Users rate LogRhythm’s support above average, with four-hour responses to technical support requests and standard and premium support levels available. Users praise the product’s ease of use, with some noting they’d like to see more robust reporting features. Ease of deployment is a common theme among users. Risk-based scoring, security orchestration and automated or semi-automated tasks can save security teams time and boost productivity. Users are generally satisfied with what they get for their money. LogRhythm NetMon, a network analytics and forensics sensor, supports up to 10 Gbps. LogRhythm Data Indexers process data at more than 20,000 MPS per node. A single LogRhythm Data Processor processes up to 40,000 MPS and scales horizontally in an active: active architecture to increase processing rates. SANS Institute verified LogRhythm’s ability to collect and process a sustained 300,000 messages per second (MPS). A single deployment can process hundreds of thousands of messages across a global environment. The LogRhythm NextGen SIEM Platform supports over 850 supported data sources, including IoT devices, physical security systems, operating systems, and applications. Its processing tier on log data enables pre-defined rules to be vendor-agnostic so users can align them to their use case without customization. LogRhythm SIEM provides out-of-the-box analytics content (950+ threat scenarios) available in organized modules, as well as the ability to create custom content. See our complete list of Top SIEM Products. Gartner said it may not scale to support very high-event volume environments and is thus best for small and mid-sized organizations with good threat intelligence and analytics functionality. Gartner lists areas for improvement as machine learning-driven analytics easier integration with third-party solutions fully open APIs and greater support for threat intelligence feeds out of the box. LogRhythm is consistently rated among the Leaders in Gartner’s SIEM Magic Quadrant, with its strong core SIEM platform with complementary host and network monitoring capabilities. Earlier this year, LogRhythm released its GDPR Compliance Module and CloudAI, an analytics-as-a-service offering leveraging artificial intelligence in support of threat detection. It includes modules such as Platform Manager, AI Engine, Data Processors, Data Indexers and Data Collectors. It incorporates threat lifecycle management, security automation and orchestration (SAO), compliance, and targeted searches that use contextual or unstructured criteria. LogRhythm unifies SIEM, log management, network and endpoint monitoring and forensics, as well as security analytics. Company Descriptionįounded in 2003, LogRhythm bills itself as “the security intelligence company,” with a primary focus on developing next-generation SIEM solutions. It is best for small and mid-sized organizations that already possess some kind of threat intelligence and analytics functionality. It is easier to deploy than some top-of-the-line SIEM products, but may not scale to support very high event volume environments. LogRhythm’s SIEM offering boasts high ratings from users and analysts.
0 kommentar(er)
