Blumira: The SIEM and XDR Security Tool for IT & MSP Teams [YouTube Release]

Additional Resources:

For Internal IT Teams

For The MSP

Connecting With Us

Lawrence Systems Shirts and Swag



Amazon Affiliate Store

All Of Our Affiliates that help us out and can get you discounts!
:shopping_cart: Affiliates We Love - Lawrence Technology Services

Gear we use on Kit
:shopping_cart: Kit

Use OfferCode LTSERVICES to get 10% off your order at
:shopping_cart: Tech Supply Direct - Refurbished Tech at Unbeatable Prices

Digital Ocean Offer Code
:shopping_cart: DigitalOcean | Cloud Hosting for Builders

HostiFi UniFi Cloud Hosting Service
:shopping_cart: HostiFi - UniFi Cloud Hosting

Protect you privacy with a VPN from Private Internet Access
:shopping_cart: Buy VPN with Credit Card or PayPal | Private Internet Access

:moneybag: lawrencesystems | creating Tech Tutorials & Reviews | Patreon

Time Stamps
00:53 - What is Blumira
02:14 - Blumira Firewall intergrations
03:04 - Blumira Windows Agents Deployments
03:47 - Summuary Reporting
07:00 - Blumira Dashboard Overview
10:28 - Viewing Logs & Reports
12:24 - Security Detection and Findings
15:32 - Detection Rule Tuning
17:54 - Device Installation and Cloud Connectors

Thanks for this video. I’m currently looking for a toolset for my MSP for proper tracking logs/metrics/compliance standards and it feels like the wild west out there. There are a lot of options but it’s not clear what features each tool provides, or even what their cost is, since many companies hide that.

What is Lawrence Systems currently using for their monitoring and security stack? Currently I have Graylog running, but it’s only collecting logs from my primary firewalls.

You can look at wazuh too. It’s actually above and beyond graylog and have more features.

I did try Wazuh, and maybe it was my limited experience, but I found major issues with its design in that it seemed that every endpoint would have to be manually configured. And while there was an option to allow endpoints to be centrally configured… you still had to manually modify each endpoint to allow for that.

I did reach out to Blumira for a trial license. I like how it appears to be designed for MSPs. I’m looking to monitor about 1500 endpoints across dozens of clients.

Wazuh is an interesting and good tool but very basic and much more manual as compared to Blumira.

At CNWR (the IT /MSP side of my company) we are using Blumira for our clients that have the requirement for SIEM and it works well.