Elastic Security vs SolarWinds Security Event Manager comparison

Elastic and SolarWinds are both solutions in the Security Information and Event Management (SIEM) category. Elastic is ranked #5 with an average rating of 7.7, while SolarWinds is ranked #21 with an average rating of 7.8. Elastic holds a 7.5% mindshare in SIEM, compared to SolarWinds’s 0.6% mindshare. Additionally, 86% of Elastic users are willing to recommend the solution, compared to 82% of SolarWinds users who would recommend it.

Elastic Security

Read 63 Elastic Security reviews

11,003 Views
9,144 Comparison Views

86% willing to recommend

SolarWinds Security Event M...

Read 26 SolarWinds Security Event Manager reviews

2,049 Views
711 Comparison Views

82% willing to recommend

Elastic Security

SolarWinds Security Event M...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

SolarWinds Security Event Manager and Elastic Security compete in the cybersecurity category. Elastic Security seems to have the upper hand due to its advanced features and extensive integration capabilities.

Features: SolarWinds Security Event Manager offers real-time event correlation, comprehensive log management, and efficient threat detection. Elastic Security provides advanced threat detection, integration within the Elastic Stack, and extensive analytics and reporting features.

Room for Improvement: SolarWinds needs to enhance reporting functionalities and improve scalability for larger enterprises. Elastic Security requires better documentation, user guides, and simplification of the learning curve.

Ease of Deployment and Customer Service: SolarWinds Security Event Manager offers straightforward deployment and reliable customer support. Elastic Security has a steeper learning curve but benefits from strong community support.

Pricing and ROI: SolarWinds Security Event Manager has competitive pricing and clear cost structure, offering good value. Elastic Security is more expensive but provides higher ROI due to its powerful features and integration capabilities.

To learn more, read our detailed Elastic Security vs. SolarWinds Security Event Manager Report (Updated: January 2025).

Buyer's Guide

Elastic Security vs. SolarWinds Security Event Manager

January 2025

Download the complete report

Helped 831,158 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Elastic Security

Ranking in Security Information and Event Management (SIEM)

5th

Average Rating

7.6

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

Log Management (5th), Endpoint Detection and Response (EDR) (16th), Security Orchestration Automation and Response (SOAR) (6th), Extended Detection and Response (XDR) (8th)

SolarWinds Security Event M...

Ranking in Security Information and Event Management (SIEM)

21st

Average Rating

7.8

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of January 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Elastic Security is 7.5%, down from 9.8% compared to the previous year. The mindshare of SolarWinds Security Event Manager is 0.6%, down from 0.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Nikhil-Kumar

Assistant Manager - IT Security at Photon inc

Customizable with great dashboards but the premium support is poor

The initial setup can be complex if you don't have technical knowledge. However, once it is deployed, it works well. I'm not sure how long it took to deploy. I wasn't there when it was set up and configured. We have an internal team that handles deployment and maintenance. It doesn't require too many people to deploy. Five or six people would be enough. However, for 24/7 monitoring, you need to have someone always on it.

Read full review

Alex Kinyanjui

Enterprise Cloud Infrastructure Engineer at Safaricom

A stable and scalable solution that provide 24/7 monitoring

We have to protect customer data, including any PII, accessed via the internet terminal. Additionally, we need to monitor events from network devices and servers that may raise suspicion, allowing us to analyze them and determine what is occurring. SolarWinds affected your overall security costs. Considering the nature of our traffic, it has been very effective. We have proactively identified and addressed issues before they escalate into incidents. I've noticed a reduced investment in handling event-related cases with SolarWinds Security Event Manager. This reduction includes reducing human resources and the time required for teams to provide 24/7 monitoring. Consequently, there has been a significant decrease in costs. Additionally, the platform enables us to address issues before they escalate into incidents, thus preventing revenue leakage. As a result, the organization experiences reduced costs and avoids revenue leakage. Since the SolarWinds Security Event Manager implementation, the total budget allocated to security has been reduced by close to five percent. Initially, there was a heavy investment in that aspect, but we have observed this reduction in the allocated budget for the security team. Since implementing SolarWinds Security Event Manager, the team members' pressure has been reduced. They can now concentrate on more critical tasks and development, promoting growth within their department rather than solely focusing on incident monitoring. I recommend the solution. Overall, I rate the solution an eight out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature of Elastic Security is that you can install agents, and they are not separately licensed."

"We like Elastic Security because it's a REST API-based solution. That's the primary reason we use it."

"The indexes allow you to get your results quickly. The filtering and log passing is the advantage of Logstash."

"Elastic Security is cost-effective compared to Defender and CrowdStrike."

"It's a good platform and the very best in the current market. We looked at the Forester report from December 2022 where it was said to be a leader."

"The product has huge integration varieties available."

"It is an extremely stable solution. Stability-wise, I rate the solution a ten out of ten."

"The solution is compatible with the cloud-native environment and they can adapt to it faster."

More Elastic Security pros

"We did previously use a different solution, but SolarWinds is much better. It's easy to interact with SolarWinds. It's easy to operate, easy to configure and is generally easier compared to what we were working with before."

"It has in-depth monitoring capabilities and an easy way for setting up dashboards. I can expand in various areas, or I can reduce areas. It supports different types of breakdowns, filters, and rules. It is very simple for an out-of-the-box type of product. It doesn't take a lot of time to figure it out, which is unlike some of the solutions that I have looked at. It meets all the aspects."

"It's extremely easy to deploy."

"It's easy to build rules and actions based on the logs and event types we collect with the software."

"The most valuable feature is the ease of use for the end user."

"SolarWinds is effective for server, network, and log monitoring. It's also good for IP address management. We also have a patch manager, but we're still working on getting that operational."

"The solution helps me to go back in time and search for different events. For example, if you wanted to know who activated an account; you could go back in time and find out."

"It performs network behavior monitoring, log monitoring, and disaster recovery monitoring."

More SolarWinds Security Event Manager pros

Cons

"If the documentation were improved and made more clear for beginners, or even professionals, then we would be more attracted to this solution."

"Authentication is not a default in Kibana. We need to have another tool to have authentication and authorization. These two should be part of Kibana."

"They don't provide user authentication and authorisation features (Shield) as a part of their open-source version."

"The Integration module could be improved. It is a pain to build integration with any product. We have to do parking and so on. It's not like other commercial solutions that use profile integration. I would also see more detection features on the SIEM side."

"In terms of what could be improved with Elastic, in some use cases, especially on the advanced level, they are not ready made, so you'll have to write some scripts."

"One limitation of Elastic Security is that it does not have built-in workflows for all tasks. For example, if you need a workflow for compliance, you will need to create a custom workflow."

"An area for improvement in Elastic Security is the pricing. It could be better. Right now, when you increase the volume of logs to be collected, the price also increases a lot."

"Elastic Security can be a bit difficult to use if a person only has experience in SMBs with tools like Zoho. The product can also be difficult for those who have never dealt with query language."

More Elastic Security cons

"SolarWinds should improve its correlation capabilities. The correlation does not automatically detect and reduce the events fast enough. You have to manually do a correlation report, which means the tool is not scalable in many ways."

"Under the new system, it is not upgradable the way they say. When you try to do an upgrade, it doesn't really work unless you dump everything and start from scratch. You lose a lot of your nodes. Whenever you set your nodes up and everything else, they don't want to bring those nodes back in, so you have to really go back and restructure all your nodes. I went from version 6.5 to version 6.6 and then to version 6.7. I then went to version 2019, and now it is version 2020. It would be good if we can upgrade without having to delete everything and start from scratch. They can maybe build more KPIs and other things for the dashboard. Some of the other systems already have built-in KPIs. SolarWinds is starting to catch up, but it is not there yet. They can include some of the business or industry standards for tracking the time, that is, the meantime to detect (MTTD) and the meantime to resolve (MTTR). They can also find a way to build a KPI that measures the number of instances of port scans experienced in a week or a month."

"Training for this solution needs to be improved, as new employees are sometimes unfamiliar with the product."

"The solution's technical support is okay, but we don't have an SLA, and sometimes the response times are very slow."

"We have automated threat detection in the Alliance Security, Antoinette. However, if these features could be further enhanced, it would simplify my work, potentially allowing me to allocate more time to address complex issues."

"The only issue is the pricetag. SolarWinds is a costly solution."

"We'd like more customization capabilities."

"We used the support from SolarWinds Security Event Manager and they are knowledgeable but challenging to get in contact with them."

More SolarWinds Security Event Manager cons

Pricing and Cost Advice

"We use the open-source version, so there is no charge for this solution."

"This is an open-source product, so there are no costs."

"It's a monthly cost with Elastic SIEM, but I am not sure of the exact cost."

"It is easy to deploy, easy to use, and you get everything you need to become operational with it, and have nothing further to pay unless you want the OLED plugin."

"When compared to other products, the price is average or on the low side."

"We are using the free, open-source version of this solution."

"The tool's pricing is flexible and comes at unit cost. You don't have to pay for everything."

"The solution is free."

More Elastic Security pricing and cost advice

"The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten."

"The pricing model would benefit from having package deals with other SolarWinds products."

"The price of SolarWinds Security Event Manager is reasonable."

"We do a yearly license renewal. For a year, the solution costs roughly $500,000 USD. There are no costs beyond this yearly fee."

"It is in the appropriate mid-range. It is not as expensive as some of the other solutions. It is also not cheap."

"Licensing is on devices, so if you have many, then this may be high."

"Licenses can only be purchased in blocks of fifty at a time."

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

831,158 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

16%

Government

10%

Financial Services Firm

University

Educational Organization

78%

Computer Software Company

Financial Services Firm

University

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Datadog vs ELK: which one is good in terms of performance, cost and efficiency?

With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...

See all answers

What do you like most about Elastic Security?

Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...

See all answers

What is your experience regarding pricing and costs for Elastic Security?

Elastic Security is considered cost-effective, especially at lower EPS levels. However, a direct comparison was not made due to different pricing structures.

See all answers

What do you like most about SolarWinds Security Event Manager ?

The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers.

See all answers

What is your experience regarding pricing and costs for SolarWinds Security Event Manager ?

The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten.

See all answers

What needs improvement with SolarWinds Security Event Manager ?

I think the customization area in the tool can be considered as an area of concern where improvements are required In the future, I want to see the tool have better customization abilities with som...

See all answers

Comparisons

Wazuh vs Elastic Security

Compared 29% of the time

CrowdStrike Falcon vs Elastic Security

Compared 8% of the time

IBM Security QRadar vs Elastic Security

Compared 7% of the time

Microsoft Sentinel vs Elastic Security

Compared 6% of the time

Splunk Enterprise Security vs Elastic Security

Compared 6% of the time

More Elastic Security Competitors

Wazuh vs SolarWinds Security Event Manager

Compared 28% of the time

Splunk Enterprise Security vs SolarWinds Security Event Manager

Compared 18% of the time

Microsoft Defender XDR vs SolarWinds Security Event Manager

Compared 13% of the time

Microsoft Sentinel vs SolarWinds Security Event Manager

Compared 13% of the time

IBM Security QRadar vs SolarWinds Security Event Manager

Compared 11% of the time

More SolarWinds Security Event Manager Competitors

Product Reports

Buyer's Guide

Elastic Security

January 2025

Download Elastic Security product report

Buyer's Guide

SolarWinds Security Event Manager

December 2024

SolarWinds Security Event Manager report

Download SolarWinds Security Event Manager product report

Also Known As

Elastic SIEM, ELK Logstash

SolarWinds LEM, Solarwinds SIEM, TriGeo, Log and Event Manager

Learn More

Elastic

SolarWinds

Overview

Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.

Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

Additional offerings and benefits:

The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

When TriGeo was acquired by SolarWinds, TriGeo SIM became known as SolarWinds Log & Event Manager. This product is a leading Security Information and Event Management (SIEM) product and log management solution, which provides log collection, analysis, and real-time correlation.

Sample Customers

Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care

NetSuite, EasyStreet, Legacy Texas Bank, and Energy Federal Credit Union, to name a few.

Buyer's Guide

Elastic Security vs. SolarWinds Security Event Manager

January 2025

Free Report: Elastic Security vs. SolarWinds Security Event Manager

Find out what your peers are saying about Elastic Security vs. SolarWinds Security Event Manager and other solutions. Updated: January 2025.

DOWNLOAD NOW

831,158 professionals have used our research since 2012.

See our Elastic Security vs. SolarWinds Security Event Manager report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.