Blumira

4.9 (12)
Write a Review!
Automated SIEM + XDR for IT Teams

About Blumira

Blumira is a cloud-based threat detection and response platform that helps businesses manage operations related to threat hunting, user security, and log monitoring, among other processes. It allows staff members to automatically compare data across multiple systems and generate alerts based on perceived threat priority.

Blumira provides a built-in security playbook, which enables employees to respond to threats based on predefined custom workflows. The blocklist functionality lets supervisors automatically detect and block access to malicious IP sources and domains. The platform allows business leaders to conduct investigations and audits in compliance with HIPAA, PCI DSS, FFIEC, NIST regulations and requirements. It also lets IT professionals analyze all findings by stacking matched evidence across multiple sources, including associated users, source IP addresses, domain names, timestamps, and more.

Blumira facilitates integration with several third-party solutions including Okta, Cisco Umbrella, Duo, Office 365, Microsoft Azure, Malwarebytes, and more. Administrators can set-up role based permission rights to restrict specific employees from adding, editing, or deleting information.


Images

Blumira Software - Blumira alerts prioritization
Blumira Software - Blumira automatic blocking
Blumira Software - Blumira matched evidence
Blumira Software - Blumira workflows
View 5 more
Blumira video
Blumira Software - Blumira alerts prioritization
Blumira Software - Blumira automatic blocking
Blumira Software - Blumira matched evidence
Blumira Software - Blumira workflows

Not sure about Blumira? Compare with a popular alternative

Blumira

4.9 (12)
VS.
Highly reviewed

Starting Price

No pricing found
US$15.00
month

Pricing Options

Free version
Free trial
Free version
Free trial

Features

62
120

Integrations

43
183

Ease of Use

4.8 (12)
4.2 (243)

Value for Money

4.9 (12)
4.1 (243)

Customer Service

5.0 (12)
4.2 (243)
Green rating bars show the winning product based on the average rating and number of reviews.

Alternatives

Datadog

4.6
#1 Alternative to Blumira
Get full-stack security for your production environment with Datadog's Cloud Security Platform. With real-time threat...

Elastic Stack

4.6
#2 Alternative to Blumira
Reliably and securely take data from any source, in any format, then search, analyze, and visualize it in real time.

USM Anywhere

4.4
#3 Alternative to Blumira
USM Anywhere is a cloud-based threat detection and response software designed to help IT professionals automatically...

AlienVault OSSIM

4
#4 Alternative to Blumira
AlienVault OSSIM is a open source security information and event management (SIEM) software.

Reviews

Overall rating

4.9 /5
(12)
Value for Money
4.9/5
Features
4.5/5
Ease of Use
4.8/5
Customer Support
5/5

Already have Blumira?

Software buyers need your help! Product reviews help the rest of us make great decisions.

Showing 5 reviews of 12
Robert
Robert
Overall rating
  • Industry: Telecommunications
  • Company size: 201–500 Employees
  • Used Monthly for 1+ year
  • Review Source

Overall rating

  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Fantastic SIEM for my customers

Reviewed on 2021/12/22

your sales reps are fantastic and responsive

your sales reps are fantastic and responsive

Pros

much cheaper than say Splunk plus easier to set up

Cons

not alot of folks have heard of your company

Steven
Overall rating
  • Industry: Research
  • Company size: 51–200 Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Blumira SIEM

Reviewed on 2021/12/22

Blumira implementation was easy, with log collector setup done by script, templates for event...

Blumira implementation was easy, with log collector setup done by script, templates for event forwarding from log sources. Use of this product has greatly reduced the time required of our limited staff searching logs for suspicious activity or indications of misconfiguration. Alert Event information and explanations enable rapid investigation and resolution of most incidents.

Pros

Automatic event alerts for suspicious activities allows us to begin investigation soon after a suspicious event. Automated report generation for less sensitive activities allows us to monitor actions of interest to our organization. The Report Builder UI is straightforward and with practice can be used to create detailed reports of log activity for specific events, as is needed during investigations. Event management UI provides for communication to Blumira staff for additional support, attachment of documents from investigations and documenting the resolution of the event.

Cons

It takes some practice and experimentation to identify which fields to use in filtering logs into reports. Blumira normalizes the logs for storage in the database and it can be challenging to get the right data items into the report you want. However, Blumira support is always ready to help figure it out.

Alternatives Considered

AlienVault OSSIM and Splunk Enterprise

Reasons for Choosing Blumira

Primarily due to issues with the other company's understanding and support of their SIEM solution.

Reasons for Switching to Blumira

Automated alerts from the system based on patterns known to the system to indicate suspicious activities. The alerts link to the Event management system which provides explanation of why the event was suspicious and what actions can be taken to investigate and/or mitigate. A large part of the decision was having Blumira Staff filter the logs for events of interest and having a good report builder for investigations.
Khan
Overall rating
  • Industry: Transportation/Trucking/Railroad
  • Company size: 501–1,000 Employees
  • Used Daily for 1-5 months
  • Review Source

Overall rating

  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Make sifting thru mountains of data something of a mole hill.

Reviewed on 2022/04/21

I've sent support tickets in and responses have been fast and personalized. Makes our jobs easier.

I've sent support tickets in and responses have been fast and personalized. Makes our jobs easier.

Pros

Being able to send logs from clients, servers, network equipment, and cloud sources is very important. Knowing what is going on at all times and being alerted to something occurring allows us to look into who did what, when, and find out what was going on which triggered the alert allows us to respond very quickly.

Cons

Filtering data in reports by date or date range is not as simple as it should be. I had to get a coworker to look at this feature with me in order to figure out how to filter by date range.

Response from Blumira

Thank you for your review and feedback, Khan! We've passed your insights about reporting filtering to our team so that we can continue to improve and make this process easier.

Kevin
Overall rating
  • Industry: Information Technology & Services
  • Company size: 51–200 Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

Blumira solves the problem of SOC

Reviewed on 2020/08/11

Extremely positive; they are engaged with their customers and are transparent with their development...

Extremely positive; they are engaged with their customers and are transparent with their development efforts which help make us successful. Their rapid and knowledgeable communication has blown me away.

Pros

The platform has done an amazing job of taking the various events, alerts, alarms, and other notifications and boiling them down into actionable alerts that any member of an IT team can work with and react against. Alert fatigue is a real concern, and the fact that our support staff can be given the infrequent and important findings -- while being given a playbook on how to respond -- is the reason this software is successful.

Cons

While the initial setup was straightforward, it did not include the same large amount of documentation that other vendors provide. This did involve then reaching out to Blumira support, which has been, hands-down, the most knowledgeable and fastest support team that I have ever used in my 20 years of utilizing untold numbers of networking and security vendors.

Alternatives Considered

USM Anywhere

Reasons for Switching to Blumira

Ease of use for the entire alert workflow, including playbook style responses for generated alerts. Much higher fidelity alerts were generated by the Blumira platform.

Response from Blumira

Thanks for the positive response! We greatly appreciate having you as a customer. Your feedback is also welcomed. We also felt we didn't have accessible documentation and have published our documentation publicly on Blumira's website for all at https://www.blumira.com/integrations/

Michael
Overall rating
  • Industry: Government Administration
  • Company size: 1,001–5,000 Employees
  • Used Daily for 6-12 months
  • Review Source

Overall rating

  • Value for Money
  • Ease of Use
  • Customer Support
  • Likelihood to recommend 10.0 /10

A great solution that works as promised.

Reviewed on 2021/08/03

We have had a couple of instances where users clicked on a malicious link and their machine started...

We have had a couple of instances where users clicked on a malicious link and their machine started password spraying. Alerted and the device was isolated and remediated in less than a half hour. I am afraid to think how long it would have been that we had this malicious software in our environment without Blumira.

Pros

The ease of implementation was incredible. Other solutions were going to be months to a year to fully deploy.

Cons

Not really any cons about the solution. They are a newer company and are great to work with when we need to new features added.

Reasons for Switching to Blumira

Cost, implementation time, great demo and features that our company needed.
Showing 5 reviews of 12 Read all reviews

Blumira FAQs

Below are some frequently asked questions for Blumira.

Blumira offers the following pricing plans:

  • Pricing model: Free Version
  • Free Trial: Available

Get started for free today at blumira.com/free.

Blumira has the following typical customers:

11–50, 51–200, 201–500, 501–1,000

Blumira supports the following languages:

English

Blumira supports the following devices:

Blumira integrates with the following applications:

AWS CloudTrail, Amazon CloudWatch, BlackBerry CylancePROTECT, Carbon Black App Control, Carbon Black Cloud Workload, Carbon Black EDR, Carbon Black Endpoint, Cisco, Cisco Meraki, Cisco Umbrella, Duo Security, ESET Endpoint Security, F5 BIG-IP DNS, FortiGate Next-Generation Firewall, Google Workspace, KCM GRC, LastPass, Malwarebytes Endpoint Detection and Response, Malwarebytes Endpoint Protection, Malwarebytes for Teams, Microsoft 365, Microsoft 365 Defender, Microsoft Azure, Microsoft Defender for Cloud Apps, Microsoft Defender for Endpoint, Microsoft Defender for Office 365, Microsoft Intune, MimeCast Email Security, Okta, SentinelOne, SonicWALL, Sophos Central, Symantec Endpoint Detection and Response, Symantec Endpoint Security, Trend Micro, VMware, VMware Carbon Black Cloud, WatchGuard Firebox, Webroot Business Endpoint Protection, Webroot DNS Protection, Webroot SecureAnywhere, vCenter Server, vSphere

Blumira offers the following support options:

Email/Help Desk, FAQs/Forum, Knowledge Base, Phone Support, 24/7 (Live rep), Chat

Related categories

See all software categories found for Blumira.