Devo Reviews

Name: Devo
Brand: Devo
Rating: 4.2 (23 reviews)

Vendor: Devo

4.2 out of 5

23 reviews
95% willing to recommend

Leave a review

What is Devo?

Devo offers powerful visual analytics, real-time data querying, and log integration capabilities within a cloud-native, multi-tenant architecture, supporting extended data retention ideal for long-term analysis and compliance.

Get the Devo Buyer's Guide and find out what your peers are saying about Devo, Wazuh, Datadog and more!

Devo is the #7 ranked solution in top IT Operations Analytics solutions, #19 ranked solution in top AIOps solutions, #26 ranked solution in top Security Information and Event Management (SIEM) solutions, and #27 ranked solution in Log Management Software. PeerSpot users give Devo an average rating of 8.4 out of 10. Devo is most commonly compared to Wazuh: Devo vs Wazuh. Devo is popular among the large enterprise segment, accounting for 42% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 13% of all views.

Helped 893,221 peers since 2012

Featured Devo reviews

Francisco JavierRomo

Strategic Account Executive at a computer software company with 51-200 employees

The data analytics cloud component focuses on real-time analytics, which is very impressive. The SIEM collects and correlates logs data from different sources and can integrate with ServiceNow, hardware asset management, and software asset management. The security orchestration, automation, and response (SOAR) is another valuable feature. The security data platform serves as the foundation of Devo. Regarding advanced query capabilities, Devo offers several models including query logs, visual query builder, language integrated query, and SQL, with SQL being the most frequently used querying data capability. The single pane of glass that Devo offers is the SOC. The tools in Devo's active ports are for investigating, not just viewing data. They are more interactive than other market solutions. The drill-down reports capabilities allow analysts to click on any element in a widget. When they see a spike in a line chart for a failed login, which could be a true or false attempt, they can click that spike, and a table widget on the same active board instantly populates with raw logs of data for those specific failed logins. This is particularly important for enterprise companies with numerous endpoints and users. The dynamic filtering of inputs significantly reduces the time cybersecurity analysts spend trying to figure out failed logins and identifying false positives.

Read full review

Michael Wenn

CEO / Co-Founder at Aiops ltd

When it comes to scale, they're architected quite well. They handle some of the biggest customers globally, with significant throughput on their platform, managing thousands of customers. One of the most impressive aspects of Devo is its customer community. A large majority, over 80 percent of their customers, actively participate on a Devo-specific community page. They're contributing to product development and support, events, and user group information, helping each other out. This high level of engagement is rare and demonstrates both the loyalty of their customer base and the quality of their product. They offer a range of small, medium, and large options to cater to everyone. I sold Devo products while working with them, focusing on enterprise solutions. However, as a small reseller, my customers were typically smaller businesses. I rate the solution's scalability a nine out of ten.

Read full review

JohnBusch

Security Engineer at Kforce

The most useful feature for us, because of some of the issues we had previously, was the simplicity of log integrations. It's much easier with this platform to integrate log sources that might not have standard logging and things like that. Alerting is very easy to set up and use, and it's pretty robust. It takes a lot of ingests. We had some issues previously where we were overwhelming our old SIEM. We were setting too many logs, and it couldn't handle the load. That's why we looked for something that could have much higher rates of ingestion. The fact that the solution manages 400 days of hot data was a huge selling point. In our organization, we have to have 365 days of hot data all the time, and licensing that with other solutions was extremely expensive.

Read full review

Devo mindshare

Product category:

As of May 2026, the mindshare of Devo in the Log Management category stands at 1.2%, up from 0.6% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Log Management Mindshare Distribution
Product	Mindshare (%)
Devo	1.2%
Splunk Enterprise Security	6.8%
Wazuh	5.4%
Other	86.6%

Log Management

PeerResearch reports based on Devo reviews

Type	Title	Date
Category	Log Management	May 9, 2026	Download
Product	Reviews, tips, and advice from real users	May 9, 2026	Download
Comparison	Devo vs Splunk Enterprise Security	May 9, 2026	Download
Comparison	Devo vs Wazuh	May 9, 2026	Download
Comparison	Devo vs Cribl	May 9, 2026	Download

Valuable Features

Devo's features most valued include its Activeboards for visual analytics and query capabilities. It handles real-time analytics and boasts high-speed search with flexible UI customization. The cloud-native architecture supports multi-tenancy and extensive log retention. Users appreciate the ability to perform complex queries and manage diverse data sources. Its integration with CyberChef further enhances data manipulation. The intuitive interface and seamless data ingestion streamline workflows and boost performance in security operations.

"More than anything, we have seen ROI in the amount of time saved during investigations."
"Because of the way Devo works, our onboarding time has shrunk by 50 percent at least."
"Overall, Devo is awesome, but it's got some room to grow."

Room for Improvement

Devo's browser-based interface can freeze during large searches. Users desire enhancements in graphical customization. Log parsing and parser updates are problematic. Integrations with cloud providers and SaaS systems like Salesforce need improvement. Reporting lacks customization. SecOps integration and workflow are unintuitive. Data ingestion can be unreliable and the platform's AI capabilities need refinement. Pricing and documentations need optimization. Users report slow responsiveness and desire more advanced monitoring features.

"It's stable but it's not extremely stable."
"The overall performance of extraction could be a lot faster, but that's a common problem in this space in general."
"The biggest area with room for improvement in Devo is the Security Operations module that just isn't there yet."

ROI

Devo enhances data processing speed, reducing mean time to remediation by approximately 50%. It offers significant time savings, better understanding of threats, and effective threat mitigation. Devo's scalability allows businesses to modernize their infrastructure, ingest large datasets, save on costs, and improve auditing processes. Users report financial and operational benefits from faster investigations and reduced licensing expenses, achieving visible returns shortly after implementation.

Pricing

Devo pricing is based on data ingestion per gigabyte, with a straightforward model often described as cost-competitive. While its model can result in unexpected costs due to metadata charges, many find it simple and inclusive, offering features like 400 days of storage. Some users note the risk of increased costs with unparsed logs, while others appreciate the lack of additional fees for functionalities. Enterprise buyers appreciate the predictability and value Devo offers relative to market peers.

"I rate the pricing a four on a scale of one to ten, where one is cheap, and ten is expensive."
"Devo is a hosted or subscription-based solution, whereas before, we purchased QRadar, so we owned it and just had to pay a maintenance fee. We've encountered this with some other products, too, where we went over to subscription-based. Our thought process is that with subscription based, the provider hosts and maintains the tool, and it's offsite. That comes with some additional fees, but we were able to convince our upper management it was worth the price. We used to pay under 10k a year for maintenance, and now we're paying ten times that. It was a relatively tough sell to our management, but I wonder if we have a choice anymore; this is where the market is."
"It's very competitive. That was also a primary draw for us. Some of the licensing models with solutions like Splunk and Sentinel were attractive upfront, but there were so many micro-charges and services we would've had to add on to make them what we wanted. We had to include things like SOAR and extended capabilities, whereas all those capabilities are completely included with the Devo platform.I haven't seen any additional fee."

Popular Use Cases

Organizations utilize Devo primarily for security operations, serving as a central repository for log aggregation, correlation, and analytics. They implement it as a SIEM and big-data platform, deploying it in hybrid environments for visibility, alerting, and threat detection. Devo supports continuous monitoring and integrations with tools for endpoint protection, network traffic, and cloud logs. It assists SOCs in incident response and enriches data for monitoring cybersecurity events and business analytics.

Service and Support

Devo excels in responsiveness with excellent customer prioritization, offering fast replies and hands-on assistance. However, earlier-stage support, like onboarding, shows room for improvement. While professional services are praised, some note escalations could be smoother and documentation clearer. Customers appreciate dedicated support channels and efforts to address evolving needs, highlighting a strong partnership mindset. Despite varying assessment, many acknowledge Devo's commitment to resolving issues promptly and their adaptable approach fosters trust and collaboration.

Deployment

Initial setup with Devo tends to be straightforward. Credentials are easily obtained and relays can be set up within minutes. Devo's flexibility allows for quick data ingestion from various sources. Deployment time typically ranges from weeks to months, influenced by project scope. Teams appreciate Devo's documentation and support during the process. Most setup challenges come from unique organizational requirements, but Devo's flexibility accommodates different configurations efficiently. Maintenance demands minimal effort, enhancing resource allocation.

Scalability

Devo exhibits strong scalability due to its cloud-based architecture. Users appreciate its ability to handle data ingestion effectively. Many groups find it easy to expand as needed, with no significant limitations encountered. Resources and performance are managed efficiently, allowing it to support various teams and roles. Its scalability is praised for the flexibility and ease of scaling without operational issues. Multiple users confirm its strong performance across diverse organizations globally.

Stability

Users report Devo's stability is generally strong with minimal downtime or issues. Some note occasional slowdowns or bugs, yet others find it rock-solid, citing good uptime. Experiences vary, with some encountering infrequent, minor disruptions. SaaS management eases user burden, ensuring quick resolution. Devo's performance is praised by many, though a few see room for improvement in handling large volumes. Despite some inconsistencies, Devo maintains high stability ratings across different users.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Devo Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company Size	Count
Small Business	8
Midsize Enterprise	4
Large Enterprise	9

By reviewers

By visitors reading reviews
Company Size	Count
Small Business	115
Midsize Enterprise	63
Large Enterprise	130

By visitors reading reviews

Top industries

By visitors reading reviews

Financial Services Firm

13%

Construction Company

Computer Software Company

Outsourcing Company

Comms Service Provider

Manufacturing Company

Retailer

Performing Arts

Legal Firm

University

Educational Organization

Consumer Goods Company

Photography Company

Healthcare Company

Insurance Company

Marketing Services Firm

Government

Media Company

Non Profit

Logistics Company

Transportation Company

Hospitality Company

Recreational Facilities/Services Company

Energy/Utilities Company

Wholesaler/Distributor

Pharma/Biotech Company

Leisure / Travel Company

Compare Devo with alternative products

Learn more about Devo

Devo is recognized for its Activeboards, which facilitate visual analytics. High-speed search capabilities and real-time analytics enable efficient data manipulation and querying. Its multi-tenant architecture supports effective data segregation and customization tailored to distinct business needs, enhancing its value for handling complex log integrations. With extended data retention of 400 days and a cloud-native architecture, Devo is a robust platform for long-term analysis and compliance requirements. Though opportunities exist to improve browser stability on large searches, SOAR integrations, and its parser capabilities, Devo remains essential for incident response and security monitoring, offering centralized data storage and analysis.

What are Devo's most important features?

Activeboards: Facilitate visual analytics and data exploration.
High-Speed Search: Enables fast data querying and manipulation.
Real-Time Analytics: Supports instant insights and decision-making.
Multi-Tenant Architecture: Allows effective data segregation and customization.
Extended Data Retention: Offers 400-day log retention for compliance and analysis.
Complex Log Integration: Handles intricate data sources effortlessly.

What benefits and ROI should organizations look for in reviews?

Visual Insights: Enhance understanding through interactive dashboards.
Performance Efficiency: Saves time with high-speed data search and real-time results.
Customization Flexibility: Fits specific business requirements with multi-tenant architecture.
Long-Term Compliance: Ensures alignment with extended data retention needs.
Centralized Monitoring: Enables comprehensive incident response and security monitoring.

Devo is extensively used in industries focused on incident response and digital forensics, centralizing data for security monitoring across hybrid environments. Organizations benefit from its ability to store and analyze aggregated logs, creating alerts and dashboards to enhance visibility for network and endpoint activities in multi-domain settings.

Devo customers

United States Air Force, Rubrik, SentinelOne, Critical Start, NHL, Panda Security, Telefonica, CaixaBank, OpenText, IGT, OneMain Financial, SurveyMonkey, FanDuel, H&R Block, Ulta Beauty, Manulife, Moneylion, Chime Bank, Magna International, American Express Global Business Travel

Title	Rating	Mindshare	Recommending
Wazuh	3.7	5.4%	81%	50 interviews Add to research
Datadog	4.3	4.0%	97%	210 interviews Add to research

Author info	Rating	Review Summary
Strategic Account Executive at a computer software company with 51-200 employees	4.0	I find Devo effective for real-time analytics and SOC integration, offering user-friendly dashboards, though its investigative tools and regional support could improve. Compared to others, it’s moderately priced and simplifies analyst workflows, especially with ServiceNow integrations.
CEO / Co-Founder at Aiops ltd	4.0	In my review of Devo, I found it to be an effective SIEM replacement for centralizing security management with its cloud-first architecture. However, its AI capabilities need improvement, especially in event correlation, compared to competitors like SentinelOne.
Security Engineer at Kforce	4.5	Devo significantly improved our log integration and cloud visibility, handling high data ingestion with 400 days hot data. It boosted incident response and saved investigation time, with competitive pricing and great support delivering strong ROI.
IT Risk Manager at a recreational facilities/services company with 501-1,000 employees	3.5	We use Devo for historical logs and incident detection, valuing its broad log ingestion. Though easy to migrate from QRadar, it's expensive, sometimes slow, and incident detection wasn't fully as hoped. We rate it 7/10.
Director of World Wide Security Services at Open Text	4.5	I use Devo for managed SOC, valuing its multi-tenancy, broad log ingestion, and AWS-driven scalability for our diverse client needs. Its stability and ease of use are excellent, though advanced detection features could improve for us.
Product Director at a insurance company with 10,001+ employees	4.5	We adopted Devo for integrated security and operational monitoring, simplifying our complex multi-tool environment. Its stability, scalability, excellent support, and 400-day hot data are key benefits, though we seek more pre-built monitoring content.
Director at a security firm with 51-200 employees	4.0	Devo's most valuable features include log retention and Activeboards for insights and collaboration. While it's strong in analytics and platform durability, more customization options could enhance its service management. Overall, Devo shows promising potential for future improvements.
CEO at Analytica 42	4.5	As a reseller, I find Devo a scalable, cost-effective, cloud-native platform consolidating data for 400 days with excellent UI and analytics. While setup is easy and stability is great, a robust reporting engine is its main improvement area.

Devo Reviews

What is Devo?

Featured Devo reviews

Devo mindshare

PeerResearch reports based on Devo reviews

Valuable Features

Room for Improvement

ROI

Pricing

Popular Use Cases

Service and Support

Deployment

Scalability

Stability

Review data by company size

Top industries

Compare Devo with alternative products

Learn more about Devo

Devo customers

Related questions

Product Categories

Popular Comparisons