When TriGeo was acquired by SolarWinds, TriGeo SIM became known as SolarWinds Log & Event Manager. This product is a leading Security Information and Event Management (SIEM) product and log management solution, which provides log collection, analysis, and real-time correlation.
The most valuable features of SolarWinds Security Event Manager are its ability to search for past events, effectiveness in server, network, and log monitoring, IP address management, straightforward setup and scalability, File Integrity Monitoring, and customizable reports and alerts.
The product also offers compliance and security maintenance, log analysis capabilities, support for high availability, timely alerts, incidence analysis and knowledge, and valuable notification rules.
The product is stable and comprehensive.
Improvements that can be made to SolarWinds Security Event Manager include enhancing the ease of creating event alerts, addressing the high cost of the solution, providing more customization capabilities for posting events on devices, improving scalability for deployment across multiple environments, and simplifying the technical aspects of the program.
Users point out the solution needs improvements around enhancing correlation capabilities for faster event detection and improving integration with the IT framework for automation purposes.
SolarWinds Security Event Manager has proven to be beneficial in terms of return on investment. It helps in eliminating vulnerabilities to meet internal audit requirements, leading to a positive outcome from a security standpoint.
The solution has been effective in preventing potential losses from attacks.
Users have mentioned that the pricing and licensing for SolarWinds Security Event Manager are flexible, with options for yearly licenses or perpetual licenses for on-premises deployment. The cost is perceived as reasonable, although some uncertainty remains about the exact pricing.
SolarWinds Security Event Manager is primarily used for event management and log collection. It helps in identifying and preventing suspicious activities, as well as blocking known spyware or ransomware sites. It provides insights, email alerts, and app directory changes. The tool is used for compliance with audit requirements and is employed for investigation, troubleshooting, monitoring, and other fixed-log or event management tasks.
The customer service and support of SolarWinds Security Event Manager have received mixed feedback. Some customers have mentioned that the support is good and they have improved over the years. They have specialized teams for different aspects of the product and have expanded their offices globally. However, there are also customers who find it challenging to get in contact with support and have expressed dissatisfaction with the service.
The initial setup for SolarWinds Security Event Manager is generally considered to be easy and straightforward. It can be deployed quickly on a small network, but may be more challenging for larger and more complex networks with multiple remote locations and firewalls.
Some users encountered issues related to networks and firewalls during deployment yet received assistance from SolarWinds support.
The installation process is described as easy, even for non-technical users, and can be completed in a few hours. Once the solution is deployed, it typically only requires a small team or even just one person to monitor and manage it.
SolarWinds Security Event Manager is said to scale well, with the ability to add VMs for easy scaling.
The scalability depends on factors such as hardware and the number of licenses purchased.
There is an option for an "Unlimited" license that provides unlimited probes for different locations, although it comes at a higher cost compared to previous solutions.
Some users have experienced initial difficulties with defining certain hard drive aspects with ESXi, however, overall, the scalability is considered good.
That said, there are also some concerns about scalability, particularly regarding integration with other solutions and the convenience of meeting current needs.
SolarWinds Security Event Manager is consistently reliable and has no stability issues. It is stable and performs well, with no bugs or glitches, and it does not crash or freeze.
SolarWinds Security Event Manager was previously known as SolarWinds LEM, Solarwinds SIEM, TriGeo, Log and Event Manager.
NetSuite, EasyStreet, Legacy Texas Bank, and Energy Federal Credit Union, to name a few.