Proofpoint logo

LogPoint: creating the best SIEM in the world.

LogPoint is the creator of a reliable, innovative cybersecurity operations platform — empowering organisations worldwide to thrive in a world of evolving threats.

By combining sophisticated technology and a profound understanding of customer challenges, LogPoint bolsters security teams’ capabilities while helping them combat current and future threats. LogPoint offers SIEMUEBA, and SOAR technologies in a complete platform that efficiently detects threats, minimises false positives, autonomously prioritises risks, responds to incidents, and much more.

Why LogPoint

Fast detection

Make better-informed decisions fast with industry-leading user and entity behaviour analytics (UEBA). Powered by machine learning, UEBA helps identify abnormal behaviour and insider threats.

Easy to use

The unique user interface is easy to learn, even for novice users, and includes state-of-the-art visualisation tools for fast analytics and rich reporting.


Get up-and-running faster than any other SIEM solution. See results within days from out-of-box integrations and predefined use cases, dashboards, and reports.

Predictable costs

Based on the number of nodes, true predictable pricing gives you a total cost of ownership with no surprises. Get peace-of-mind that prices won’t change due to increasing data loads.

Unmatched certification

Their EAL3+ certification allows customers with the most stringent security requirements to place their trust in them and their reputation for superior security.


LogPoint is built on a customer-first culture. Like Trustmarque, they go the extra mile to solve problems and regularly include customer suggestions and feature requests in our roadmap

Trustmarque and LogPoint

Trustmarque is a LogPoint Gold Partner, aligned to reflect the commitments and expertise Trustmarque have invested in the LogPoint solutions. This enables us to provide expert knowledge and advice across their portfolio. For LogPoint, partnerships are key to ensure the best possible customer engagements. We are able to provide the highest levels of advice and technical expertise for the SIEM market and the LogPoint solutions.

Request your SIEM overview and deep-dive technical demonstration.

Logpoint Gold Certified Partner

Affordable and scalable SIEM

LogPoint’s modern Security Incident and Event Management (SIEM) solution provides monitoring, detection, and alerting of security events or incidents within an IT environment. It provides a comprehensive and centralised view of the security posture of an IT infrastructure and enables enterprise security professionals to view activities within their environment.

LogPoint SIEM is scalable and is purchased on a license model based on a number of devices sending log information rather than volumes of data. This ensures full predictability on ongoing costs whilst providing unlimited data volumes.

Scalable from 50 devices to Enterprise installations, the architecture is fully scalable and able to align from SMB or Global multinational organisations. LogPoint also has key vertical offerings aligned to NHS, Local Government, and Universities – providing extremely cost-effective solutions with a set cost aligned to an unlimited license.

SIEM dashboard

The LogPoint SIEM solution is valued for its ease of use and quick Time to Value (TTL) and the ability to provide a fit for purpose agile solution. For LogPoint it’s not just about providing technology, it also ensures our customers get the value out of their investment.

Providing out of the box integrations with over 430 technologies, each with a fully pre-configured dashboard, alerts, and reports ensures ease of use and quick relevance. This means the solutions can be installed, configured, and relevant extremely quickly – with the typical installation utilising the CORE SIEM installation bundle undertaken in FIVE days.

As part of this installation bundle, LogPoint certified engineers work hand in hand with you to ensure full knowledge transfer is undertaken as part of the activity. Leaving you with a working solution your teams completely understand and know how to leverage.

In addition to this, the LogPoint support team will be onboarded as part of the installation. LogPoint support ensures an ongoing expert wrap around the environment, with customers able to log tickets to request assistance and guidance on who to leverage the technology as their environment changes and grows.

LogPoint SOAR

The end of 2021 brings the launch of LogPoint’s new SOAR offering – LogPoint SOAR. This is an innovative Security Orchestration, Automation, and Response (SOAR) solution that brings cybersecurity efficiency and effectiveness to businesses of all sizes. LogPoint SOAR is integrated as part of the core SIEM which now offers a complete cybersecurity platform to protect against current and future threats. To find out more download the brochure.

Further Solutions

LogPoint UEBA

LogPoint user and entity behaviour analytics (UEBA) helps your security team better respond to threats. UEBA tools analyse the behaviour of users and entities, such as hosts, devices, files and transactions, to find suspicious or malicious behaviours and patterns.

Using machine learning, LogPoint UEBA builds baselines for every entity in the network, without creating predefined rules or signatures. By evaluating actions against baselines, UEBA detects the unknowns and frees up time for security analysts to focus on finding real threats.

Combining UEBA and security information and event management (SIEM) helps your security team effectively monitor and react to unusual activities.

LogPoint UEBA

LogPoint for SAP

To detect and respond to fraud and cyberattacks, organisations need to monitor the entire network, including IT infrastructure, cloud applications and business-critical SAP systems. SAP is one of the most critical applications in an organisation, and it is often not part of the security monitoring solution. LogPoint for SAP bridges the gap between SAP and SIEM solutions. With LogPoint for SAP, organisations can continuously monitor their SAP data to detect threats and maintain compliance within SAP. It also provides a broad set of SAP extractors that feed SAP data, such as database data, system settings, logs and events from various SAP security sources into SIEM.

Case study: University of Winchester stays on point with their cybersecurity

Since the pandemic, universities have faced ongoing attacks from cybercriminals who mistakenly see these institutions as ‘a soft touch’. Not only are they increasingly seen as sources of valuable personal information, but attackers also know that disruptions are hugely damaging to a university’s reputation.

The attackers aim to swiftly take down telephone systems, student databases, and library resources for days, if not weeks, stalling students’ progress. Attackers are under the impression that this makes them prime targets for attacks and ransomware. However, what is actually going on behind the scenes in IT departments at some UK universities is a sight for SOAR (Security Orchestration, Automation, and Response) eyes.

“The work with Trustmarque and LogPoint opened our eyes to what could and should be monitored. My advice would be don’t be selective in what you monitor. Monitor everything, even things like chip and PIN machines on your network need to be accounted for, not just computers in the library.” 

Nigel Walters, Senior Systems Specialist, University of Winchester

The University of Winchester is a public research university based in the city of Winchester, Hampshire. The university has origins tracing back to 1840, but was established in 2005.

Winchester University is a member of The Cathedrals’ Group (officially the Council of Church Universities and Colleges or CCUC), an association of universities and university colleges in the United Kingdom. It currently has just under 7,000 students and circa 1,000 members of staff.

Watch the Faster detection and response with MITRE ATT&CK presentation

In this webinar, LogPoint will look at how security analysts can use the ATT&CK framework to quickly understand how an alert relates to a significant attack so they can take the necessary steps to protect their business.

Follow LogPoint