117 Blumira Automated Detection & Response Reviews
Blumira is a sort of unicorn product. It easily connects to all your security products providing instant visibility and alerting based on telemetry from your existing security stack. Calling the product, a SIEM may be selling it short. The closest comparison to describe the Blumira is SIEM as a service but insisted of taking an off-the-shelf solution and adopting it; Blumira built a custom platform from the ground up.
So what you get is a platform designed to be SIEM as a service with detections, integrations, and alerts prebuilt out the box (and more coming down the pipeline all the time), all delivered in a neat interface.
The time to value is incredible with actionable signals within minutes. Blumira addresses the inherent issue with existing SIEM solutions that are completely unaffordable and unmanageable for smaller companies or those with limited resources. Review collected by and hosted on G2.com.
While an excellent solution for small-to-medium size organizations or organizations with limited resources. Larger companies with dedicated SOCs will get more value with a "choose" your own adventure SIEM.
Blumira lacks an open-API (for now), limiting the ability to integrate it yourself with outside solutions. You also cannot create custom detections or rules (yet). Review collected by and hosted on G2.com.
When I joined my company, Blumira was already set up and has been in use for several years. Since I joined, the process to ingest logs from new devices, creating alerts as desired and fine tuning the alerts has been quiet easy. The team is always available to us and responses to any questions that we have is very quick. The portal to view and track the alerts is very user friendly. Review collected by and hosted on G2.com.
Ability for me as a security analyst to run query against the logs that are collected from Blumira portal is limited. In addition to events that are gathered and displayed for each alert, we would need additional logs to investigate an certain alert/incident. Also ability to retrieve and display desired logs from back end is very helpful during Threat Hunting process. Review collected by and hosted on G2.com.
I appreciate that every finding comes with a playbook. This empowers responders to improve security.
I also appreciate that Blumira uses honeypots to help spot malicious activity. Review collected by and hosted on G2.com.
I'm looking forward to more flexible reporting. Review collected by and hosted on G2.com.
Ease of implementation and daily use. Reporting and the ability to verify issues get resolved is important. Review collected by and hosted on G2.com.
So far no problems. The only concern is that reporting can get complicated. Review collected by and hosted on G2.com.
Blumira's rapid response technology and support team. Review collected by and hosted on G2.com.
Some systems we use still need development but its actively being worked on! Review collected by and hosted on G2.com.
I appreciate that the Blumira team has built this service out of learnings that come out of its pen testing practice. They've built a simple service that delivers actionable results, and is far more affordable than current industry comparatives. Review collected by and hosted on G2.com.
No specific downsides to the service, though I am more of a report consumer than a power user of the platform. Review collected by and hosted on G2.com.
The technicians working at Blumira are friendly, helpful, and knowledgeable. Review collected by and hosted on G2.com.
They had recommended Carbon Black to us, that program is not great. Review collected by and hosted on G2.com.
