Devo vs Seceon Open Threat Management Platform comparison

Devo and Seceon are both solutions in the Security Information and Event Management (SIEM) category. Devo is ranked #28 with an average rating of 8.0, while Seceon is ranked #45 with an average rating of 6.0. Devo holds a 1.2% mindshare in SIEM, compared to Seceon’s 0.8% mindshare. Additionally, 95% of Devo users are willing to recommend the solution, compared to 90% of Seceon users who would recommend it.

Devo

Read 24 Devo reviews

5,955 Views
3,335 Comparison Views

95% willing to recommend

Seceon Open Threat Manageme...

Read 13 Seceon Open Threat Management Platform reviews

2,420 Views
2,372 Comparison Views

90% willing to recommend

Devo

Seceon Open Threat Manageme...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

Both Devo and Seceon Open Threat Management Platform offer robust solutions in threat management. Seceon seems to have the upper hand thanks to its automation, cost-effectiveness, and smooth deployment.

Features: Devo is praised for real-time data analytics, scalability, and advanced threat detection. Seceon Open Threat Management Platform is commended for comprehensive threat management, ease of use, and automation capabilities.

Room for Improvement: Users suggest Devo enhance its integration capabilities, lower resource consumption, and improve user interface. Seceon users request better documentation, more frequent updates, and enhanced reporting tools.

Ease of Deployment and Customer Service: Devo users find the deployment straightforward but note occasional support complexities. Seceon is known for smooth deployment and responsive customer service.

Pricing and ROI: Devo's setup costs are high but offer long-term ROI through enhanced security. Seceon provides a more cost-effective initial setup and strong ROI for comprehensive threat management features.

To learn more, read our detailed Devo vs. Seceon Open Threat Management Platform Report (Updated: June 2026).

Buyer's Guide

Devo vs. Seceon Open Threat Management Platform

June 2026

Download the complete report

Helped 900,644 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Devo

Ranking in Security Information and Event Management (SIEM)

28th

Average Rating

8.4

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Log Management (26th), IT Operations Analytics (9th), AIOps (18th)

Seceon Open Threat Manageme...

Ranking in Security Information and Event Management (SIEM)

45th

Average Rating

7.8

Reviews Sentiment

7.5

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of June 2026, in the Security Information and Event Management (SIEM) category, the mindshare of Devo is 1.2%, up from 1.1% compared to the previous year. The mindshare of Seceon Open Threat Management Platform is 0.8%, up from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM) Mindshare Distribution
Product	Mindshare (%)
Devo	1.2%
Seceon Open Threat Management Platform	0.8%
Other	98.0%

Security Information and Event Management (SIEM)

Featured Reviews

Francisco JavierRomo

Strategic Account Executive at a computer software company with 51-200 employees

Has improved investigative workflows with interactive dashboards and simplified data correlation

The data analytics cloud component focuses on real-time analytics, which is very impressive. The SIEM collects and correlates logs data from different sources and can integrate with ServiceNow, hardware asset management, and software asset management. The security orchestration, automation, and response (SOAR) is another valuable feature. The security data platform serves as the foundation of Devo. Regarding advanced query capabilities, Devo offers several models including query logs, visual query builder, language integrated query, and SQL, with SQL being the most frequently used querying data capability. The single pane of glass that Devo offers is the SOC. The tools in Devo's active ports are for investigating, not just viewing data. They are more interactive than other market solutions. The drill-down reports capabilities allow analysts to click on any element in a widget. When they see a spike in a line chart for a failed login, which could be a true or false attempt, they can click that spike, and a table widget on the same active board instantly populates with raw logs of data for those specific failed logins. This is particularly important for enterprise companies with numerous endpoints and users. The dynamic filtering of inputs significantly reduces the time cybersecurity analysts spend trying to figure out failed logins and identifying false positives.

Read full review

Vaibhav Patkar

CISO at Orient Technologies Pvt. Ltd.

Offers remediation capabilities and provides a bird's-eye view of events happening in your environment, summarizing critical events that need attention

One drawback is that it becomes so easy to use that users may lose the habit of manual checks and balances. As a security person, you should always worry about potential threats. If you have a very useful and easy tool, you might lose the ability to think differently and critically. For example, in a group of ten people, if nine think the same way and one thinks differently, you should consider the tenth person's perspective because they might have valuable insights. Having a great product is not always beneficial because you may become too dependent on it, which can be problematic in the long term. If you lose your critical thinking skills, you might not recognize when something abnormal is happening. While the system will notice, systems can have their own challenges and issues. I'm not criticizing the product itself but emphasizing the importance of not being overly dependent on machines. Similar to what we see with Tesla cars, no matter how advanced, there is always a chance things may not work as expected. So, the users need to prepare for that eventuality. Seceon Open Threat Management Platform has some add-ons that they sell as part of the whole suite, but not individually. If they sold them individually, they could potentially get more business.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature is definitely the ability that Devo has to ingest data. From the previous SIEM that I came from and helped my company administer, it really was the type of system where data was parsed on ingest. This meant that if you didn't build the parser efficiently or correctly, sometimes that would bring the system to its knees. You'd have a backlog of processing the logs as it was ingesting them."

"Devo's speed and performance allows us to query in real-time and keep up with what is actually happening on the network, then respond effectively to events."

"The strength of Devo is not only in that it is pretty intuitive, but it gives you the flexibility and creativity to merge feeds. The prime examples would be using the synthesis or union tables that give you phenomenal capabilities... The ability to use a synthesis or union table to combine all those feeds and make heads or tails of what's going on, and link it to go down a thread, is functionality that I hadn't seen before."

"The real-time analytics of security-related data are super. There are a lot of data feeds going into it and it's very quick at pulling up and correlating the data and showing you what's going on in your infrastructure. It's fast. The way that their architecture and technology works, they've really focused on the speed of query results and making sure that we can do what we need to do quickly. Devo is pulling back information in a fast fashion, based on real-time events."

"The user interface is really modern. As an end-user, there are a lot of possibilities to tailor the platform to your needs, and that can be done without needing much support from Devo. It's really flexible and modular. The UI is very clean."

"Being able to build and modify dashboards on the fly with Activeboards streamlines my analyst time because my analysts aren't doing it across spreadsheets or five different tools to try to build a timeline out themselves. They can just ingest it all, build a timeline out across all the logging, and all the different information sources in one dashboard. So, it's a huge time saver. It also has the accuracy of being able to look at all those data sources in one view. The log analysis, which would take 40 hours, we can probably get through it in about five to eight hours using Devo."

"Devo helps us to unlock the full power of our data because they have more than 450 parsers, which means that we can ingest pretty much any type of log data."

"But from a SaaS standpoint, if not best-in-breed, Devo is certainly in the top-two or top-three."

More Devo pros

"It offers a holistic approach with multiple solutions blended into one platform."

"I like that it's an AI-based platform. The most valuable feature is that it's a comprehensive solution. Most tools in the marketplace are comprised of miscellaneous items. They fail to provide real-time remediation features. However, with Seceon Open Threat Management Platform, anything you can think of in cybersecurity, like auto-remediation, real-time response, and even on-premise components, is available in a single platform. So, it's perfect for finance and healthcare who don't want to share their data with a third party like the cloud. You can have this on-premise as well. So, the expenditure will be lower as less human intervention is required."

"The solution is stable."

"The algorithm used in Seceon OTM is clear and logical, categorizing events as needed. This helps us identify and respond to threats effectively."

"Seceon Open Threat Management Platform notifies only genuine alerts. It offers plenty of options that are suitable for MSPs."

"The main thing is the value proposition. It is one of the most sophisticated yet affordable solutions that I've come across. It is also one of the easiest-to-manage yet comprehensive solutions for a SOC analyst. Its customizations are really good, and it has a lot of integrations. It is multi-tenant and very fast to onboard. Its stability is 100%. We've never had an outage with it. It doesn't require extensive hardware resources. Its level of support is also very good. They have a very responsive technical team."

"It is effective because it has threat intelligence from across the world and constantly checks and updates for new threats."

"Seceon Open Threat Management Platform provides a more straightforward implementation that is better than Splunk and offers an AI-based platform with machine learning and deep learning capabilities."

More Seceon Open Threat Management Platform pros

Cons

"Where Devo has room for improvement is the data ingestion and parsing. We tend to have to work with the Devo support team to bring on and ingest new sources of data."

"From our experience, the Devo agent needs some work. They built it on top of OS Query's open-source framework. It seems like it wasn't tuned properly to handle a large volume of Windows event logs. In our experience, there would definitely be some room for improvement. A lot of SIEMs on the market have their own agent infrastructure. I think Devo's working towards that, but I think that it needs some improvement as far as keeping up with high-volume environments."

"Technical support needs to be more direct. For example, when we submit a ticket, the support team will delegate a task to the operations team, for example, or various other teams."

"Devo has a lot of cloud connectors, but they need to do a little bit of work there. They've got good integrations with the public cloud, but there are a lot of cloud SaaS systems that they still need to work with on integrations, such as Salesforce and other SaaS providers where we need to get access logs."

"The Activeboards feature is not as mature regarding the look and feel."

"There's always room to reduce the learning curve over how to deal with events and machine data. They could make the machine data simpler."

"The Activeboards feature is not as mature regarding the look and feel. Its functionality is mature, but the look and feel is not there. For example, if you have some data sets and are trying to get some graphics, you cannot change anything. There's just one format for the graphics. You cannot change the size of the font, the font itself, etc."

"The biggest area with room for improvement in Devo is the Security Operations module that just isn't there yet. That goes back to building out how they're going to do content and larger correlation and aggregation of data across multiple things, as well as natively ingesting CTI to create rule sets."

More Devo cons

"It would be ideal with the processing was more manageable. Not many customers are willing to have a dedicated server with two CPUs and one TB of memory. The cost of this is huge for a smaller organization."

"For small to medium-sized customers, Seceon Open Threat Management Platform is good. However, for large enterprises, it is not as effective."

"The product should improve the triggering rate."

"It would be ideal with the processing was more manageable."

"For future releases, integrating incident response tools and improving communication on incident reporting could be beneficial."

"It needs more compatibility for co-managed solutions."

"It is a standalone solution now. They need to make it into a cloud-based subscription model. It needs more compatibility for co-managed solutions. It can also have more threats and deeper integration with Microsoft."

"Seceon Open Threat Management Platform sells some add-ons as part of the whole suite but not individually. If they sold them individually, they could potentially attract more business."

More Seceon Open Threat Management Platform cons

Pricing and Cost Advice

"Be cautious of metadata inclusion for log types in pricing, as there are some "gotchas" with that."

"[Devo was] in the ballpark with at least a couple of the other front-runners that we were looking at. Devo is a good value and, given the quality of the product, I would expect to pay more."

"Devo was very cost-competitive... Devo did come with that 400 days of hot data, and that was not the case with other products."

"We have an OEM agreement with Devo. It is very similar to the standard licensing agreement because we are charged in the same way as any other customer, e.g., we use the backroom."

"It's a per gigabyte cost for ingestion of data. For every gigabyte that you ingest, it's whatever you negotiated your price for. Compared to other contracts that we've had for cloud providers, it's significantly less."

"I'm not involved in the financial aspect, but I think the licensing costs are similar to other solutions. If all the solutions have a similar cost, Devo provides more for the money."

"The way Devo prices things is based on the amount of data, and I wish the tiers had more granularity. Maybe at this point they do, but when we first negotiated with them, there were only three or four tiers."

"Devo is definitely cheaper than Splunk. There's no doubt about that. The value from Devo is good. It's definitely more valuable to me than QRadar or LogRhythm or any of the old, traditional SIEMs."

More Devo pricing and cost advice

"I find Seceon OTM's pricing to be reasonable, not too high or low, just okay for the market standards. I can't disclose specific figures, we pay on a quarterly basis under a service model. I would rate it eight out of ten. As a customer, I always hope for better pricing options."

"It has a per-asset model instead of an ingestion-based model, which gives predictable pricing. In terms of price, it is in the middle to lower range of SIEMs that it competes against. It is the most affordable solution that we have implemented so far. It was much more affordable than anything else I've implemented."

"The solution is cheap and very competitive. It offers good tuning in terms of the pricing. Other solutions like Palo Alto and IBM are more expensive."

"The pricing is very competitive. It's not expensive."

"Seceon Open Threat Management Platform is cost-effective because it's a comprehensive platform that offers high availability."

"We used the solution's trial version for two months and later purchased it."

"The price is quite reasonable."

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

900,644 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

14%

Construction Company

10%

Manufacturing Company

Computer Software Company

Manufacturing Company

12%

Computer Software Company

10%

Financial Services Firm

Outsourcing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	9
Midsize Enterprise	4
Large Enterprise	12

By reviewers
Company Size	Count
Small Business	9
Midsize Enterprise	5
Large Enterprise	1

Questions from the Community

What is your experience regarding pricing and costs for Devo?

Pricing generally depends on the scale, data ingestion requirements, and integrations for what the enterprise monitoring needs. I have not been part of the procurement process, so I am not aware of...

See all answers

What needs improvement with Devo?

One improvement area for Devo could be simplifying some configuration and improving the onboarding for new analysts because it is quite complex for fresher or new analysts who are handling Devo.UI ...

See all answers

What is your primary use case for Devo?

Devo serves as our centralized log monitoring, threat investigation, alert monitoring, and security analytics platform. We use it to collect logs from multiple systems so we can correlate the event...

See all answers

What is your experience regarding pricing and costs for Seceon Open Threat Management Platform?

The pricing of Seceon Open Threat Management Platform is very reasonable.

See all answers

What needs improvement with Seceon Open Threat Management Platform?

There are areas for improvement in the customization options. Every ( /products/every-reviews ) quarter, they are developing the platform with new updates based on feedback provided.

See all answers

What is your primary use case for Seceon Open Threat Management Platform?

We are a Managed Security Service Provider (MSSP ( /categories/managed-security-services-providers-mssp )), and we provide services to our customers.

See all answers

Comparisons

LogRhythm SIEM vs Devo

Compared 8% of the time

Splunk Enterprise Security vs Devo

Compared 7% of the time

New Relic vs Devo

Compared 4% of the time

IBM Security QRadar vs Devo

Compared 3% of the time

Microsoft Sentinel vs Devo

Compared 3% of the time

More Devo Competitors

Microsoft Sentinel vs Seceon Open Threat Management Platform

Compared 13% of the time

IBM Security QRadar vs Seceon Open Threat Management Platform

Compared 11% of the time

DNIF HYPERCLOUD vs Seceon Open Threat Management Platform

Compared 7% of the time

Splunk Enterprise Security vs Seceon Open Threat Management Platform

Compared 6% of the time

LogRhythm SIEM vs Seceon Open Threat Management Platform

Compared 6% of the time

More Seceon Open Threat Management Platform Competitors

Product Reports

Buyer's Guide

Devo

June 2026

Download Devo product report

Buyer's Guide

Seceon Open Threat Management Platform

May 2026

Seceon Open Threat Management Platform report

Download Seceon Open Threat Management Platform product report

Also Known As

No data available

Seceon OTM, Seceon aiSIEM, aiSIEM, Seceon Open Threat Management

Overview

Devo offers powerful visual analytics, real-time data querying, and log integration capabilities within a cloud-native, multi-tenant architecture, supporting extended data retention ideal for long-term analysis and compliance.

Devo is recognized for its Activeboards, which facilitate visual analytics. High-speed search capabilities and real-time analytics enable efficient data manipulation and querying. Its multi-tenant architecture supports effective data segregation and customization tailored to distinct business needs, enhancing its value for handling complex log integrations. With extended data retention of 400 days and a cloud-native architecture, Devo is a robust platform for long-term analysis and compliance requirements. Though opportunities exist to improve browser stability on large searches, SOAR integrations, and its parser capabilities, Devo remains essential for incident response and security monitoring, offering centralized data storage and analysis.

What are Devo's most important features?

Activeboards: Facilitate visual analytics and data exploration.
High-Speed Search: Enables fast data querying and manipulation.
Real-Time Analytics: Supports instant insights and decision-making.
Multi-Tenant Architecture: Allows effective data segregation and customization.
Extended Data Retention: Offers 400-day log retention for compliance and analysis.
Complex Log Integration: Handles intricate data sources effortlessly.

What benefits and ROI should organizations look for in reviews?

Visual Insights: Enhance understanding through interactive dashboards.
Performance Efficiency: Saves time with high-speed data search and real-time results.
Customization Flexibility: Fits specific business requirements with multi-tenant architecture.
Long-Term Compliance: Ensures alignment with extended data retention needs.
Centralized Monitoring: Enables comprehensive incident response and security monitoring.

Devo is extensively used in industries focused on incident response and digital forensics, centralizing data for security monitoring across hybrid environments. Organizations benefit from its ability to store and analyze aggregated logs, creating alerts and dashboards to enhance visibility for network and endpoint activities in multi-domain settings.

Devo

Seceon Open Threat Management Platform offers a blend of cost-effectiveness and ease of use, featuring AI, real-time remediation, and endpoint detection, suitable for sectors like finance and healthcare.

Combining AI-driven analysis with real-time threat remediation, Seceon Open Threat Management Platform provides comprehensive security management. Users value its stability and the absence of hardware requirements. Its features, including XDR/EDR and SOC/SOAR, focus on improving response times and lowering costs. The platform's integration capabilities and genuine alert customization enhance its effectiveness. Designed with businesses in mind, it requires no coding for its pre-built features, streamlining processes like threat hunting and incident monitoring through a single license. However, cloud model development and enhanced training are needed, and it entails high costs for smaller enterprises.

What are the most important features?

Artificial Intelligence: Improves threat detection accuracy.
Real-Time Remediation: Automates threat response actions.
Behavior Analytics: Identifies abnormal activities efficiently.
Endpoint Detection: Guards against endpoint vulnerabilities.
Integration Capabilities: Connects with a range of security tools.

What benefits or ROI should users look for?

Cost Reduction: Lowers operational expenses via AI automation.
Quick Onboarding: Accelerated deployment process.
Improved Response Time: Faster threat mitigation.
Minimized Hardware Needs: Decreases infrastructure costs.

Banks and managed security service providers deploy Seceon Open Threat Management Platform to centralize threat management and analysis. In healthcare and finance, it streamlines SIEM management and ensures compliance, leveraging its AI capabilities to provide efficient endpoint protection and enhance security operations. Despite needing better global coverage and management enhancements, it helps manage security events quickly and effectively.

Seceon

Sample Customers

United States Air Force, Rubrik, SentinelOne, Critical Start, NHL, Panda Security, Telefonica, CaixaBank, OpenText, IGT, OneMain Financial, SurveyMonkey, FanDuel, H&R Block, Ulta Beauty, Manulife, Moneylion, Chime Bank, Magna International, American Express Global Business Travel

Caduceus, SUNY

Buyer's Guide

Devo vs. Seceon Open Threat Management Platform

June 2026

Free Report: Devo vs. Seceon Open Threat Management Platform

Find out what your peers are saying about Devo vs. Seceon Open Threat Management Platform and other solutions. Updated: June 2026.

DOWNLOAD NOW

900,644 professionals have used our research since 2012.

See our Devo vs. Seceon Open Threat Management Platform report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.