No more typing reviews! Try our Samantha, our new voice AI agent.
Devo Logo

Devo pros and cons

Vendor: Devo
4.2 out of 5
Leave a review

Pros & Cons summary

Devo reduces log analysis time from 40 hours to 5-8 hours with high-speed and scalable capabilities, crucial for security analysis and multinational organizations. Its cloud-native architecture supports data consolidation, but integration with cloud SaaS is limited. While offering powerful querying and log retention for 400 days, the documentation and customization features need improvement. Parsing limitations and a developing Security Operations module affect customer onboarding and data aggregation. Scalability across diverse log sources is an advantage.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Devo allows rapid querying of multiple data sources, enabling faster security analysis and response.
Real-time analytics and high-speed processing improve efficiency in handling security data.
Devo has extensive parsing capabilities, with over 450 parsers to handle various log types.
Devo offers 400 days of data retention, supporting long-term trend analysis and operational insights.
Devo provides a multi-tenant, cloud-native architecture, ideal for global organizations needing data consolidation and separation.

CONS

Documentation needs improvement with better focus on tech writing and updates.
Activeboards' functionality is limited to a single graphics format without customization options.
There is significant room for improvement in parsing different log types, including support for logs from major vendors.
Technical support and agent infrastructure require enhancements for handling large volumes of data.
Security Operations and monitoring capabilities need expansion, particularly in pre-built monitoring applications and dashboard customization.
 

Devo Pros review quotes

FR
Francisco JavierRomo
Strategic Account Executive at a computer software company with 51-200 employees
Oct 22, 2025
The drill-down reports capabilities allow analysts to click on any element in a widget. When they see a spike in a line chart for a failed login, which could be a true or false attempt, they can click that spike, and a table widget on the same active board instantly populates with raw logs of data for those specific failed logins.
Read full review
Michael Wenn - PeerSpot reviewer
Michael Wenn
CEO / Co-Founder at Aiops ltd
Aug 2, 2024
It centralizes security management within a business, functioning as a core system for a SOC.
Read full review
JB
JohnBusch
Security Engineer at Kforce
Oct 7, 2022
The most useful feature for us, because of some of the issues we had previously, was the simplicity of log integrations. It's much easier with this platform to integrate log sources that might not have standard logging and things like that.
Read full review
Buyer's Guide
Devo
May 2026
Free Report: Devo Reviews and More
Learn what your peers think about Devo. Get advice and tips from experienced pros sharing their opinions. Updated: May 2026.
DOWNLOAD NOW
893,221 professionals have used our research since 2012.
reviewer1991436 - PeerSpot reviewer
reviewer1991436
IT Risk Manager at a recreational facilities/services company with 501-1,000 employees
Oct 14, 2022
The alerting is much better than I anticipated. We don't get as many alerts as I thought we would, but that nobody's fault, it's just the way it is.
Read full review
KG
KevinGolas
Director of World Wide Security Services at Open Text
Dec 7, 2021
Devo helps us to unlock the full power of our data because they have more than 450 parsers, which means that we can ingest pretty much any type of log data.
Read full review
it_user1689402 - PeerSpot reviewer
it_user1689402
Product Director at a insurance company with 10,001+ employees
Oct 7, 2021
Those 400 days of hot data mean that people can look for trends and at what happened in the past. And they can not only do so from a security point of view, but even for operational use cases. In the past, our operational norm was to keep live data for only 30 days. Our users were constantly asking us for at least 90 days, and we really couldn't even do that. That's one reason that having 400 days of live data is pretty huge. As our users start to use it and adopt this system, we expect people to be able to do those long-term analytics.
Read full review
reviewer1539015 - PeerSpot reviewer
reviewer1539015
Director at a security firm with 51-200 employees
Jul 17, 2023
Scalability is one of Devo's strengths.
Read full review
it_user1710261 - PeerSpot reviewer
it_user1710261
CEO at Analytica 42
Nov 30, 2021
Devo provides a multi-tenant, cloud-native architecture. This is critical for managed service provider environments or multinational organizations who may have subsidiaries globally. It gives organizations a way to consolidate their data in a single accessible location, yet keep the data separate. This allows for global views and/or isolated views restricted by access controls by company or business unit.
Read full review
reviewer1685601 - PeerSpot reviewer
reviewer1685601
Digital Security VP at a tech services company with 201-500 employees
Oct 1, 2021
In traditional BI solutions, you need to wait a lot of time to have the ability to create visualizations with the data and to do searches. With this kind of platform, you have that information in real-time.
Read full review
it_user1610094 - PeerSpot reviewer
it_user1610094
Cyber Security Engineer at H&R Block, Inc.
Jun 23, 2021
The most valuable feature is definitely the ability that Devo has to ingest data. From the previous SIEM that I came from and helped my company administer, it really was the type of system where data was parsed on ingest. This meant that if you didn't build the parser efficiently or correctly, sometimes that would bring the system to its knees. You'd have a backlog of processing the logs as it was ingesting them.
Read full review
Show 10 more reviews (out of 23)
 

Devo Cons review quotes

FR
Francisco JavierRomo
Strategic Account Executive at a computer software company with 51-200 employees
Oct 22, 2025
The tools in Devo's active ports need enhancement in their investigative capabilities.
Read full review
Michael Wenn - PeerSpot reviewer
Michael Wenn
CEO / Co-Founder at Aiops ltd
Aug 2, 2024
They can improve their AI capabilities
Read full review
JB
JohnBusch
Security Engineer at Kforce
Oct 7, 2022
Some of the documentation could be improved a little bit. A lot of times it doesn't go as deep into some of the critical issues you might run into. They've been really good to shore us up with support, but some of the documentation could be a little bit better.
Read full review
Buyer's Guide
Devo
May 2026
Free Report: Devo Reviews and More
Learn what your peers think about Devo. Get advice and tips from experienced pros sharing their opinions. Updated: May 2026.
DOWNLOAD NOW
893,221 professionals have used our research since 2012.
reviewer1991436 - PeerSpot reviewer
reviewer1991436
IT Risk Manager at a recreational facilities/services company with 501-1,000 employees
Oct 14, 2022
There are some issues from an availability and functionality standpoint, meaning the tool is somewhat slow. There were some slow response periods over the past six to nine months, though it has yet to impact us terribly as we are a relatively small shop. We've noticed it, however, so Devo could improve the responsiveness.
Read full review
KG
KevinGolas
Director of World Wide Security Services at Open Text
Dec 7, 2021
We only use the core functionality and one of the reasons for this is that their security operation center needs improvement.
Read full review
it_user1689402 - PeerSpot reviewer
it_user1689402
Product Director at a insurance company with 10,001+ employees
Oct 7, 2021
One major area for improvement for Devo... is to provide more capabilities around pre-built monitoring. They're working on integrations with different types of systems, but that integration needs to go beyond just onboarding to the platform. It needs to include applications, out-of-the-box, that immediately help people to start monitoring their systems. Such applications would include dashboards and alerts, and then people could customize them for their own needs so that they aren't starting from a blank slate.
Read full review
reviewer1539015 - PeerSpot reviewer
reviewer1539015
Director at a security firm with 51-200 employees
Jul 17, 2023
My opinion on the solution's technical support is not as great as it could be because of the issues I have faced regarding the service management element.
Read full review
it_user1710261 - PeerSpot reviewer
it_user1710261
CEO at Analytica 42
Nov 30, 2021
Some basic reporting mechanisms have room for improvement. Customers can do analysis by building Activeboards, Devo’s name for interactive dashboards. This capability is quite nice, but it is not a reporting engine. Devo does provide mechanisms to allow third-party tools to query data via their API, which is great. However, a lot of folks like or want a reporting engine, per se, and Devo simply doesn't have that. This may or may not be by design.
Read full review
reviewer1685601 - PeerSpot reviewer
reviewer1685601
Digital Security VP at a tech services company with 201-500 employees
Oct 1, 2021
I would like to have the ability to create more complex dashboards.
Read full review
it_user1610094 - PeerSpot reviewer
it_user1610094
Cyber Security Engineer at H&R Block, Inc.
Jun 23, 2021
From our experience, the Devo agent needs some work. They built it on top of OS Query's open-source framework. It seems like it wasn't tuned properly to handle a large volume of Windows event logs. In our experience, there would definitely be some room for improvement. A lot of SIEMs on the market have their own agent infrastructure. I think Devo's working towards that, but I think that it needs some improvement as far as keeping up with high-volume environments.
Read full review
Show 10 more reviews (out of 23)

Product Categories

Product Categories
Log Management
Security Information and Event Management (SIEM)
IT Operations Analytics
AIOps

Popular Comparisons

Popular Comparisons
Wazuh vs Devo Logo
Wazuh vs Devo
Datadog vs Devo Logo
Datadog vs Devo
Splunk Enterprise Security vs Devo Logo
Splunk Enterprise Security vs Devo
Dynatrace vs Devo Logo
Dynatrace vs Devo
IBM Security QRadar vs Devo Logo
IBM Security QRadar vs Devo
Microsoft Sentinel vs Devo Logo
Microsoft Sentinel vs Devo
Splunk AppDynamics vs Devo Logo
Splunk AppDynamics vs Devo
New Relic vs Devo Logo
New Relic vs Devo
Cribl vs Devo Logo
Cribl vs Devo
Elastic Security vs Devo Logo
Elastic Security vs Devo
IBM Turbonomic vs Devo Logo
IBM Turbonomic vs Devo
LogicMonitor vs Devo Logo
LogicMonitor vs Devo
Palantir Foundry vs Devo Logo
Palantir Foundry vs Devo
Grafana Loki vs Devo Logo
Grafana Loki vs Devo
Elastic Observability vs Devo Logo
Elastic Observability vs Devo
See all alternatives

Product Categories

Product Categories
Log Management
Security Information and Event Management (SIEM)
IT Operations Analytics
AIOps

Popular Comparisons

Popular Comparisons
Wazuh vs Devo Logo
Wazuh vs Devo
Datadog vs Devo Logo
Datadog vs Devo
Splunk Enterprise Security vs Devo Logo
Splunk Enterprise Security vs Devo
Dynatrace vs Devo Logo
Dynatrace vs Devo
IBM Security QRadar vs Devo Logo
IBM Security QRadar vs Devo
Microsoft Sentinel vs Devo Logo
Microsoft Sentinel vs Devo
Splunk AppDynamics vs Devo Logo
Splunk AppDynamics vs Devo
New Relic vs Devo Logo
New Relic vs Devo
Cribl vs Devo Logo
Cribl vs Devo
Elastic Security vs Devo Logo
Elastic Security vs Devo
IBM Turbonomic vs Devo Logo
IBM Turbonomic vs Devo
LogicMonitor vs Devo Logo
LogicMonitor vs Devo
Palantir Foundry vs Devo Logo
Palantir Foundry vs Devo
Grafana Loki vs Devo Logo
Grafana Loki vs Devo
Elastic Observability vs Devo Logo
Elastic Observability vs Devo
See all alternatives
Related questions
  • 90
When evaluating Log Management tools and software, what aspect do you think is the most important to look for?
  • 445
Datadog vs ELK: which one is good in terms of performance, cost and efficiency?
  • 93
Which Windows event log monitoring tool do you recommend?
  • 85
What is the difference between log management and SIEM?
  • 80
Splunk vs. Elastic Stack
  • 52
How can Cloudtrail logs be used effectively to improve log monitoring?
  • 130
Why hot data and cold data differences in SIEM solutions are not discussed sufficiently?
  • 177
When evaluating Log Management solutions, what aspect do you think is the most important to look for?
  • 69
When evaluating Log Management solutions, what aspects do you think are the most important to look for?
  • 57
Why are Log Management tools important for companies?