Building your Cybersecurity or SD WAN vendor shortlist? Try our online quick assessments for recommendations.

Elastic Cognitive Search, Insight Engine & Cybersecurity Solutions

Sector, Company Type, and Location:Manufacturing  |  Healthcare  |  Retail  |  Utilities  |  Education  |  Media  |  Financial Services  |  Government  |  Construction  |  Transportation  |  Energy  |  Professional Services  |  Vendor  |  Europe  |  Asia  |  Australia  |  UK  |  North America
Tags & Search Filters:XDR  |  SIEM

Elastic offers a range of security, cloud and log management services, built on the Elastic ELK Stack, with managed cloud offerings for AWS, Azure and Google Cloud Platform.

Elastic Cognitive Search, Insight Engine & Cybersecurity Solutions
Summary

Elastic Cognitive Search, Insight Engine and Cybersecurity: Comparisons, Review, Benefits, Use Cases, Pros & Cons

Author: Netify Research Team

If you have questions about Elastic and how their capability is aligned to your needs, email the Netify research team.
UK: uk@netify.co.uk North America: northamerica@netify.com

(Please use the UK email for ROW - Rest of the World - questions or inquiries)

Resources and Downloadable Content
Request the very latest Elastic data sheet PDF directly from your local account team. Please check your junk folder if not received.
Book a demo of the Elastic capability over Zoom or Teams. Learn about their management portal, deployment, SLA and support. You will receive an email asking for times/dates, please check your junk folder if not received.
Request your local in-country sales contact. You will receive details as soon as possible - please check your junk folder if not received.
Review

Netify Review

Elastic offers a security (SIEM) and log management platform which is suitable for companies looking for a robust security stack to compliment existing connectivity solutions. The platform is not a SASE and does not offer any network underlay or overlay. 

Elastic Cloud uses SaaS applications to deploy and manage Elastic services from the cloud. Available in SME and Enterprise offerings, as well as being deployable in Kubernetes. The solution is very scalable, allowing clients to modify solutions to suit their business needs. 

The solution does offer a free service tier, however most companies will require paid tiers for more complex feature requirements. Previous customer reviews suggest that log management features are strong, although Elastic support is known to be weaker than other vendors in the market - often available only via email. 

Marketplace Assistance

Are you an IT decision maker building your own SD WAN or SASE Cybersecurity shortlist?

Take our 90 second assessment quiz to find out which top 3 vendors or managed providers are a match for your answers.

About

About Elastic

Elastic was founded by Shay Banon, Steven Schuuurman, Uri Boness and Simon Willnauer in Amsterdam, Netherlands in 2012 when it was known as Elasticsearch and is currently headquartered in California, United States. In 2021, Elastic was recognised as a challenger Gartner Magic Quadrant for Insight Engines, as well as a Leader in the Forrester Wave for Q3 Cognitive Search.

The company acquired Swiftype for search and index software, endgame for endpoint security and build.security, a cloud security company with Infrastructure Detection and Response (IDR) and policy and compliance tools. 

Pros & Cons

What are the pros and cons of the Elastic cybersecurity solution?

List of the pros and cons associated with Elastic Cognitive Search, Insight Engine & Cybersecurity

Pros

  • offers a wide range of easily integrated security and log management features 
  • good choice for SMEs, as part of their service offering is a free service tier

Cons

  • poor support services often only available via email
  • although there is a free service tier, most companies will find that they require paid services for more complex requirements 
Products and Services

What products and services do Elastic offer?

  • Elastic Enterprise Search: an open search platform for database search, e-commerce, enterprise system offloading, customer support and workplace content websites or any application.
  • Elastic Observability: observability platform built on the Elastic Stack (converges silos and delivers unified visibility and actionable insights).
  • Elastic Security: includes SIEM, endpoint security, Extended Detection and Response (XDR), threat hunting and cloud security. 

Elastic (ELK) Stack:

  • Elasticsearch: a search and analytics engine designed to store data for improved search speeds. 
  • Kibana: allows clients to visualise their Elasticsearch data and offers an interface to navigate the Elastic Stack. 

SaaS:

  • Elastic Cloud: managed cloud services deployable in public and multi-clouds (AWS, Azure, Google Cloud Platform).

Orchestration:

  • Elastic Cloud Enterprise: scaled up cloud services for enterprise-level deployments.
  • Elastic Cloud Kubernetes: run Elastic Cloud and Kibana in Kubernetes. 
Endpoint Protection

What is the Elastic Security Solution?

Elastic Endpoint Detection and Response (EDR) is designed to prevent ransomware and malware attacks on endpoints such as macOS, Windows and Linux. It does this by host-based behaviour analytics and endpoint security, with corroboration to minimise the risk of false positives, with remote response action across distributed endpoints. 

The solution enhances SecOps visibility with dashboards, turnkey data collection and the ability to inspect hosts using Osquery for further context. 

The solution can be deployed in any environment, including hybrid networks and Faraday Cage when connecting to the cloud. Flexible licensing means no per-endpoint pricing, no high-stakes device count predictions and no artificial data caps. 

Funding

Funding Rounds

2012$10M
2013$24M
2014$70M
2016$58M
Cloud Vendors

How does Elastic access cloud vendors?

Elastic Cloud allows clients to deploy Elastic Products in public, private and hybrid clouds and is available from AWS, Azure and Google Cloud. Elastic Cloud comes with built-in security 

Cloud Access

Cloud Access

Amazon Web Services40
Microsoft Azure25
Google Cloud Platform35
Security Information and Event Management (SIEM)

Elastic SIEM

Elastic offer unified SIEM which includes threat detection and response capabilities across all IT environments. The solution handles data by pentabyte and includes direct access to years of archives stored in applications such as S3 in order to better understand current attacks. 

The solution uses a single unified agent to block ransomware and malware with uniform analysis from Elastic Common Schema. Behaviour-based rules automate the detection of suspicious activity whilst analysing threat behaviour. This will prioritise threats in alignment with the MITRE ATT&CK framework. Further anomaly detection, built by Machine Learning (ML) detects unknown threats. The solution can integrate with SOAR and ticketing workflow integrations. 

Security Stack

What is the Elastic Security Stack Platform?

The Elastic Security Stack (also known as the ELK Stack) offers:

  • Elasticsearch: a distributed JSON-based engine that can search, analyse and store data. 
  • Kibana: visualises data using waffle charts and heatmaps, with preconfigured dashboards for diverse data sources, live presentations and the ability to manage the solution from a single UI. 
  • Strong capability for integration with Beats and Logstash, amongst others. 
Managed, co-managed & DIY services

What is the Elastic managed, co-managed and DIY services solution?

Managed Elasticsearch and Kibana for AWS, Azure and Google Cloud is Elastic's managed cloud offering with options to add machine learning features and hot-warm architectures for logging use cases. 

Clients will receive support from from the Elastic engineering team and are able to trial the service for free for 14 days before paying. 

Frequently Asked Questions
Who are Elastic's partners?
What regulations does Elastic comply with?
Ask a question

Send your local contact from Elastic a message, this form will reach Elastic directly.

Contact Elastic
Complete the form to get in touch with a representative from Elastic.
Report

Download the the complete guide to 10 SD WAN solutions.

The most comprehensive top 10 guide we have ever created.

Similar Companies

There are no results matching your selection.

Deployments

Deployment Region

Europe, Middle East and Africa40%
North America30%
Asia/Pacific20%
Latin America10%
Proposition Focus

Proposition Focus

Features3
SASE/Security4
Cloud4
SD WAN1
Industries

Industry Coverage

Services15%
Finance12%
Manufacturing10%
Other10%
Healthcare9%
Communications8%
Retail6%
Education6%
Media5%
Construction6%
Transportation4%
Government5%
Energy and Utilities4%
List your business

List your business with Netify Learn More →

Geographic

Geographic Focus

EMEA35
APAC25
Americas40
Please complete the form to ask a question or send a message directly to Elastic. Netify have carefully curated global sales contacts based on your IP location. If you do not receive contact, please check your junk folder.
Book a demo of the Elastic capability over Zoom or Teams. Learn about their management portal, deployment, SLA and support. You will receive an email asking for times/dates, please check your junk folder if not received.
A Netify Vendor Briefing is a 30 minute Zoom research session for IT decision makers, and an opportunity to learn about the vendors products, services and business strategies specifically or a related technology or market. We'll also discuss their competitors and which other solutions your business should consider. If you do not receive contact, please check your junk folder.
Netify is the first dedicated global SD WAN & SASE comparison marketplace.

List Your Business