Powerful SOAR platform with good value proposition and great potential.
What do you like best?
- Out-of-the-box integrations (with option to request for new ones or build one yourself)
- Ability to express playbook logic in Spark SQL
- Operators and functions for statistical analysis and machine learning
- Cost-effective pricing
What do you dislike?
- Bugs in certain user interface elements
Recommendations to others considering the product:
Exercise careful consideration as there are other mature offerings in the market. LogicHub has cost-effective pricing and is capable of catering to all of our needs so far, but it needs to continue its rapid development pace in order to keep up with the quickly evolving security automation space.
What problems are you solving with the product? What benefits have you realized?
LogicHub serves as our primary automation platform for ingesting correlation events from our SIEM, enriching those events through integrations with other security solutions, scoring and triaging the enriched events, and creating tickets for human analysts to act on (if still necessary). Benefits include reduced noise alerts and increased alert fidelity.
