Item: LogRhythm NextGen SIEM Platform
Rating: 8
Author: Verified User

Use Cases and Deployment Scope

We use LogRhythm NextGen SIEM as a centralized system log repository. We purchased the product 5 or so years back to satisfy PCI compliance as our company has to maintain level 1 PCI compliance which states that all your system logs have to be maintained in a central location. We review the logs daily via automated reports sent to our ticketing system. It helps us keep on top of issues and to maintain compliance.

Pros and Cons

Updated GUI interface is rather easy to use and looks nice
Once up and running, seems to remain that way, we don't really have any issues with it
Was cost effective compared to other solutions

Implementation is tricky, definitely requires having them do the implementation for/with you
The software can be overly complex at times
Adding a Windows server to the solution isn't hard but seems like it could be made quicker/easier

Return on Investment

It has helped us maintain level 1 PCI compliance
It makes it easier to track or identify problems across our environment
Daily and weekly reports makes our management happy

Alternatives Considered

SolarWinds Kiwi Syslog Server

We used Kiwi years ago before it was owned by Solarwinds and it worked great for our then small server stack, but we grew much bigger fast and needed something more robust and LogRhythm fit the bill.

Support Rating

Support has always been fantastic for this product compared to many other support providers I've worked with. They are always very friendly and seem to be well trained and knowledgeable and never have to wait long for a solution. We usually get the issue fixed in the first call, but also we really haven't had to use support a ton so that's also a plus.

Key Insights

Do you think LogRhythm NextGen SIEM Platform delivers good value for the price?

Yes

Are you happy with LogRhythm NextGen SIEM Platform's feature set?

Yes

Did LogRhythm NextGen SIEM Platform live up to sales and marketing promises?

Yes

Did implementation of LogRhythm NextGen SIEM Platform go as expected?

Yes

Would you buy LogRhythm NextGen SIEM Platform again?

Yes

Other Software Used

Microsoft Teams, Microsoft Office 365, Splashtop Remote Support

Likelihood to Recommend

I'd say LogRhythm is best suited for larger environments with hundreds of servers and network devices. For smaller businesses you could probably get by with one of the many free open source logging solutions out there, though it may be harder to get up and running without some assistance. For example many years ago when we were much smaller we used a really cheap solution called Kiwi but back then we had maybe 20 servers instead of 250+ we have today and that worked fine for those, but no way could we do that now.

LogRhythm is a solid centralized logging solution for large businesses

Overall Satisfaction with LogRhythm NextGen SIEM Platform