation. ### 46. Spinning Its Own Wheels **Rating:** 3.5/5.0 stars **Reviewed by:** Valon J. | Mid-Market (51-1000 emp.) **Reviewed Date:** March 24, 2020 **What do you like best about LogRhythm SIEM?** The UI is sleek and program runs smoothly. It's a great program when it comes to providing actionable events to respond to. It helps demystify logs and makes them easier to digest. **What do you dislike about LogRhythm SIEM?** Too many false positives paired with not as many needed options to reduce spamming alarms. As a user, without the input of an administrator, there is nothing you can do if you enviornment is going crazy and you still want to effectively meet SLAs. Mass closing and mass commenting are not sufficent when alarms generate in large number in short, timed intervals. IE: 50 alarms every thirty seconds. This is not something manageable when a security analyst is likely managing several environments at once. More suppression methods need to be available to users. **Recommendations to others considering LogRhythm SIEM:** If you can, opt to receive the LogRhythm Analyst and Admin training as soon as possible. **What problems is LogRhythm SIEM solving and how is that benefiting you?** I am sometimes able to spot legitimate security events and report on them through LogRhythm. The information the SIEM provides gives a good indication of how reporting should take place. ### 47. 2+ years experience with 4 different Siems, LogR get my number 01 **Rating:** 4.0/5.0 stars **Reviewed by:** Chirantha A. | Information Security Analyst, Mid-Market (51-1000 emp.) **Reviewed Date:** April 21, 2020 **What do you like best about LogRhythm SIEM?** I worked with LogR SIEM for 2+ years and same time I used another two SIEMs and now I’m using open source version of SIEM. When go to the case creating , filtering , LogR backend it’s superb and it’s easy to use and when we updating user cases it’s simple than others for me. And reporting also good. Alarms and eps count also in good. I guess for large and medium organizations LogR is the best product as SIEM. Oh correlation I love this part **What do you dislike about LogRhythm SIEM?** Actually the cost , it’s too high ane others all good. **Recommendations to others considering LogRhythm SIEM:** It’s good for medium and large companies. Support also good. implimentation good. **What problems is LogRhythm SIEM solving and how is that benefiting you?** We are generating firewall logs , waf logs OSSEC logs and etc. So we can monitor all the logs in one place according to the user cases ### 48. Its been a decent experience. **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Commercial Real Estate | Enterprise (> 1000 emp.) **Reviewed Date:** February 27, 2020 **What do you like best about LogRhythm SIEM?** The professional service guys are great. They always seem to be up for a challenge. We've had some interesting items pop-up where those guys will dig right in to attempt to get what we need via an alarm, dashboard, or report. **What do you dislike about LogRhythm SIEM?** The support desk really stinks. Getting someone to address issues is a task, and cumbersome. Typically you will not get first call resolution with these folks. They will log your request, and you might hear back from someone that day, you might not. Once you have agreed upon a time to meet to discuss your issue, you could be 2 or 3 days into an outage. I went for over a week a few times with issues. You are better off contacting the professional service guys or you sales account rep to get any kind of traction on an issue. **Recommendations to others considering LogRhythm SIEM:** It's a good siem out of the box. The guys who help you set things up are great. Support is lacking though. **What problems is LogRhythm SIEM solving and how is that benefiting you?** We are looking to alarm on malicious issues that arise across the network. We are currently in our infancy, building out dashboards, elevation of privilege alarms, software uninstall alarms. We hope to get the MITRE ATT&CK Framework built out across the platform to alarm on those types of issues. We are also looking at monitoring group changes, access to specific platforms, etc. ### 49. The most configurable SIEM **Rating:** 5.0/5.0 stars **Reviewed by:** Joe L. | Cyber Security Deputy Manager / Cyber Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** March 22, 2020 **What do you like best about LogRhythm SIEM?** In comparison to other SIEM products Logrhythm provides enhanced configuration options, allowing for easier tailoring of information you which to see. The ability to create correlation rules, allows full TTP's to be protected against in comparison to other SIEMs allowing focus on only a single aspect. From an administrator point of view, the separation between the FAT console and Web view allows for both a 'customer friendly' type view in the form of the web console and a more serious view in the form of the console, to allow tasks to be completed efficiently. **What do you dislike about LogRhythm SIEM?** The costing of Log rhythm is the primary downside moving from a large single client to an MSP offering SOC to many smaller companies, they simply cannot afford the product **What problems is LogRhythm SIEM solving and how is that benefiting you?** Full TTP protection, UEBA ### 50. If you need a SiEM real bad, there are worse options **Rating:** 2.5/5.0 stars **Reviewed by:** Verified User in Leisure, Travel & Tourism | Enterprise (> 1000 emp.) **Reviewed Date:** March 28, 2020 **What do you like best about LogRhythm SIEM?** The "Logrhythm method" is fairly consistent, once you get the hang of that, it is easier to work with. The browser front end is fairly intuative for use **What do you dislike about LogRhythm SIEM?** The Web UI likes to "grow" screens from the sides, which will happen more often than you want it to. The Thick client should be going away soon, but not soon enough. The more any given server does, the more logs it makes, the more memory the LR agent needs.. on a server that already needs those resources. Get comfortable with real expressions, you will need them. Case management is primitive, manage tickets elsewhere. Reporting is both large, robust, and unhelpful. **Recommendations to others considering LogRhythm SIEM:** Honestly, a medium sized business, if it *knows* the network and machines to monitor, can do a lot worse than Logrhythm. Do not use this in hopes of asset discovery **What problems is LogRhythm SIEM solving and how is that benefiting you?** It stored logs and allows us to search them. As a searchable database, it is massively more useful than the alarming system ## LogRhythm SIEM Discussions - [How do you edit templates?](https://www.g2.com/discussions/12429-how-do-you-edit-templates) - 5 comments, 2 upvotes - [Is there anyway to get more than 5000 search results at a time?](https://www.g2.com/discussions/25920-is-there-anyway-to-get-more-than-5000-search-results-at-a-time) - 1 comment, 1 upvote - [Integration with Tenable.sc](https://www.g2.com/discussions/24723-integration-with-tenable-sc) - 1 comment, 1 upvote - [Do you guys also have problems with the customer support?](https://www.g2.com/discussions/12241-do-you-guys-also-have-problems-with-the-customer-support) - 2 comments, 1 upvote - [View LogRhythm SIEM pricing details and edition comparison](https://www.g2.com/products/exabeam-logrhythm-siem/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-16+02%3A09%3A24+-0500&secure%5Bsession_id%5D=09a19ecb-6fcc-437f-bb90-31ef4f8b06c3&secure%5Btoken%5D=5aa373eeafd33f8efaf8f7b38b9ce657b9cfdfa63dc9f9955bc5a86c0d19c1b2&format=llm_user) ## LogRhythm SIEM Integrations - [Mandiant Threat Detection and Intelligence](https://www.g2.com/products/mandiant-threat-detection-and-intelligence/reviews) ## LogRhythm SIEM Features **Detection & Response** - Response Automation - Threat Hunting - Rule-Based Detection - Real-Time Detection **Response** - Resolution Automation - Resolution Guidance - System Isolation - Threat Intelligence - Incident Investigation **Cloud Visibility** - Data Discovery - Cloud Registry - Cloud Gap Analytics **Network Management** - Activity Monitoring - Asset Management - Log Management **Management** - Extensibility - Workflow Automation - Unified Visibility **Records** - Incident Logs - Incident Reports **Security** - Data Security - Data loss Prevention - Security Auditing **Incident Management** - Event Management - Automated Response - Incident Reporting **Analytics** - Threat Intelligence - Artificial Intelligence & Machine Learning - Data Collection **Management** - Incident Alerts - Incident Case Management - Workflow Management **Identity** - SSO - Governance - User Analytics **Security Intelligence** - Threat Intelligence - Vulnerability Assessment - Advanced Analytics - Data Examination **Agentic AI - Security Information and Event Management (SIEM)** - Autonomous Task Execution - Multi-step Planning - Proactive Assistance - Decision Making **Agentic AI - Extended Detection and Response (XDR) Platforms** - Autonomous Task Execution - Proactive Assistance - Decision Making **Generative AI** - AI Text Generation - AI Text Summarization **Services - Extended Detection and Response (XDR)** - Managed Services ## Top LogRhythm SIEM Alternatives - [Sumo Logic](https://www.g2.com/products/sumo-logic/reviews) - 4.3/5.0 (382 reviews) - [IBM QRadar SIEM](https://www.g2.com/products/ibm-ibm-qradar-siem/reviews) - 4.4/5.0 (280 reviews) - [Microsoft Sentinel](https://www.g2.com/products/microsoft-sentinel/reviews) - 4.4/5.0 (271 reviews)