Exabeam

and
LogPoint
Buyer's Guide and Reviews
November 2020
Exabeam and LogPoint

Get a custom version of this report...personalized for you!

Thanks for downloading this IT Central Station report.

Note that this is a generic report based on reviews and opinions from the entire IT
Central Station community. We offer a customized report personalized for you based on:

• Your industry
• Company size
• Which solutions you're already considering

It includes recommendations for you based on what other people like you are researching and
using.

It takes 2-3 minutes to get the report using our shortlist builder wizard. We recommend it!

Get your personalized report here.

2
Exabeam and LogPoint

Contents

Advice From Real Users 4-8

Top Review by Topic of Exabeam and LogPoint 9

Overview 10

Answers From the Community 11

Reviews From Real Users 12-16

Vendor Directory 17

Top Security Information and Event Management (SIEM) Vendors 18-19

Top 5 Solutions by Ranking Factor 20

About This Report and IT Central Station 21

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

3
Exabeam and LogPoint

Advice From Real Users

Exabeam

PROS

"I have customers that like the EUBA functionality of it." "The solution has the ability to build a session, basically." "It pulls a lot of
information together, for example, everything a user does in a specific timeframe." "It's quite helpful." [Full Review]

reviewer138
3993

"The user interface and the timelines they use are the most valuable features." "The price model is very simple so that one can
understand it easily and there are no surprises within it." [Full Review]

reviewer104
1465

"Timeline based analysis; good platform support" [Full Review]

reviewer132
5718

"The advanced analytics has a really great overview of user behavior." [Full Review]

reviewer900
120

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

4
Exabeam and LogPoint

Advice From Real Users

Exabeam

CONS

"They need to focus on more of the MITRE ATT&CK Framework and coverage." "They claim they cover about 70 to 80%." "I'm not
sure if it's really quite that much, however." [Full Review]

reviewer138
3993

"We had a large volume right from the beginning and they weren't quite prepared for that." "That's something that they should think
about when it comes to customers that have a large volume to start off with." [Full Review]

reviewer104
1465

"The organzation is rigid and not flexible in the way they operate" [Full Review]

reviewer132
5718

"I believe if it were more flexible it would be a better product." [Full Review]

reviewer900
120

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

5
Exabeam and LogPoint

Advice From Real Users

LogPoint

PROS

"Log collection, dashboards and reporting are good." [Full Review]

Lars Hillerup

"Technical support is responsive and very friendly." [Full Review]

Jeroen
Kroon

"The flexibility of the search feature and the solution's analytics features are the most valuable parts of the solution." [Full Review]

Giorgi-
Mikaia

"The solution offers excellent reporting features." "Our customers have been satisfied that they have been able to meet their
compliance needs by giving them a standard report." [Full Review]

Kedar
Kulkarni

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

6
Exabeam and LogPoint

Advice From Real Users

LogPoint

CONS

"Dashboards could be developed further." [Full Review]

Lars Hillerup

"The interface needs things like wizards that will assist with creating complex correlation rules." [Full Review]

Jeroen
Kroon

"The solution should offer more integrations and third-party solutions like incident response platforms or allow access to third-party
big data" [Full Review]

Giorgi-
Mikaia

"Nowadays the trend is going towards the ransomware and the endpoint detection and response." "So if they added something for
that, that will be very, very good." [Full Review]

Kedar
Kulkarni

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

7
Exabeam and LogPoint

Advice From Real Users

LogPoint

PRICING AND LICENSING ADVICE

"Our licensing fees are about $10,000 USD per month, which I think is fair." [Full Review]

Jeroen
Kroon

"For a hundred user deployment the cost is about $10,000." "The next year it would be the same because it's a subscription-based
license." "There are separate costs as well, for example, if a customer asks for training for their staff." [Full Review]

Kedar
Kulkarni

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

8
Exabeam and LogPoint

Top Reviews by Topic

Exabeam LogPoint

ROOM FOR
IMPROVEMENT reviewer1383993 Kedar Kulkarni

It's not a complete solution. It really focuses on Nowadays the trend is going towards ransomware
user behavioral analytics, which is a big part of the and endpoint detection and response. So if they
product. It doesn't support flow analysis. Not added something for that, that would be very
everything is left in logs, to be conveniently useful. Plus, there is a trend towards store
reviewed. However, if they had flow analysis, it's technology for security orchestration and
possible you can catch a lot of hackers looking at automated response. That would reduce the
the behavior and network flow. Things need to be workload and the product would be more mature,
cross-correlated with logs. They need real-time in terms of information. They should also work on
flow analysis. They need to focus on more of the better integration. [Full Review]
MITRE ATT&CK Framework and coverage. They
claim they ... [Full Review]

Jeroen Kroon

reviewer900120

LogPoint is complex and we don't have the skills

to maintain use cases or even to extend the use
The product could be improved by implementing cases. Because of this, we are unable to take
cost use cases. I believe if it were more flexible it advantage of the SIEM platform. We need
would be a better product. For additional features, something more self-running, hosted, and
I'd like to see more visibility in the networking. automatically recognizes problems the way the AI
[Full Review] platforms are providing. The interface needs
things like wizards that will assist with creating
complex correlation rules. The platform is very
resource-demanding, although this is typical of
SIEM solutions. [Full Review]
reviewer1325718

The product is good but the organzation is rigid Lars Hillerup

and not flexible in the way they operate. Their
response time is very bad. They obviously have a
small team and not enough staff. They have their
own priorities, it seems but the customer should My issues with the product are mainly with regard
be their first priority. The company really needs to to how it handles collecting logs. I'm currently
improve their commitment to their customers. [Full thinking about implementing a new lever feature.
Review] Additional features I'd like to see would be
standard help features in developing dashboards
and reports, and some of the alerts you can setup.
[Full Review]

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

9
Exabeam and LogPoint

Overview
SOLUTION Exabeam LogPoint

OVERVIEW The Exabeam Security Intelligence Platform LogPoint are SIEM specialists with solutions widely
provides organizations of all sizes with deployed in the Nordics, Germany, France and the
comprehensive, end-to-end detection, analytics, UK.
and response capabilities from a single security
management and operations platform. Exabeam The LogPoint solution is designed to provide you
provides elastic scalability through the use of a with the information you need by enabling you to
modern big data and machine learning collect, analyze and monitor data from your entire
architecture that ingests and analyzes data at any infrastructure for Compliance Management,
scale; all at a predictable cost. This means Information Security, Application Security
organizations no longer need to choose between Monitoring and Operational Insight.
adhering to security budgets and adding...
LogPoint is straightforward to buy, install and
manage – so will take less of your time.

SIEM is all LogPoint...

SAMPLE Hulu, ADP, Safeway, BBCN Bank AP Pension, Copenhagen Airports, KMD, Terma,
CUSTOMERS
DISA, Danish Crown, Durham City Council, Game,
TopDanmark, Lahti Energia, Energi Midt, Synoptik,
Eissmann Group Automotive, Aligro, CG50...

TOP Splunk vs. Exabeam Splunk vs. LogPoint

COMPARISONS Compared 16% of the time Compared 44% of the time

Splunk User Behavior Analytics vs. Exabeam LogRhythm NextGen SIEM vs. LogPoint
Compared 15% of the time Compared 15% of the time

Securonix Security Analytics vs. Exabeam IBM QRadar vs. LogPoint

Compared 13% of the time Compared 13% of the time

TOP INDUSTRIES,
BASED ON
REVIEWERS*

TOP INDUSTRIES, K 12 Educational Company Or School ... 6% Retailer ... 6%

BASED ON Financial Services Firm ... 7% Recreational Facilities And Services Company ...
COMPANIES
READING REVIEWS* Comms Service Provider ... 14% 9%
Computer Software Company ... 33% Comms Service Provider ... 17%
Computer Software Company ... 29%
COMPANY SIZE,
BASED ON
REVIEWERS*

COMPANY SIZE,
BASED ON
COMPANIES
READING REVIEWS*

* Data is based on the aggregate profiles of IT Central Station Users researching this solution.

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

10
Exabeam and LogPoint

Answers from the Community

Exabeam vs LogPoint: What are the advantages and disadvantages of each?

When looking for a Security Information and Event Management (SIEM) solution, are you more likely to pick
Exabeam or LogPoint? What are the advantages and disadvantages of each? Are there specific use cases where
one provides a better solution than the other?

See all 0 answers >>

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

11
Exabeam and LogPoint

Exabeam review by a real user

Good at security logging in our infrastructure but be prepared for

problems if you start with a large implementation

Program Coordinator at a financial services

firm with 10,001+ employees

reviewer1041465

WHAT IS MOST VALUABLE?

The user interface and the timelines they use are the most valuable features. The price model is very simple so that one can
understand it easily and there are no surprises within it. 

It's good at security logging in our infrastructure but not really application logging. 

FOR HOW LONG HAVE I USED THE SOLUTION?

We have been using Exabeam for a few months. 

HOW WAS THE INITIAL SETUP?

We had RSA earlier, we were a mature client, we had a big bang kind of start. Exabeam was really prepared there. We had some
issues that we were able to sort out. They sent very experienced engineers to help us with the issues we had. Now we have a
technical account manager. We are very pleased with it. Now, it looks much better but it's a large implementation. If you have a
large implementation with lots of data you can expect a few issues and problems. If you start off with a small implementation then
it would be a different story. We started off with loads and loads of data that we wanted to ingest. After a couple of months, things
look a lot better. 

12
Exabeam and LogPoint

Continued from previous page

WHICH OTHER SOLUTIONS DID I EVALUATE?

We did a POC with Splunk, IBM QRadar and Securonix and we came to the conclusion that Exabeam was the best option for
us. Everybody knows that Splunk is the top product but it's very expensive. The price model is based on the volume of logs of data
that you process in the system. It's very unpredictable and expensive compared to other products.

WHAT OTHER ADVICE DO I HAVE?

We reviewed four different vendors but before we did the evaluation, we took a deep look at our use cases to understand our
requirements so we would know the expected use cases and requirements on the system. It's important to know what you want to
use it for. For us, it was about security use cases. If you are a new customer, you should think of the use cases that you have. All of
the vendors we evaluated were good but Exabeam has a very good price model. That's where they win when they compete with
Splunk, for instance. With Exabeam, you're not restricted to the log volume. You can add as much as you like. The only limit is the
hardware. At some point, you may need to extend the hardware. We have plans to increase usage.

I would rate it a seven out of ten. 

We had a large volume right from the beginning and they weren't quite prepared for that. That's something that they should think
about when it comes to customers that have a large volume to start off with. That's where they could try to improve their services.
We had some issues. Some of it was due to our own load balancing problems that caused a few issues. But if they had had their
expert guys on-site they would have found the error much earlier. They didn't have their best experts so I think we lost a big of
implementation time. I would've expected more attention on their side. They created tickets but that wasn't the way to work. When
you start a large implementation, they need to have their experts on-site as opposed to opening regular tickets. They need to be
on-site to fix the issues. They sent very good technical experts after a few months and it only took them half a day to figure out the
issues and after that, it worked very well. Our account manager is very senior and we are very pleased with him.

They've been very professional during the POC. We had ongoing commercial discussions. 

WHICH DEPLOYMENT MODEL ARE YOU USING FOR THIS SOLUTION?

On-premises

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

13
Exabeam and LogPoint

LogPoint review by a real user

Excellent reporting features and a good dashboard

Manager Pre-sales Information Security at a

tech services company with 201-500
employees

Kedar Kulkarni

WHAT IS OUR PRIMARY USE CASE?

The primary use case is standard compliance to help the user's ability to navigate PCI DSS compliance or GDPR compliance.
Besides that, if a user needs to do the log collection and correlation, the solution makes it easy.

HOW HAS IT HELPED MY ORGANIZATION?

The solution offers excellent reporting features. Our customers have been satisfied that they have been able to meet their
compliance needs by giving them a standard report. I understand that you can't define the custom reporting features, however.

WHAT IS MOST VALUABLE?

Overall, the platform has a very good dashboard and a nice correlation engine as well.

WHAT NEEDS IMPROVEMENT?

Nowadays the trend is going towards ransomware and endpoint detection and response. So if they added something for that, that
would be very useful. Plus, there is a trend towards store technology for security orchestration and automated response. That
would reduce the workload and the product would be more mature, in terms of information. They should also work on better
integration.

14
Exabeam and LogPoint

Continued from previous page

FOR HOW LONG HAVE I USED THE SOLUTION?

I've been reselling the solution for two years.

WHAT DO I THINK ABOUT THE STABILITY OF THE SOLUTION?

The solution is quite stable as long as your server and the hardware is supporting it because it is a virtual kind of software solution.
So the software depends on the hardware. If your hardware is supporting it, obviously the solution will be stable. Once you install
it, you don't have to worry about it.

WHAT DO I THINK ABOUT THE SCALABILITY OF THE SOLUTION?

Scalability wise, if you are expanding the scope of the SSI devices, you just need to add the number of endpoints or number of
servers, and licenses. 

HOW ARE CUSTOMER SERVICE AND TECHNICAL SUPPORT?

We found technical support very good. But to be very honest, we did not come across any major issue as of yet. If there's that
something that we cannot solve ourselves completely, then we are totally reliant on them.

WHICH SOLUTION DID I USE PREVIOUSLY AND WHY DID I SWITCH?

We are the resellers for multiple solutions, so we don't only sell LogPoint. It is a solution we pitch to our smaller customers.

15
Exabeam and LogPoint

Continued from previous page

HOW WAS THE INITIAL SETUP?

The initial setup was straightforward. Usually, we can deploy the solution within three days. We usually take two days and keep an
extra day for a buffer, just for fine-tuning some policies and things like that. For a small deployment, one person is enough.

WHAT ABOUT THE IMPLEMENTATION TEAM?

For the first two deployments, we did have help. After that, we did not need it because there is direct support from LogPoint. We
can use tickets and get help if necessary.

WHAT WAS OUR ROI?

As long as the solution is working, and you are in compliance with all the internal audit policies, you will see a return on
investment. 

WHAT'S MY EXPERIENCE WITH PRICING, SETUP COST, AND LICENSING?

The licensing structure is super. It's not like other complex environments. They work on the EPS or MPS, but they also work on a
number of devices. It's very straightforward. They have a different pricing structure for the lighter devices, so that makes it a very
cost-effective solution.

For a hundred user deployment the cost is about $10,000. The next year it would be the same because it's a subscription-based
license. There are separate costs as well, for example, if a customer asks for training for their staff. 

WHAT OTHER ADVICE DO I HAVE?

We are a reseller of the solution.

I would recommend the solution. Go with the trial version and evaluate it first, because individual tastes may differ. I'm not the end-
user, I'm the reseller. We have managed to meet the customer's requirements for adhering to their compliance or getting the
solution onboard to their satisfaction. In the end, however, when an end-user uses the solution, they will ultimately have a
clearer idea about the pitfalls or upsides of it.
© 2020 IT Central Station
I would rate the solution eight out of ten.
To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

16
Exabeam and LogPoint

Vendor Directory
Amazon AWS Security Hub Micro Focus ArcSight Enterprise Security Manager
(ESM)
AT&T AT&T AlienVault USM
Micro Focus NetIQ Sentinel
AT&T AlienVault OSSIM
Micro Focus ArcSight Interset / Intelligence
BlackStratus SIEMStorm
NETMONASTERY DNIF
Devo Devo
Netsurion Netsurion EventTracker
Elastic Elastic SIEM
NNT NNT Log Tracker Enterprise
empow i-SIEM
Odyssey Cybersecurity ClearSkies SaaS NG SIEM
Exabeam Exabeam
Oracle Oracle Security Monitoring and Analytics
FireEye FireEye Helix Cloud Service

Fortinet Fortinet FortiSIEM Rapid7 Rapid7 InsightIDR

HelpSystems HelpSystems Powertech Event Manager RSA RSA NetWitness Logs and Packets (RSA
SIEM)
IBM IBM QRadar
RSA RSA enVision
IBM IBM Watson for Cyber Security
Seceon Seceon Open Threat Management
Platform
Ignite Technologies SenSage AP
Securonix Solutions Securonix Security Analytics
Intersect Alliance Snare
SolarWinds SolarWinds Security Event Manager
IS Decisions FileAudit
SolarWinds SolarWinds MSP Threat Monitor [EOL]
LogPoint LogPoint
Splunk Splunk
LogRhythm LogRhythm NextGen SIEM
SQRRL SQRRL
Logsign Logsign
Sumo Logic JASK [EOL]
Logz.io Logz.io
SurfWatch Labs SurfWatch Labs SurfWatch
ManageEngine ManageEngine Log360
ThetaRay ThetaRay
ManageEngine ManageEngine EventLog Analyzer
TIBCO LogLogic
Masergy Masergy
Trustwave Trustwave SIEM [EOL]
McAfee McAfee ESM
VenusTech Venusense USM

17
Exabeam and LogPoint

Top Security Information and Event Management (SIEM) Vendors

Over professionals have used IT Central Station research. Here are the top vendors based on product reviews, ratings, and comparisons.
All reviews and ratings are from real users, validated by our triple authentication process.

Chart Key

Views Comparisons Reviews Words/Review Average Rating

Number of views Number of times compared Total number of reviews on Average words per review Average rating based on
to another product IT Central Station on IT Central Station reviews

Bar length

The total ranking of a product, represented by the bar length, is based on a weighted aggregate score. The score is calculated as follows:

For each of Reviews, Views, and Comparisons, the product with the highest count in each area gets a maximum 18 points.
Every other product gets assigned points based on its total in proportion to the #1 product in that area.
For example, if a product has 80% of the number of reviews compared to the product with the most reviews then the product's points for reviews
would be 18 * 80% = 14.4.

Both Average Rating and Words/Review are awarded on a fixed linear scale.
For Average Rating, the maximum score is 28 points awarded linearly between 6-10 (e.g. 6 or below=0 points; 7.5=10.5 points; 9.0=21 points;
10=28 points).
For Words/Review, the maximum score is 18 points awarded linearly between 0-900 words (e.g. 600 words = 12 points; 750 words = 15 points;
900 or more words = 18 points).
If a product has fewer than ten reviews, the point contribution for Average Rating and Words/Review is reduced:
1/3 reduction in points for products with 5-9 reviews, two-thirds reduction for products with fewer than five reviews.

Reviews that are more than 24 months old, as well as those written by resellers, are completely excluded from the ranking algorithm.

All products with 50+ points are designated as a Leader in their category.

1 Splunk

104,302 views 86,193 comparisons 26 reviews 406 words/review 8.2 average rating

2 LogRhythm NextGen SIEM

27,788 views 15,196 comparisons 26 reviews 1,070 words/review 7.8 average rating

3 IBM QRadar

38,894 views 25,944 comparisons 23 reviews 450 words/review 8.3 average rating

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

18
Exabeam and LogPoint

4 Securonix Security Analytics

8,320 views 3,815 comparisons 10 reviews 1,733 words/review 8.7 average rating

5 Netsurion EventTracker

2,998 views 866 comparisons 11 reviews 2,048 words/review 8.8 average rating

6 AT&T AlienVault USM

17,075 views 10,205 comparisons 13 reviews 403 words/review 8.3 average rating

7 Fortinet FortiSIEM

10,442 views 7,365 comparisons 10 reviews 431 words/review 7.7 average rating

8 AlienVault OSSIM

2,165 views 1,032 comparisons 13 reviews 551 words/review 7.3 average rating

9 SolarWinds Security Event Manager

4,154 views 2,646 comparisons 10 reviews 531 words/review 7.5 average rating

10 ArcSight Enterprise Security Manager (ESM)

15,826 views 10,476 comparisons 12 reviews 378 words/review 7.2 average rating

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

19
Exabeam and LogPoint

Top 5 Solutions by Ranking Factor

Views

VIEWS

1 Splunk 104,302

2 IBM QRadar 38,894

3 LogRhythm NextGen SIEM 27,788

4 AT&T AlienVault USM 17,075

5 ArcSight Enterprise Security Manager 15,826

(ESM)

Reviews

REVIEWS

1 Splunk 26

2 LogRhythm NextGen SIEM 26

3 IBM QRadar 23

4 RSA NetWitness Logs and Packets (RSA 14

SIEM)

5 AT&T AlienVault USM 13

Words / Review

WORDS /
REVIEW

1 i-SIEM 5,358

2 Devo 2,331

3 Netsurion EventTracker 2,048

4 Securonix Security Analytics 1,733

5 LogRhythm NextGen SIEM 1,070

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

20
Exabeam and LogPoint

About this report

This report is comprised of a list of enterprise level vendors. We have also included several real user reviews posted on ITCentralStation.com.
The reviewers of these products have been validated as real users based on their LinkedIn profiles to ensure that they provide reliable opinions
and not those of product vendors.

About IT Central Station

The Internet has completely changed the way we make buying decisions. We now use ratings and review sites to see what other real users think
before we buy electronics, book a hotel, visit a doctor or choose a restaurant. But in the world of enterprise technology, most of the information
online and in your inbox comes from vendors but what you really want is objective information from other users.

We created IT Central Station to provide technology professionals like you with a community platform to share information about enterprise
software, applications, hardware and services.

We commit to offering user-contributed information that is valuable, objective and relevant. We protect your privacy by providing an environment
where you can post anonymously and freely express your views. As a result, the community becomes a valuable resource, ensuring you get
access to the right information and connect to the right people, whenever you need it.

IT Central Station helps tech professionals by providing:

• A list of enterprise level vendors

• A sample of real user reviews from tech professionals
• Specific information to help you choose the best vendor for your needs

Use IT Central Station to:

• Read and post reviews of vendors and products

• Request or share information about functionality, quality, and pricing
• Contact real users with relevant product experience
• Get immediate answers to questions
• Validate vendor claims
• Exchange tips for getting the best deals with vendors

IT Central Station
244 5th Avenue, Suite R-230 • New York, NY 10001
www.ITCentralStation.com
[email protected]
+1 646.328.1944

© 2020 IT Central Station

To read more reviews please visit https://www.itcentralstation.com/products/comparisons/exabeam_vs_logpoint?tid=pdf_comp_29824-30073

21