Elastic Security vs Trellix ESM comparison

Elastic and Trellix are both solutions in the Security Information and Event Management (SIEM) category. Elastic is ranked #5 with an average rating of 7.7, while Trellix is ranked #27 with an average rating of 7.2. Elastic holds a 6.6% mindshare in SIEM, compared to Trellix’s 0.9% mindshare. Additionally, 86% of Elastic users are willing to recommend the solution, compared to 75% of Trellix users who would recommend it.

Elastic Security

Read 64 Elastic Security reviews

9,624 Views
8,079 Comparison Views

86% willing to recommend

Trellix ESM

Read 36 Trellix ESM reviews

2,304 Views
894 Comparison Views

75% willing to recommend

Elastic Security

Trellix ESM

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

Both Trellix ESM and Elastic Security are formidable players in the cybersecurity market. Trellix ESM appears to have the upper hand for comprehensive features and reliable support, while Elastic Security excels in analytics and deployment flexibility.

Features: Trellix ESM is celebrated for its comprehensive threat detection, user-friendly customization options, and reliable network monitoring. Elastic Security stands out with its advanced analytics, real-time monitoring, and seamless integration with existing systems.

Room for Improvement: Trellix ESM could enhance its reporting functionality, reduce system resource consumption, and improve efficiency. Elastic Security needs better documentation, streamlined setup processes, and enhanced support materials.

Ease of Deployment and Customer Service: Trellix ESM deployment is often straightforward with strong customer service, but it can be resource-intensive. Elastic Security offers flexible deployment options but may require more effort to set up due to less comprehensive customer support.

Pricing and ROI: Trellix ESM's pricing is viewed as competitive, offering good ROI through its extensive features despite initial setup costs. Elastic Security is appreciated for its cost-effectiveness, providing significant ROI, particularly valued by businesses leveraging its advanced analytics.

To learn more, read our detailed Elastic Security vs. Trellix ESM Report (Updated: March 2025).

Buyer's Guide

Elastic Security vs. Trellix ESM

March 2025

Download the complete report

Helped 845,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

ROI

Sentiment score

5.9

Elastic Security often delivers positive ROI within two years, though user satisfaction and views on cost-effectiveness vary.

Sentiment score

5.4

Trellix ESM improved efficiency, incident response time, security posture, compliance management, threat detection, operations, and provided significant cost savings.

It does not require hefty security budgets and can be deployed for enterprise security effectively.

SyedAli17

Assistant Director at PTA

For more quotes and insights, download the Elastic Security report

No quotes available

For more quotes and insights, download the Trellix ESM report

Customer Service

Sentiment score

6.4

Elastic Security feedback is mixed; users praise community support, yet criticize inconsistent technical support and seek faster solutions.

Sentiment score

5.9

Trellix ESM customer support is inconsistent, with mixed reviews on responsiveness, expertise, and service speed; improvement needed.

Most of the time when my team encounters issues, they receive responses within 24 hours.

SyedAli17

Assistant Director at PTA

Support is prompt and helpful.

reviewer2181228

Senior Cyber Security Manager at a tech services company with 11-50 employees

For more quotes and insights, download the Elastic Security report

No quotes available

For more quotes and insights, download the Trellix ESM report

Scalability Issues

Sentiment score

7.3

Elastic Security is scalable and adaptable, suitable for diverse business needs, though skilled personnel are important for effective management.

Sentiment score

8.5

Trellix ESM is highly scalable, accommodating various company sizes and environments, from on-premises enterprises to cloud-based small businesses.

It allows us to think about specific use cases, such as gathering malicious IPs in a single view and analyzing threats based on geolocation.

SyedAli17

Assistant Director at PTA

For more quotes and insights, download the Elastic Security report

No quotes available

For more quotes and insights, download the Trellix ESM report

Stability Issues

Sentiment score

7.7

Elastic Security is stable and reliable, though challenges arise with big data and real-time usage without proper configuration.

Sentiment score

8.5

Users have mixed experiences with Trellix ESM's stability, ranging from perfect scores to issues with power interruptions and service failures.

In terms of stability, I would rate Elastic a solid eight out of ten.

reviewer2181228

Senior Cyber Security Manager at a tech services company with 11-50 employees

For more quotes and insights, download the Elastic Security report

No quotes available

For more quotes and insights, download the Trellix ESM report

Room For Improvement

Elastic Security faces challenges in setup, AI integration, permissions management, user support, and requires improved dashboards and cost-efficiency.

Trellix ESM requires a user-friendly interface, faster support, better integration, advanced features, improved performance, and enhanced customization.

CrowdStrike and Defender have more established threat intelligence integration due to having a larger client base.

reviewer2181228

Senior Cyber Security Manager at a tech services company with 11-50 employees

My security testing team continuously reports vulnerabilities, and we have to fix and update the versions frequently.

SyedAli17

Assistant Director at PTA

Elastic Security consumes a lot of resources, requiring a substantial deployment setup.

reviewer2405523

Performance Practice Specialist at a local government with 10,001+ employees

For more quotes and insights, download the Elastic Security report

No quotes available

For more quotes and insights, download the Trellix ESM report

Setup Cost

Elastic Security offers a free open-source option with enterprise features based on usage, making it cost-effective for enterprises.

This is beneficial for SMEs as they do not need extensive budgets for security solutions.

SyedAli17

Assistant Director at PTA

The pricing is reasonable, especially for Small Medium Enterprises (SMEs), making it a viable option for businesses building their security infrastructure.

reviewer2181228

Senior Cyber Security Manager at a tech services company with 11-50 employees

Elastic Security is considered cost-effective, especially at lower EPS levels.

reviewer2405523

Performance Practice Specialist at a local government with 10,001+ employees

For more quotes and insights, download the Elastic Security report

No quotes available

For more quotes and insights, download the Trellix ESM report

Valuable Features

Elastic Security is praised for fast search, scalability, machine learning, customization, integration, and user-friendly, cost-effective features.

Trellix ESM offers robust security features, easy deployment, effective threat monitoring, user-friendly interface, and excellent vendor support.

The platform provides more visibility and requires less effort in monitoring.

reviewer2405523

Performance Practice Specialist at a local government with 10,001+ employees

Elastic Security is as flexible and configurable as Microsoft Sentinel.

reviewer2181228

Senior Cyber Security Manager at a tech services company with 11-50 employees

We require rapid processing speed for alerts and event data, and Elastic Security is very efficient at handling this level of data.

SyedAli17

Assistant Director at PTA

For more quotes and insights, download the Elastic Security report

No quotes available

For more quotes and insights, download the Trellix ESM report

Categories and Ranking

Elastic Security

Ranking in Security Information and Event Management (SIEM)

5th

Average Rating

7.8

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Log Management (7th), Endpoint Detection and Response (EDR) (16th), Security Orchestration Automation and Response (SOAR) (6th), Extended Detection and Response (XDR) (8th)

Trellix ESM

Ranking in Security Information and Event Management (SIEM)

27th

Average Rating

7.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of April 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Elastic Security is 6.6%, down from 9.4% compared to the previous year. The mindshare of Trellix ESM is 0.9%, down from 0.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Gajewski Marek

Chief Technology Officer & Co-founder at CS2

Provides good anomaly detection and connectivity reporting

We previously used Splunk but switched to Elastic Security because Splunk was more expensive. Feature-wise, both tools are pretty much the same. They have almost the same functions. Elastic Security has a much better AI assistant that allows you to ask questions like a normal person. With Elastic Security, I can also predict the price and how much it will cost. Splunks's pricing depends on how much data we use and the different add-ons I have to add. The pricing is much better with Elastic Security.

Read full review

Daniel Durian

Senior Information Security Manager at a real estate/law firm with 10,001+ employees

Helps to monitor and detect cyberattacks

The tool's effectiveness depends on how you define your log sources. To build visibility of incoming and outgoing traffic, you need logs from perimeter defense, firewalls, web application firewalls, and endpoint protection. With good traffic visibility, incident response time is really quick. Trellix ESM provides situation awareness. On the dashboard, I can see outbound and inbound communications to known threat hosts, IPS/IDS activity, and threat intelligence of the perimeter defense in the firewall. This information helps preempt attacks.

Read full review

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

845,406 professionals have used our research since 2012.

Comparison Review

Vinod Shankar

Manager, Enterprise Risk Consulting at Deloitte & Touche

Feb 26, 2015

HP ArcSight vs. IBM QRadar vs. McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm

We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…

Read full review

Top Industries

By visitors reading reviews

Computer Software Company

17%

Government

10%

Financial Services Firm

University

Educational Organization

76%

Financial Services Firm

Computer Software Company

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Datadog vs ELK: which one is good in terms of performance, cost and efficiency?

With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...

See all answers

What do you like most about Elastic Security?

Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...

See all answers

What is your experience regarding pricing and costs for Elastic Security?

Elastic Security is considered cost-effective, especially at lower EPS levels. However, a direct comparison was not made due to different pricing structures.

See all answers

What do you like most about McAfee ESM?

The solution's technical support is great.

See all answers

What is your experience regarding pricing and costs for McAfee ESM?

Regarding pricing, Trellix ESM is not that expensive. It's less than half the cost of IBM QRadar.

See all answers

What needs improvement with McAfee ESM?

The product is mature and needs little improvement, but we could enhance the customized dashboarding based on use cases.

See all answers

Comparisons

Wazuh vs Elastic Security

Compared 23% of the time

CrowdStrike Falcon vs Elastic Security

Compared 9% of the time

IBM Security QRadar vs Elastic Security

Compared 7% of the time

Splunk Enterprise Security vs Elastic Security

Compared 6% of the time

Microsoft Sentinel vs Elastic Security

Compared 5% of the time

More Elastic Security Competitors

ArcSight Enterprise Security Manager (ESM) vs Trellix ESM

Compared 25% of the time

Splunk Enterprise Security vs Trellix ESM

Compared 20% of the time

LogRhythm SIEM vs Trellix ESM

Compared 18% of the time

IBM Security QRadar vs Trellix ESM

Compared 11% of the time

Fortinet FortiSIEM vs Trellix ESM

Compared 10% of the time

More Trellix ESM Competitors

Product Reports

Buyer's Guide

Elastic Security

March 2025

Download Elastic Security product report

Buyer's Guide

Trellix ESM

March 2025

Download Trellix ESM product report

Also Known As

Elastic SIEM, ELK Logstash

McAfee ESM, NitroSecurity, McAfee Enterprise Security Manager

Overview

Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.

Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

Additional offerings and benefits:

The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

Elastic

Make your organization more resilient and confident with Trellix Security Operations. Filter out the noise and cut complexity to deliver faster, more effective SecOps. Integrate your existing security tools and connect with over 650 Trellix solutions and third-party products.

Trellix

Sample Customers

Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care

San Francisco Police Credit Union, Wªstenrot Gruppe, Volusion, California Department of Corrections & Rehabilitation, Government of New Brunswick, State of Colorado, Macquarie Telecom, Texas Tech University Health Sciences Center, Cologne Bonn Airport

Buyer's Guide

Elastic Security vs. Trellix ESM

March 2025

Free Report: Elastic Security vs. Trellix ESM

Find out what your peers are saying about Elastic Security vs. Trellix ESM and other solutions. Updated: March 2025.

DOWNLOAD NOW

845,406 professionals have used our research since 2012.

See our Elastic Security vs. Trellix ESM report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.