Logs for Security (AWS Built-In)
Sumo Logic Inc.External reviews
371 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Centralized, cloud-native log ingestion & analytics
What do you like best about the product?
Centralized, cloud-native log ingestion & analytics, Sumo Logic makes it fairly easy to collect logs (and other machine data) from many sources (cloud, servers, apps) into a centralized platform and analyze them.
What do you dislike about the product?
For very large volumes of logs or long time-range searches, queries may be slow. Some users report significant delays or slowness compared to alternatives.
What problems is the product solving and how is that benefiting you?
real-time monitoring and alerting, For log analytics, operations, security use cases (e.g. cloud/SIEM), Sumo’s near real-time ingestion + alerting helps spot and respond to problems faster.
Easy to Use with Powerful Trace Finding
What do you like best about the product?
I like how easy it is to use Sumo Logic, which makes my tasks smoother, particularly when it comes to searching for traces I am looking for. The usability of the search feature stands out as it simplifies finding necessary information effectively. Additionally, the initial setup of Sumo Logic was very easy, which made the transition seamless and quick. This has enhanced my security operations as I can efficiently utilize the software without unnecessary hurdles, boosting my overall productivity.
What do you dislike about the product?
I dislike the speed at which Sumo Logic loads results. It can be slow, which hampers efficiency and creates frustration when waiting for important search outcomes.
What problems is the product solving and how is that benefiting you?
I use Sumo Logic for security operations, as it helps me find traces effortlessly. Its ease of use, especially the search functionality, makes it intuitive and user-friendly.
Intuitive Interface and Centralized Login Make Workflows Easy
What do you like best about the product?
User interface is nice and easy to use, provide centralized login option
What do you dislike about the product?
query sometime take long time to process and result is not real time
What problems is the product solving and how is that benefiting you?
Application logs monitoring and perform real time healthcheck. We use Sumo logic for application alerts
Effortless Log Search and Data Consolidation at Scale
What do you like best about the product?
I appreciate the quick log search feature, as it allows for efficient searching through records even at the petabyte scale. Additionally, I find the data consolidation helpful, since it simplifies the process of generating reports.
What do you dislike about the product?
Junior analysts encounter a steep learning curve when trying to master the complex on-site security queries.
What problems is the product solving and how is that benefiting you?
Sumo Logic is a solid and reliable solution that integrates seamlessly with modern cloud-based IT infrastructures. It has proven valuable for both performance monitoring and effective data management.
Unified Dashboard and Predictive Analytics Streamline Workflow
What do you like best about the product?
I appreciated the native integration of logs, metrics, and tracking within a single dashboard, as it means I no longer need to switch between multiple tools. I also found the predictive analytics feature helpful, since it saves me time.
What do you dislike about the product?
While the API itself is robust, I found the configuration of the control panel and alerts to be less intuitive and not as smooth as I would have liked. Additionally, I was not a fan of its syntax, which I found to be quite cumbersome.
What problems is the product solving and how is that benefiting you?
Sumo Logic addresses a variety of challenges for us and has been extremely helpful, particularly due to its strong core capabilities in analyzing logs and metrics. This has significantly reduced our mean time to resolution, and the level of confidence it offers is truly impressive. Additionally, its scalable data ingestion has proven to be a valuable advantage.
Flexible Pricing and Powerful Insights
What do you like best about the product?
Sumo Logic's Flex pricing model and insight generation.
What do you dislike about the product?
User experience (UX) design does not match a friendly interface.
What problems is the product solving and how is that benefiting you?
This tool is useful for both log management and security monitoring.
Powerful Real-Time Data Evaluation and Reliable Anomaly Detection
What do you like best about the product?
What I appreciate most is the powerful real-time data evaluation. I rely on the machine learning features for anomaly detection, which I find invaluable. Rather than manually searching for error patterns or unusual traffic spikes, these tools enable us to validate CI/CD deployments in production with confidence, knowing that any regression will be detected immediately.
What do you dislike about the product?
One of the downsides is that managing collectors in dynamic environments such as Kubernetes demands ongoing maintenance. Additionally, although the dashboards serve their monitoring purpose, they lack the flexibility and visual sophistication found in dedicated visualization tools.
What problems is the product solving and how is that benefiting you?
Thanks to Sumo Logic, we've been able to resolve the issue of dispersed telemetry data. It brings together logs, metrics, and traces onto one unified platform. This consolidation has helped us reduce our mean time to detect (MTTD) by automatically correlating events, which has enabled me to shift from a reactive stance to a more proactive approach in monitoring and managing reliability.
Outstanding Multi-Cloud Visibility and Insightful Event Correlation
What do you like best about the product?
I appreciate how it enables me to correlate events and organize them into Insights, which really helps me concentrate on more detailed analysis. Additionally, the multi-cloud visibility is outstanding, especially since we operate across multiple cloud environments.
What do you dislike about the product?
Up to now, I haven't been satisfied with how the rules can be customized, particularly when it comes to automatic detection.
What problems is the product solving and how is that benefiting you?
Sumo Logic enables a shift from a reactive, slow incident response approach to a more proactive threat hunting strategy. I have found it valuable due to its advanced capabilities, which are well-suited for modern environments and help speed up the entire incident response process.
Powerful Multicloud Logging, But Steep Learning Curve
What do you like best about the product?
I highly appreciate Sumo Logic's architecture, especially for multicloud environments. Its built-in integrations with AWS and Google Cloud make it possible to centralize logs and metrics very efficiently. From a strategic perspective, the average consumption billing model provides essential cost predictability.
What do you dislike about the product?
The learning curve for this platform is quite steep. Gaining proficiency takes a substantial amount of time, particularly because the machine learning analytics features require a very detailed initial setup and careful tuning before they can provide meaningful results.
What problems is the product solving and how is that benefiting you?
The platform has played a fundamental role in our operations; its anomaly detection and rules have significantly enhanced our security. The automation of incident response (IR) has greatly improved our workflow, leading to a substantial decrease in both MTTD and MTTR. Conducting efficient investigations is essential for achieving comprehensive root cause analysis.
Robust Real-Time Intelligence, Minor Latency with Historical Data
What do you like best about the product?
What I appreciate most is the platform's robustness as a Continuous Intelligence solution. Its cloud-native architecture enables organizations to efficiently unify and analyze vast amounts of machine data in real time, which helps maintain continuous application reliability and enhances their security against modern threats.
What do you dislike about the product?
I've noticed that the platform sometimes experiences latency when querying large amounts of historical or archived data, particularly during comprehensive searches within these secondary repositories.
What problems is the product solving and how is that benefiting you?
Since adopting Sumo Logic, our security has improved thanks to real-time threat detection, and our operational decision-making has become more efficient, resulting in more reliable and consistent service.
showing 1 - 10