About Blumira

Blumira is a cloud-based threat detection and response platform that helps businesses manage operations related to threat hunting, user security, and log monitoring, among other processes. It allows staff members to automatically compare data across multiple systems and generate alerts based on perceived threat priority.

Blumira provides a built-in security playbook, which enables employees to respond to threats based on predefined custom workflows. The blocklist functionality lets supervisors automatically detect and block access to malicious IP sources and domains. The platform allows business leaders to conduct investigations and audits in compliance with HIPAA, PCI DSS, FFIEC, NIST 800-53 regulations and requirements. It also lets IT professionals analyze all findings by stacking matched evidence across multiple sources, including associated users, source IP addresses, domain names, timestamps, and more.

Blumira facilitates integration with several third-party solutions including Okta, Cisco Umbrella, Duo, Office 365, Microsoft Azure, Malwarebytes, and more. Administrators can set-up role based permission rights to restrict specific employees from adding, editing, or deleting information.

Pricing starting from:

N/A

  • Free Version
  • Free Trial
  • Subscription

Devices

Business size

S M L

Markets

United States

Supported Languages

English

Pricing starting from:

N/A

  • Free Version
  • Free Trial
  • Subscription

Images

Blumira Software - Blumira alerts prioritization
Blumira Software - Blumira automatic blocking
Blumira Software - Blumira matched evidence
Blumira Software - Blumira workflows
View 5 more
Blumira video
Blumira Software - Blumira alerts prioritization Blumira Software - Blumira automatic blocking Blumira Software - Blumira matched evidence Blumira Software - Blumira workflows

Features

Total features of Blumira: 52

  • Access Controls/Permissions
  • Activity Monitoring
  • Activity Tracking
  • Alerts / Escalation
  • Alerts/Notifications
  • Anomaly Detection
  • Application Security
  • Archiving & Retention
  • Audit Management
  • Audit Trail
  • Behavioral Analytics
  • Compliance Management
  • Compliance Tracking
  • Customizable Reports
  • Data Visualization
  • Diagnostic Tools
  • Endpoint Management
  • Endpoint Protection Software
  • Event Logs
  • File Integrity Monitoring
  • Forensic Analysis
  • HIPAA Compliant
  • Incident Management
  • Intrusion Detection System
  • Log Collection
  • Log Management
  • Monitoring
  • Network Monitoring
  • PCI Compliance
  • Patch Management
  • Policy Management
  • Predictive Analytics
  • Prioritization
  • Real Time Analytics
  • Real Time Monitoring
  • Remediation Management
  • Reporting & Statistics
  • Reporting/Analytics
  • Risk Alerts
  • Risk Analytics
  • Risk Assessment
  • Role-Based Permissions
  • Search/Filter
  • Server Logs
  • Third Party Integrations
  • Threat Intelligence
  • Threat Response
  • Threshold Alerts
  • User Activity Monitoring
  • Vulnerability Scanning
  • Whitelisting/Blacklisting
  • Workflow Management

Alternatives

AlienVault OSSIM

4
#1 Alternative to Blumira
AlienVault OSSIM is a open source security information and event management (SIEM) software.

Splunk Enterprise

4,6
#2 Alternative to Blumira
Splunk Enterprise is a cloud-based platform designed to assist businesses with big data management and analysis of...

USM Anywhere

4,4
#3 Alternative to Blumira
USM Anywhere is a cloud-based threat detection and response software designed to help IT professionals automatically...

Elasticsearch

4,6
#4 Alternative to Blumira
Elasticsearch is a RESTful search & analytics solution designed to helps users search and analyze trends in structured...

Reviews

Overall rating

5 /5
(8)
Value for Money
5/5
Features
4,6/5
Ease of Use
5/5
Customer Support
5/5

Already have Blumira?

Software buyers need your help! Product reviews help the rest of us make great decisions.

Write a Review!
Showing 5 reviews of 8
Robert S.
Overall rating
  • Industry: Telecommunications
  • Company size: 201-500 Employees
  • Used Monthly for 1+ year
  • Review Source

Overall rating

  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Fantastic SIEM for my customers

Reviewed on 2021/12/22

your sales reps are fantastic and responsive

your sales reps are fantastic and responsive

Pros

much cheaper than say Splunk plus easier to set up

Cons

not alot of folks have heard of your company

Kevin H.
Overall rating
  • Industry: Information Technology & Services
  • Company size: 51-200 Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Blumira solves the problem of SOC

Reviewed on 2020/08/11

Extremely positive; they are engaged with their customers and are transparent with their development...

Extremely positive; they are engaged with their customers and are transparent with their development efforts which help make us successful. Their rapid and knowledgeable communication has blown me away.

Pros

The platform has done an amazing job of taking the various events, alerts, alarms, and other notifications and boiling them down into actionable alerts that any member of an IT team can work with and react against. Alert fatigue is a real concern, and the fact that our support staff can be given the infrequent and important findings -- while being given a playbook on how to respond -- is the reason this software is successful.

Cons

While the initial setup was straightforward, it did not include the same large amount of documentation that other vendors provide. This did involve then reaching out to Blumira support, which has been, hands-down, the most knowledgeable and fastest support team that I have ever used in my 20 years of utilizing untold numbers of networking and security vendors.

Alternatives Considered

USM Anywhere

Reasons for Switching to Blumira

Ease of use for the entire alert workflow, including playbook style responses for generated alerts. Much higher fidelity alerts were generated by the Blumira platform.

Response from Blumira

Thanks for the positive response! We greatly appreciate having you as a customer. Your feedback is also welcomed. We also felt we didn't have accessible documentation and have published our documentation publicly on Blumira's website for all at https://www.blumira.com/integrations/

Steven S.
Overall rating
  • Industry: Research
  • Company size: 51-200 Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Blumira SIEM

Reviewed on 2021/12/22

Blumira implementation was easy, with log collector setup done by script, templates for event...

Blumira implementation was easy, with log collector setup done by script, templates for event forwarding from log sources. Use of this product has greatly reduced the time required of our limited staff searching logs for suspicious activity or indications of misconfiguration. Alert Event information and explanations enable rapid investigation and resolution of most incidents.

Pros

Automatic event alerts for suspicious activities allows us to begin investigation soon after a suspicious event. Automated report generation for less sensitive activities allows us to monitor actions of interest to our organization. The Report Builder UI is straightforward and with practice can be used to create detailed reports of log activity for specific events, as is needed during investigations. Event management UI provides for communication to Blumira staff for additional support, attachment of documents from investigations and documenting the resolution of the event.

Cons

It takes some practice and experimentation to identify which fields to use in filtering logs into reports. Blumira normalizes the logs for storage in the database and it can be challenging to get the right data items into the report you want. However, Blumira support is always ready to help figure it out.

Alternatives Considered

Splunk Enterprise and AlienVault OSSIM

Reasons for Choosing Blumira

Primarily due to issues with the other company's understanding and support of their SIEM solution.

Reasons for Switching to Blumira

Automated alerts from the system based on patterns known to the system to indicate suspicious activities. The alerts link to the Event management system which provides explanation of why the event was suspicious and what actions can be taken to investigate and/or mitigate. A large part of the decision was having Blumira Staff filter the logs for events of interest and having a good report builder for investigations.
Jon I.
Overall rating
  • Industry: Computer & Network Security
  • Company size: 2-10 Employees
  • Used Weekly for 1-5 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Blumira is an AWESOME hosted SIEM/MDR solution

Reviewed on 2021/12/24

Overall, Blumira is an AWESOME hosted SIEM/MDR solution at an extremely reasonable price point....

Overall, Blumira is an AWESOME hosted SIEM/MDR solution at an extremely reasonable price point. It's no Splunk, but it's also a fraction of the cost, and top-notch support is included in the price. It should be able solve most organizations' problems for log collection and compliance, and their out-of-the-box detections catch most bad things without false-positives or needing to be tuned. If they continue adding the features they say they're adding, Blumira's definitely a solution to keep your eye on.

Pros

Blumira doesn't need agents, and it's really easy to setup and use. The built-in detections will quickly start to call-out risky behavior or settings that could be dangerous. So far, we haven't seen any missed detections or false-positives.

Cons

Requirement for a VM to collect logs - even if your integrations are all cloud (e.g. AWS, M365, etc), you still need to deploy a VM on your network to connect your cloud apps to Blumira's cloud. I was told this may change in the future.
Detections aren't user-configurable, but Blumira's support is extremely helpful and will change configurations for you if required. I was told this may change soon.
Views/dashboards aren't configurable, and reports aren't 'very sexy' (i.e. they give you the data you want in a CSV - no fancy PDF with graphs, logos, etc.)

Michael M.
Overall rating
  • Industry: Government Administration
  • Company size: 1 001-5 000 Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

A great solution that works as promised.

Reviewed on 2021/08/03

We have had a couple of instances where users clicked on a malicious link and their machine started...

We have had a couple of instances where users clicked on a malicious link and their machine started password spraying. Alerted and the device was isolated and remediated in less than a half hour. I am afraid to think how long it would have been that we had this malicious software in our environment without Blumira.

Pros

The ease of implementation was incredible. Other solutions were going to be months to a year to fully deploy.

Cons

Not really any cons about the solution. They are a newer company and are great to work with when we need to new features added.

Showing 5 reviews of 8 Read all reviews

Blumira FAQs

Below are some frequently asked questions for Blumira.

Blumira offers the following pricing plans:

  • Pricing model: Subscription
  • Free Trial: Available

Please contact Blumira for pricing at blumira.com/contact or you can try Blumira free at blumira.com/trial.

Blumira has the following typical customers:

51-200, 201-500, 501-1 000, 1 001+

Blumira supports the following languages:

English

Blumira supports the following devices:

Blumira integrates with the following applications:

AWS CloudTrail, Amazon CloudWatch, Carbon Black Cloud Workload, Cisco Meraki, Cisco Umbrella, Duo Security, ESET Endpoint Security, Google Workspace, KnowBe4 Compliance Manager (KCM), LastPass, Malwarebytes Endpoint Detection and Response, Malwarebytes Endpoint Protection, Malwarebytes for Teams, Microsoft 365, Microsoft Azure, Microsoft Cloud App Security, Microsoft Defender for Endpoint, Microsoft Defender for Office 365, Okta, Sophos Central, Symantec Endpoint Detection and Response, Symantec Endpoint Security, Trend Micro, VMware

Blumira offers the following support options:

Email/Help Desk, FAQs/Forum, Knowledge Base, Phone Support, Chat

Related categories

See all software categories found for Blumira.