# Elastic Security Reviews **Vendor:** Elastic **Category:** [ETL Tools](https://www.g2.com/categories/etl-tools) **Average Rating:** 4.5/5.0 **Total Reviews:** 23 ## About Elastic Security Modernize your SOC with AI Security is a data problem. Your team needs to detect, investigate, and respond to threats quickly. Elastic Security unifies next-gen SIEM and XDR with native automation, with AI built into every step. Built on Elasticsearch, the open-source search platform trusted by millions, Elastic provides complete visibility across your environment. Our data mesh architecture streamlines analysis to raise team productivity and reduce attacker dwell time. Bolster your defenses - Detect threats faster by analyzing data from across your attack surface - Stop attacks with the industry's best-rated XDR protection - Close the loop faster with Elastic Workflows, blending scripted automation with agentic AI reasoning - Get more accurate AI assistance, grounded in your data using Elasticsearch's leading relevance capabilities With Elastic Security, your SOC team can use generative AI to distill alerts, automate repetitive tasks, and get tailored guidance, all with your choice of LLM and full transparency into reasoning and sources. SOC leaders choose Elastic Security when they need a unified, open platform ready to run on any cloud, on-prem, or air-gapped. ## Elastic Security Pros & Cons **What users like:** - Users value the **flexible integrations** of Elastic Security, enhancing workflows and simplifying the threat detection process. (7 reviews) - Users value the **ease of use** in managing alerts and implementing integrations within Elastic Security. (5 reviews) - Users value the **powerful detection capabilities** of Elastic Security, appreciating its flexibility and depth in SIEM and observability. (5 reviews) - Users praise the **easy integrations** of Elastic Security, facilitating smooth implementation and effective data monitoring with existing tools. (4 reviews) - Users value the **efficiency improvement** of Elastic Security, enabling quicker investigations and streamlined security monitoring. (3 reviews) - Flexibility (3 reviews) - Implementation Ease (3 reviews) - Investigation Analysis (3 reviews) - Monitoring (3 reviews) - Solution Efficiency (3 reviews) **What users dislike:** - Users face a **steep learning curve and heavy administrative overhead** that complicates effective use of Elastic Security. (4 reviews) - Users experience **complex implementation** challenges with Elastic Security, requiring extensive knowledge and resources for effective maintenance. (3 reviews) - Users find the **complexity** of Elastic Security's infrastructure and query languages challenging, impacting usability and efficiency. (3 reviews) - Users find the **complex setup** and steep learning curve of Elastic Security challenging, requiring ongoing maintenance and expertise. (3 reviews) - Users experience **integration issues** with Elastic Security, facing challenges in correlating data across different log sources effectively. (3 reviews) - Learning Curve (3 reviews) - Steep Learning Curve (3 reviews) - Data Management (2 reviews) - Difficult Learning (2 reviews) - High Resource Usage (2 reviews) ## Elastic Security Reviews ### 1. Powerful, Customisable Security Platform for Complex Environments **Rating:** 4.5/5.0 stars **Reviewed by:** Jennifer S. | Senior Cybersecurity Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** February 10, 2026 **What do you like best about Elastic Security?** What I like best about Elastic Security is the flexibility and depth it gives across SIEM, endpoint, and observability in a single platform. I can ingest almost any data source, normalize it to ECS, and build detections that actually reflect how our environment works—rather than forcing our workflows to fit a rigid tool. The visibility, correlation, and customisation make it especially powerful for real-world SOC operations and complex environments. **What do you dislike about Elastic Security?** What I dislike about Elastic Security is the learning curve and operational overhead, especially for teams new to the Elastic Stack. Getting the most value requires strong knowledge of ECS, ingest pipelines, and cluster tuning, and some advanced use cases still involve a fair amount of manual configuration. The flexibility is powerful, but it can be overwhelming without experienced resources or good upfront design. **What problems is Elastic Security solving and how is that benefiting you?** Elastic Security solves the problem of fragmented security visibility by bringing SIEM, endpoint, and log analytics into a single, searchable platform. Instead of juggling multiple tools and data silos, I can correlate endpoint, network, and cloud data in real time, build detections that match our actual risk scenarios, and investigate incidents much faster. This directly benefits me by reducing alert fatigue, improving investigation speed, and giving full control over how security data is collected, enriched, and acted upon. ### 2. Seamless SIEM Solution with AI and Outstanding Support **Rating:** 5.0/5.0 stars **Reviewed by:** Jordan J. | Principal Security Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** March 04, 2026 **What do you like best about Elastic Security?** I find Elastic Security to be a great product mainly because of the AI integrations that make it easier for analysts to ask questions and generate queries swiftly during their investigations. The numerous out of the box integrations and connectors for ingesting logs and generating alerts are impressive, and we easily create custom alerts that meet various security framework requirements. The ability to visualize threats is excellent for quick overviews and illustrating value to leadership. I also appreciate the case management features that allow us to tie multiple alerts to a single case and explore the entire chain of events in a timeline view, making it a solid platform for our security team. The setup was smooth, thanks to the elastic serverless platform, and the professional services team from Elastic were extremely helpful. Moreover, the Slack and PagerDuty connectors keep us informed and ready to raise staff for critical alerts. Overall, Elastic Security has been reliable and meets our needs effectively, and I would absolutely recommend it. **What do you dislike about Elastic Security?** There have been some minor bugs in the platform that we have run into, but the support teams have been very helpful in triaging the bugs and getting fixes out. In some cases we had fixes deployed within hours. **What problems is Elastic Security solving and how is that benefiting you?** Elastic Security centralizes our security logs, providing a single pane of glass for our analysts to investigate and manage events effectively. Its AI, visualizations, custom alerts, and case management streamline operations, helping us correlate events, visualize threats, and retain oversight seamlessly. ### 3. Powerful Detection and Deep Visibility with Practical Usability in Elastic Security **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** February 11, 2026 **What do you like best about Elastic Security?** Elastic Security stands out for its powerful detection capabilities and deep visibility across endpoints and logs, while still being relatively easy to use once the workflows are understood. Implementation is smooth in environments already using the Elastic stack, and integrations with existing tools are flexible and well-documented. The platform offers a rich set of features for threat detection, hunting, and response that scales well for SOC operations. Customer support and community resources are strong, making troubleshooting manageable. Overall, it’s a feature-dense, frequently used platform that balances advanced capability with practical usability. **What do you dislike about Elastic Security?** The learning curve can be steep at the beginning, especially when tuning detections and managing advanced features without prior Elastic experience. **What problems is Elastic Security solving and how is that benefiting you?** Elastic Security helps centralize detection by allowing us to create custom rules that identify threats across multiple data sources in one platform. Its ability to ingest logs from tools like CrowdStrike and other security products gives us unified visibility for faster investigations. This reduces tool sprawl and improves our SOC’s efficiency in detecting and responding to incidents. ### 4. Prebuilt Rules and Easy Integrations Make Elastic a Strong Choice **Rating:** 4.5/5.0 stars **Reviewed by:** hector g. | Security Consultant, Mid-Market (51-1000 emp.) **Reviewed Date:** February 11, 2026 **What do you like best about Elastic Security?** I think one of the best things about Elastic is the large set of prebuilt rules created by Elastic themselves. I also like how the parsing and mapping are really easy to follow and implement, especially when you can find an integration that’s already created for the technology you need to monitor. **What do you dislike about Elastic Security?** What I was missing most was a proper SOAR. I haven’t tried the workflows yet, but I have high expectations for them. In the past, we tested the AI assistant in the first version and were a bit disappointed. Nowadays, I think it has improved quite a lot. Another thing I’ve noticed lately is that when using and correlating different log sources, especially through the integrations by Elastic, I sometimes find fields that should match but don’t. For example, Source.ip vs client.ip, or user.name vs source.user.name. This inconsistency has made it quite difficult to correlate threat intelligence with the dashboards. **What problems is Elastic Security solving and how is that benefiting you?** One of the biggest problems we faced when implementing our MSSP was separating data among customers. Elastic handles this quite well, and that’s a big reason we chose it. ### 5. Blazing-Fast KQL/ES|QL and Unified Telemetry with Elastic Defend **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** February 10, 2026 **What do you like best about Elastic Security?** The standout feature of Elastic Security is the speed and flexibility of KQL and ES|QL. In high-stakes threat hunts, being able to pivot through massive datasets with near-instant results is critical. The native integration of Elastic Defend is a close second; having endpoint telemetry and SIEM logs in a single schema (ECS) eliminates the "translation tax" usually required when mapping disparate data sources. While the AI Assistant is a great efficiency booster for generating complex queries, the true value lies in the platform’s customizability. **What do you dislike about Elastic Security?** One of the primary challenges with Elastic Security is the heavy administrative overhead required to maintain a healthy environment. Unlike "set-and-forget" SaaS solutions, Elastic requires constant "care and feeding" of ingest pipelines, index lifecycle management (ILM), and shard mapping. If the mapping isn't perfect, you run into mapping explosions or unparsed fields that can render critical logs invisible during a hunt. This complexity often turns a Threat Analyst into a part-time Data Engineer just to ensure the data is searchable. Another significant pain point is the steep learning curve of the newer query languages. While ES|QL is powerful, the transition from KQL or Lucene creates a temporary efficiency gap for the team. Additionally, the licensing and resource consumption can be unpredictable; since pricing is based on compute and storage (RAM/CPU) rather than just data volume or seats, a poorly written query by a junior analyst or a sudden spike in log volume can lead to performance degradation or unexpected scaling costs that are difficult to budget for in a large-scale SOC. Finally, the native SOAR capabilities still feel somewhat immature compared to dedicated platforms. While basic automated actions exist, building complex, multi-step response playbooks—especially those involving third-party integrations outside the Elastic ecosystem—can be clunky and often requires external tools to achieve true automation. For a high-tier DFIR workflow, the built-in case management also lacks some of the deeper forensic documentation features needed for evidence chain-of-custody, forcing us to rely on external platforms for formal reporting. **What problems is Elastic Security solving and how is that benefiting you?** Elastic Security effectively solves the problem of data siloization and "the translation tax." In traditional environments, analysts often have to jump between EDR consoles for endpoint artifacts and a separate SIEM for network logs, manually correlating timestamps and hostnames. Elastic consolidates this via the Elastic Common Schema (ECS), providing a unified view of the entire attack surface. For me, this has been a game-changer during complex investigations—such as the recent UNC3886 threat hunt—because it allows me to pivot from a suspicious process tree directly to related network connections or cloud audit logs without losing context or wasting time normalizing data manually. The platform also addresses the issue of investigative latency through its high-performance search capabilities and the introduction of ES|QL. By solving the bottleneck of slow query returns on massive historical datasets, Elastic allows me to perform iterative "what-if" hunting at scale. This benefits me by significantly reducing our Mean Time to Detect (MTTD); I can test a hypothesis against months of telemetry in seconds rather than hours. This speed, combined with Automated Response Actions like host isolation, empowers me to transition instantly from discovery to containment, which is critical when dealing with advanced persistent threats that move laterally with high velocity. Finally, Elastic helps bridge the analytical resource gap with its AI-driven assistants and pre-built detection rules mapped to the MITRE ATT&CK framework. By automating the "low-level" detection of known TTPs, the platform solves the problem of alert fatigue, freeing up my time to focus on high-tier DFIR work and strategic threat modeling. This benefits my career and the organization by shifting our posture from basic log monitoring to a sophisticated, hunt-centric operation where we are looking for the "unknown unknowns" rather than just triaging endless commodity malware alerts. ### 6. Essential for Our Linux Security **Rating:** 5.0/5.0 stars **Reviewed by:** Pascal F. **Reviewed Date:** February 10, 2026 **What do you like best about Elastic Security?** I really appreciate that Elastic Security provides great insight into our system. We can perform good analyses because we run a SOC without direct access to the machines, and for that, the defend function is very useful. Also, the initial installation of Elastic Security was very simple and straightforward. All in all, I am very satisfied and would definitely give Elastic Security a score of 10 as a recommendation to a friend or colleague. **What do you dislike about Elastic Security?** Inventory of the machine which patches are installed **What problems is Elastic Security solving and how is that benefiting you?** I use Elastic Security to monitor our Linux environment, which provides EDR and log analysis of network and processes. It offers insight into the system, allowing us to perform a good analysis even without direct access to machines. ### 7. Powerful Security Features with Minimal Setup Hassles **Rating:** 4.5/5.0 stars **Reviewed by:** Nathan T. | Mid-Market (51-1000 emp.) **Reviewed Date:** April 22, 2026 **What do you like best about Elastic Security?** I like using Elastic Security for security monitoring. The central logs and ECS features are incredibly useful for me. I appreciate the powerful tools like timeline and cases, which make handling security details much more efficient. The initial setup of Elastic Security was fairly easy, which I found really convenient. **What do you dislike about Elastic Security?** In timeline you can’t move columns by sliding, you need to right-click and “move to the left” multiple times sometimes. **What problems is Elastic Security solving and how is that benefiting you?** I use Elastic Security for centralizing logs, utilizing ECS, and fast triaging. ### 8. Streamlined Security Investigations with Elastic **Rating:** 4.5/5.0 stars **Reviewed by:** Delonte J. | Director of Security Engineering and Operations **Reviewed Date:** February 12, 2026 **What do you like best about Elastic Security?** I appreciate the ability to visualize data and turn it into actionable intelligence with Elastic Security. We use it to create dashboards that monitor our security posture, attack surface, and threat landscape. The integration with our incident management system is seamless, and the setup was simple and straightforward. Elastic Security has allowed our team to conduct investigations more efficiently. **What do you dislike about Elastic Security?** I find building sequencing rules where multiple events must occur in order over a given time challenging. **What problems is Elastic Security solving and how is that benefiting you?** I use Elastic Security to efficiently investigate and detect security incidents. It allows us to visualize data, creating dashboards to monitor our security posture and turn insights into actionable intelligence. ### 9. Easy Alert Management and Powerful Cases for Security Investigations **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** February 12, 2026 **What do you like best about Elastic Security?** You can manage the alerts in an easy way. From alerts panel you can have all the information needed for a security investigation. Also, with the cases feature, you can create your own database of alerts **What do you dislike about Elastic Security?** Sometimes, charging is slow, and it's difficult to copy fileds and values from timelines **What problems is Elastic Security solving and how is that benefiting you?** It's helping us as a SIEM ### 10. Flexible, Preconfigured Rules with Integrated Case Management **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Government Administration | Mid-Market (51-1000 emp.) **Reviewed Date:** February 11, 2026 **What do you like best about Elastic Security?** I like its flexibility, the preconfigured rules, and the integrated case management for sharing information. **What do you dislike about Elastic Security?** It feels a bit complex at first. It’s a large, heavy, and fairly complex infrastructure to maintain on-prem. **What problems is Elastic Security solving and how is that benefiting you?** I mainly use it as a SIEM for our SOC, as it gives us a complete overview of our environment. ### 11. Great Authentication Flexibility, but Anonymous Login Needs Manual Disabling **Rating:** 3.5/5.0 stars **Reviewed by:** Abhishek g. | Devops engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** February 10, 2026 **What do you like best about Elastic Security?** Elastic xpack secqurity is great for connecting with multipule domain controller or various authentication methord **What do you dislike about Elastic Security?** its still have some drawback like anonymous login ,sepratly need to disable otherwise it will be vernable **What problems is Elastic Security solving and how is that benefiting you?** Access control you can have role based access , even you can control fileds level access using kibana role manager ### 12. Its good tool with good interface for SIEM **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** February 11, 2026 **What do you like best about Elastic Security?** EDR Capability and K8 support along with SIEM **What do you dislike about Elastic Security?** Elastic agent issues, some times seems unhealthy or blocking bussiness actions **What problems is Elastic Security solving and how is that benefiting you?** Mainly SIEM for SOC service ### 13. Pre-Built Elastic Security Use Cases That Make Migration Easier **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Banking | Enterprise (> 1000 emp.) **Reviewed Date:** February 11, 2026 **What do you like best about Elastic Security?** Most helpful, which was one of the reason for choosing Elastic Security is pre-build security use-cases ready to use. **What do you dislike about Elastic Security?** Upside is, when you migrate from different tool, to learn specifics, eg. IP address stored in multiple fileds for ability to search either by text or regex. **What problems is Elastic Security solving and how is that benefiting you?** Primarily we use it as SIEM tool and also as EDR tool. ### 14. Elastic security review **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Telecommunications | Mid-Market (51-1000 emp.) **Reviewed Date:** October 27, 2022 **What do you like best about Elastic Security?** Elastic security provides key analytics of various hosts in a distributed architecture. It helps diagnose any anomalies or threats, allowing you to act fast and minimize potential loss. **What do you dislike about Elastic Security?** It could be pricier, so you might want to choose the appropriate hosts where the threat is more such as those in the edge layer of your network. **What problems is Elastic Security solving and how is that benefiting you?** Elastic security provides quick insights and analytics on the hosts in your network and alerts you in case any action is required to keep your hosts secure. ### 15. I would highly recommend it **Rating:** 4.0/5.0 stars **Reviewed by:** Saravanan K. | Programming Analyst II, Mid-Market (51-1000 emp.) **Reviewed Date:** November 13, 2022 **What do you like best about Elastic Security?** New features and updates. Security in Cloud sharing **What do you dislike about Elastic Security?** No major Cons to report at this moment . **What problems is Elastic Security solving and how is that benefiting you?** Improve cloud security posture ### 16. Very Reliable. Easy set up. Good Security **Rating:** 4.0/5.0 stars **Reviewed by:** Eduardo N. | Technical Support Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** September 29, 2022 **What do you like best about Elastic Security?** Very reliable software to protect sensitive data. Easy to setup as well! **What do you dislike about Elastic Security?** Nothing really. Occasion loop depending on the network. Sometimes requires a clearing of cache and cookies to workaround the loop **What problems is Elastic Security solving and how is that benefiting you?** Protecting sensitive emails regarding software builds. Conversations internally ### 17. Fast and easiest SIEM solution for small companies and startups **Rating:** 5.0/5.0 stars **Reviewed by:** Sidhartha P. | Cyber Security Analyst, Enterprise (> 1000 emp.) **Reviewed Date:** July 27, 2020 **What do you like best about Elastic Security?** ELK is the best solution if you are a startup or a small company. it's blazingly fast and cost effective. **What do you dislike about Elastic Security?** Creating notifications out of the box can be a challenge to begin with, the watchers can be simplified. **What problems is Elastic Security solving and how is that benefiting you?** Threat hunting, SIEM solution for SOC team ### 18. Fully functional Logs Suite **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Outsourcing/Offshoring | Mid-Market (51-1000 emp.) **Reviewed Date:** June 09, 2020 **What do you like best about Elastic Security?** Logstash provide a fully logs collection, the best configuration is use them with Kibana and Elastic Search as an Elk suite **What do you dislike about Elastic Security?** Not so easy to set up, necessary a specialized partner **Recommendations to others considering Elastic Security:** Consider to get helped by a expert partner **What problems is Elastic Security solving and how is that benefiting you?** Log compliance and monitoring ### 19. I used Logstash as a Filter to aggregate the data coming from Beats, **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Enterprise (> 1000 emp.) **Reviewed Date:** December 29, 2019 **What do you like best about Elastic Security?** Logstash provide so many plugins and also work as a Filter which is used to collect the data and than filter in the same way in which we want. Also Logstash is an open source tool so it also solve the costing problem. **What do you dislike about Elastic Security?** Till now everything is good , I like it very much. **What problems is Elastic Security solving and how is that benefiting you?** I used logstash to create pipelines which gave me filtered data coming from Beats. And than it also provide me an output section where I can mention my output to be transfered there for example Elastic Search . Performance of logstash is very good also as it is open source tool which is cost effective for me. ### 20. Versatile log processor with ample community support and rapid updates **Rating:** 4.0/5.0 stars **Reviewed by:** Joseph H. | Information Technology Manager, Libraries, Mid-Market (51-1000 emp.) **Reviewed Date:** August 24, 2017 **What do you like best about Elastic Security?** The thing I like the most about logstash is the ability to adjust it to whatever you are doing. If it is your own custom project, or a standard input source it will bend to your needs. **What do you dislike about Elastic Security?** Setting up logstash took a while when I had no idea how to get it working. What I am trying to say is the learning curve was a little higher than I thought. That and GROK is horrible. **Recommendations to others considering Elastic Security:** Learn to use Grok. Find a Grok parser online and then look for a LOT of guides on how to write grok. There are plenty of them out there. When you have found your guide, test out your code. Set up a CI / CD environment, even if it is a simple one to test out your changes to your logstash configuration files. Make sure you setup all your inputs and outputs as separate files, it makes for a LOT easier debugs. Use a version control system like git, it makes finding problems with your configuration changes a LOT easier Basically what I am saying is follow the principals of DevOps, logstash is trouble **What problems is Elastic Security solving and how is that benefiting you?** Analyzing windows and Linux log files for common use, and miss use of computers. Being able to see in one central location how all of the systems and clients are behaving is wonderful. ### 21. Simple to configure. Works realiably. Simplest tool in ETL **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Internet | Small-Business (50 or fewer emp.) **Reviewed Date:** January 26, 2018 **What do you like best about Elastic Security?** The simplicity of defining the configuration for an ETL job and numerous plugins available. **What do you dislike about Elastic Security?** Not so friendly way to scale the tool for huge amounts of input. **Recommendations to others considering Elastic Security:** Definitely, try it out. It's the best tool for small to medium workloads. Default grok patterns can be quite tricky. Suggestion: use CSV filter if feasible. **What problems is Elastic Security solving and how is that benefiting you?** Extract Transform Load workloads especially for access logs. ### 22. Logstash Review **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Internet | Mid-Market (51-1000 emp.) **Reviewed Date:** January 18, 2018 **What do you like best about Elastic Security?** It logs the activities from all the servers and aggregates them into one source of truth for visualization and researching. **What do you dislike about Elastic Security?** The logs take a while to understand for non-technical person at the beginning **What problems is Elastic Security solving and how is that benefiting you?** To keep logs and be able to track back to see what activities were performed by what users ### 23. Good open source software **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer Games | Enterprise (> 1000 emp.) **Reviewed Date:** August 28, 2016 **What do you like best about Elastic Security?** Very good performance when processing and collecting logs big in size. Open source with a big community and a lot of plugins available. **What do you dislike about Elastic Security?** High memory consumption. Somewhat hard to setup. **What problems is Elastic Security solving and how is that benefiting you?** We needed a way to easily find recurring build system problems that are in our hundreds of logs. With the implementation of elk(elastisearch, logstash, kibana) we can now easily search all of our logs at once. - [View Elastic Security pricing details and edition comparison](https://www.g2.com/products/elastic-elastic-security/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-20+03%3A49%3A11+-0500&secure%5Bsession_id%5D=07f82026-0701-487c-9e50-00601c5eb52b&secure%5Btoken%5D=9ad97e781d4dbe685dbd1d872584e87b1cc332c70337ae6959e159e35810bb05&format=llm_user) ## Elastic Security Integrations - [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) - [Jira Service Management](https://www.g2.com/products/jira-service-management/reviews) - [Microsoft 365](https://www.g2.com/products/microsoft365/reviews) - [Microsoft Defender for Endpoint](https://www.g2.com/products/microsoft-defender-for-endpoint/reviews) - [n8n](https://www.g2.com/products/n8n/reviews) - [SentinelOne Singularity Threat Intelligence](https://www.g2.com/products/sentinelone-singularity-threat-intelligence/reviews) ## Elastic Security Features **Management** - Reporting - Auditing **Detection & Response** - Response Automation - Threat Hunting - Rule-Based Detection - Real-Time Detection **Services - Endpoint Detection & Response (EDR) ** - Managed Services **Cloud Visibility** - Data Discovery - Cloud Registry - Cloud Gap Analytics **Network Management** - Activity Monitoring - Asset Management - Log Management **System Control** - Device Control - Web Control - Application Control - Asset Management - System Isolation **Functionality** - Extraction - Transformation - Loading - Automation - Scalability **Management** - Extensibility - Workflow Automation - Unified Visibility **Security** - Data Security - Data loss Prevention - Security Auditing **Incident Management** - Event Management - Automated Response - Incident Reporting **Vulnerability Prevention** - Endpoint Intelligence - Firewall - Malware Detection **Analytics** - Threat Intelligence - Artificial Intelligence & Machine Learning - Data Collection **Identity** - SSO - Governance - User Analytics **Security Intelligence** - Threat Intelligence - Vulnerability Assessment - Advanced Analytics - Data Examination **Security Management** - Incident Reports - Security Validation - Compliance **Agentic AI - Security Information and Event Management (SIEM)** - Autonomous Task Execution - Multi-step Planning - Proactive Assistance - Decision Making **Agentic AI - Extended Detection and Response (XDR) Platforms** - Autonomous Task Execution - Proactive Assistance - Decision Making **Services - Extended Detection and Response (XDR)** - Managed Services ## Top Elastic Security Alternatives - [Databricks](https://www.g2.com/products/databricks/reviews) - 4.6/5.0 (746 reviews) - [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) - 4.7/5.0 (377 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - 4.7/5.0 (778 reviews)