- Product
Product Overview
Sophisticated security with unmatched simplicityCloud SIEM
Pre-configured detections across your environmentHoneypots
Deception technology to detect lateral movementEndpoint Visibility
Real-time monitoring with added detection & responseSecurity Reports
Data visualizations, compliance reports, and executive summariesAutomated Response
Detect, prioritize, and neutralize threats around the clockIntegrations
Cloud, on-prem, and open API connectionsXDR Platform
A complete view to identify risk, and things operational
- Pricing
- Why Blumira
Why Blumira
The Security Operations platform IT teams loveWatch A Demo
See Blumira in action and how it builds operational resilienceUse Cases
A unified security solution for every challengePricing
Unlimited data and predictable pricing structureCompany
Our human-centered approach to cybersecurityCompare Blumira
Find out how Blumira stacks up to similar security toolsIntegrations
Cloud, on-prem, and open API connectionsCustomer Stories
Learn how others like you found success with Blumira
- Solutions
- Partners
- Resources
SIEM Starter
$12
per employee/month
Pricing is based on the total number of “employees” or knowledge workers in your organization (it does not refer to the number of users or admins with Blumira accounts). A knowledge worker is an employee with a corporate email address and workstation/device (may not include number of factory workers or students at a university).
This helps us determine a more accurate estimate of the amount of data you are sending to our platform.
All cloud integrations & managed detections
-
Access to sensors
-
Log collection & threat analysis
-
Real-time detections
-
Detection filters
-
Response playbooks
-
Advanced dashboards & compliance reports
-
1 year retention
-
Notifications (voice, email & text)
-
Concierge support (9am-8pm ET)
SIEM+
$16
per employee/month
Pricing is based on the total number of “employees” or knowledge workers in your organization (it does not refer to the number of users or admins with Blumira accounts). A knowledge worker is an employee with a corporate email address and workstation/device (may not include number of factory workers or students at a university).
This helps us determine a more accurate estimate of the amount of data you are sending to our platform.
-
Endpoint detection & response (EDR)
-
Manual threat response (compromised user lockout & host isolation)
-
Dynamic blocklists
-
Honeypots
-
Blumira Investigate
-
1 year retention, with longer term retention available
-
24/7 incident support
-
Dedicated CSM & external threat assessments
XDR
$21
per employee/month
Pricing is based on the total number of “employees” or knowledge workers in your organization (it does not refer to the number of users or admins with Blumira accounts). A knowledge worker is an employee with a corporate email address and workstation/device (may not include number of factory workers or students at a university).
This helps us determine a more accurate estimate of the amount of data you are sending to our platform.
-
SOC Auto-Focus for AI threat analysis and investigation
-
Automated threat response (host isolation & dynamic blocklists)
-
API Access
-
1 year retention, with longer term retention available
-
White glove onboarding included
Support You Need,
How & When You Need It
Blumira support is unparalleled, with four dedicated teams that consistently achieve a 99.7% customer satisfaction rating. Our support teams pride themselves on providing lightning-fast response times – 26 minutes on average.
Incident Detection Engineers
Security Operations
Solution Architects
Customer Success Managers
Compare Blumira Editions
Easily meet compliance with SIEM data retention, security reporting, 24/7 SecOps and more.
SIEM Starter
Meet compliance standards and expanded visibility and security coverage with all cloud integrations
SIEM+
Enhanced protection with more on-prem integrations and 24/7 incident support
XDR
Stop threats faster with comprehensive coverage, automated security features and white-glove onboarding
DATA
Data Ingestion
Unlimited
Unlimited
Unlimited
Data Retention
1 year
1 year
1 year
Long Term Storage Options
INGESTION
Cloud Connectors
On-Prem Sensors
ENDPOINT SECURITY
Endpoint Detections
Via Sensor
Blumira Agent
Blumira Agent
Agents Included
1 per employee
1 per employee
Ability To Buy Additional Agents
Endpoint Visibility
LOGGING
Log Collection
Threat Analysis
DETECTION
Managed Detection
Detection Rule Insight
Detection Rule Management
Detection Filters
Custom Detections Available
EDR
Sensor Detections
AUTOMATED RESPONSE
SOC Auto-Focus AI Analysis
Automated Dynamic Blocklists
Automated Host Isolation for Agent
MANUAL RESPONSE
Response Playbooks
Manual Host Isolation for Agent
Manual Dynamic Blocklists
Compromised User Lockout
DASHBOARDS
Dashboard Summary
Advanced Dashboards
Reporting
Saved Reports
Advanced
Advanced
Advanced
Compliance Reports
Advanced
Advanced
Advanced
Report Builder
Blumira Investigate
Executive Summaries
Quarterly only
Deception Technology
Honeypots
SPECIAL OFFERS
Trava Compliance Services
20% Off
20% Off
20% Off
FounderShield Insurance
20% Off
20% Off
20% Off
Additional Functionality
API
SAML
Notifications
+ Support
Notifications (Voice, Text, Email)
White Glove Onboarding (One Time Fee - Required)
$250
$500
Included
Concierge Support (9am - 8pm ET)
24/7 Incident Support
External Threat Surface Assessment (Biannually)
Dedicated CSM + Recurring Syncs (Quarterly)
Free SIEM
Get real security value with out-of-the-box detection and response for up to 3 cloud integrations in minutes
DATA
Data Ingestion
Limited
Data Retention
14 Days
Long Term Storage Options
Ingestion
Cloud Connectors
Up to 3
On-Prem Sensors
Endpoint Security
Endpoint Detections
Agents Included
Ability To Buy Additional Agents
Endpoint Visibility
Logging
Log Collection
Threat Analysis
Detection
Managed Detection
Real-time only
Detection Rule Insight
Detection Rule Management
Detection Filters
Custom Detections Available
EDR
Automated Response
Automated Dynamic Blocklists
Automated Host Isolation for
Manual Response
Response Playbooks
Manual Host Isolation for Agent
Manual Dynamic Blocklists
Compromised User Lockout
dashboards
Dashboard Summary
Advanced Dashboards
Reporting
Saved Reports
Basic
Compliance Reports
Basic
Report Builder
Blumira Investigate
Executive Summaries
Deception Technology
Honeypots
SPECIAL OFFERS
Trava Compliance Services
FounderShield Insurance
AdditionalFunctionality
API
SAML
Notifications
+ Support
Notifications (Voice, Text, Email)
Email Only
White Glove Onboarding (One Time Fee - Required)
Concierge Support (9am - 8pm ET)
Emergency After Hours Support (24/7 for Critical Priority Issues)
External Threat Surface Scans (Biannually)
Dedicated CSM + Recurring Syncs (Quarterly)
SIEM Starter
Meet compliance standards and expanded visibility and security coverage with all cloud integrations
DATA
Data Ingestion
Unlimited
Data Retention
1 year
Long Term Storage Options
INGESTION
Cloud Connectors
On-Prem Sensors
ENDPOINT SECURITY
Endpoint Detections
Via Sensor
Agents Included
Ability To Buy Additional Agents
Endpoint Visibility
LOGGING
Log Collection
Threat Analysis
DETECTION
Managed Detection
Detection Rule Insight
Detection Rule Management
Detection Filters
Custom Detections Available
EDR
Sensor Detections
AUTOMATED RESPONSE
Automated Dynamic Blocklists
Automated Host Isolation for Agent
MANUAL RESPONSE
Response Playbooks
Manual Host Isolation for Agent
Manual Dynamic Blocklists
Compromised User Lockout
DASHBOARDS
Dashboard Summary
Advanced Dashboards
Reporting
Saved Reports
Advanced
Compliance Reports
Advanced
Report Builder
Blumira Investigate
Executive Summaries
Quarterly only
Deception Technology
Honeypots
SPECIAL OFFERS
Trava Compliance Services
20% Off
FounderShield Insurance
20% Off
Additional Functionality
API
SAML
Notifications
+ Support
Notifications (Voice, Text, Email)
White Glove Onboarding (One Time Fee - Required)
$250
Concierge Support (9am - 8pm ET)
Emergency After Hours Support (24/7 for Critical Priority Issues)
External Threat Surface Scans (Biannually)
Dedicated CSM + Recurring Syncs (Quarterly)
SIEM +
Enhanced protection with more on-prem integrations and 24/7 emergency security support
DATA
Data Ingestion
Unlimited
Data Retention
1 year
Long Term Storage Options
INGESTION
Cloud Connectors
On-Prem Sensors
ENDPOINT SECURITY
Endpoint Detections
Blumira Agent
Agents Included
1 per employee
Ability To Buy Additional Agents
Endpoint Visibility
LOGGING
Log Collection
Threat Analysis
DETECTION
Managed Detection
Detection Rule Insight
Detection Rule Management
Detection Filters
Custom Detections Available
EDR
AUTOMATED RESPONSE
Automated Dynamic Blocklists
Automated Host Isolation for Agent
MANUAL RESPONSE
Response Playbooks
Manual Host Isolation for Agent
Manual Dynamic Blocklists
Compromised User Lockout
DASHBOARDS
Dashboard Summary
Advanced Dashboards
Reporting
Saved Reports
Advanced
Compliance Reports
Advanced
Report Builder
Blumira Investigate
Executive Summaries
Deception Technology
Honeypots
SPECIAL OFFERS
Trava Compliance Services
20% Off
FounderShield Insurance
20% Off
Additional Functionality
API
SAML
Notifications
+ Support
Notifications (Voice, Text, Email)
White Glove Onboarding (One Time Fee - Required)
$500
Concierge Support (9am - 8pm ET)
Emergency After Hours Support (24/7 for Critical Priority Issues)
External Threat Surface Scans (Biannually)
Dedicated CSM + Recurring Syncs (Quarterly)
XDR
Stop threats faster with comprehensive coverage, automated security features and white-glove onboarding
DATA
Data Ingestion
Unlimited
Data Retention
1 year
Long Term Storage Options
INGESTION
Cloud Connectors
On-Prem Sensors
ENDPOINT SECURITY
Endpoint Detections
Blumira Agent
Agents Included
1 per employee
Ability To Buy Additional Agents
Endpoint Visibility
LOGGING
Log Collection
Threat Analysis
DETECTION
Managed Detection
Detection Rule Insight
Detection Rule Management
Detection Filters
Custom Detections Available
EDR
AUTOMATED RESPONSE
Automated Dynamic Blocklists
Automated Host Isolation for Agent
MANUAL RESPONSE
Response Playbooks
Manual Host Isolation for Agent
Manual Dynamic Blocklists
Compromised User Lockout
DASHBOARDS
Dashboard Summary
Advanced Dashboards
Reporting
Saved Reports
Advanced
Compliance Reports
Advanced
Report Builder
Blumira Investigate
Executive Summaries
Deception Technology
Honeypots
SPECIAL OFFERS
Trava Compliance Services
20% Off
FounderShield Insurance
20% Off
Additional Functionality
API
SAML
Notifications
+ Support
Notifications (Voice, Text, Email)
White Glove Onboarding (One Time Fee - Required)
Included
Concierge Support (9am - 8pm ET)
Emergency After Hours Support (24/7 for Critical Priority Issues)
External Threat Surface Scans (Biannually)
Dedicated CSM + Recurring Syncs (Quarterly)
Customers Love Blumira
Hear what our clients are saying.
“For a certain size of customer with no staff or only one security staff member, Blumira is an absolute godsend.”
Jason Waits
CISO, Inductive Automotive
“The system is very easy to understand and implement and they do ALL the heavy lifting for you. I can't express this enough. My small team has found it to be a very affordable and efficient product not only notifying us of things we otherwise wouldn't detect but also teaching us things we didn't know we needed to know! ”
Casey S.
IT Leader, small business
“Overall, Blumira is an AWESOME hosted SIEM/MDR solution at an extremely reasonable price point. It's also a fraction of the cost [of a traditional SIEM], and top-notch support is included in the price.”
Jon I.
Principle Consultant, mid-sized business