SolarWinds Security Event Manager vs Trellix ESM comparison

SolarWinds Security Event Manager vs. Trellix ESM

Download the complete report

Helped 842,296 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

SolarWinds Security Event M...

Ranking in Security Information and Event Management (SIEM)

22nd

Average Rating

7.8

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Trellix ESM

Ranking in Security Information and Event Management (SIEM)

28th

Average Rating

7.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of March 2025, in the Security Information and Event Management (SIEM) category, the mindshare of SolarWinds Security Event Manager is 0.6%, down from 0.7% compared to the previous year. The mindshare of Trellix ESM is 0.8%, down from 1.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Alex Kinyanjui

Enterprise Cloud Infrastructure Engineer at Safaricom

A stable and scalable solution that provide 24/7 monitoring

We have to protect customer data, including any PII, accessed via the internet terminal. Additionally, we need to monitor events from network devices and servers that may raise suspicion, allowing us to analyze them and determine what is occurring. SolarWinds affected your overall security costs. Considering the nature of our traffic, it has been very effective. We have proactively identified and addressed issues before they escalate into incidents. I've noticed a reduced investment in handling event-related cases with SolarWinds Security Event Manager. This reduction includes reducing human resources and the time required for teams to provide 24/7 monitoring. Consequently, there has been a significant decrease in costs. Additionally, the platform enables us to address issues before they escalate into incidents, thus preventing revenue leakage. As a result, the organization experiences reduced costs and avoids revenue leakage. Since the SolarWinds Security Event Manager implementation, the total budget allocated to security has been reduced by close to five percent. Initially, there was a heavy investment in that aspect, but we have observed this reduction in the allocated budget for the security team. Since implementing SolarWinds Security Event Manager, the team members' pressure has been reduced. They can now concentrate on more critical tasks and development, promoting growth within their department rather than solely focusing on incident monitoring. I recommend the solution. Overall, I rate the solution an eight out of ten.

Read full review

Daniel Durian

Senior Information Security Manager at a real estate/law firm with 10,001+ employees

Helps to monitor and detect cyberattacks

The tool's effectiveness depends on how you define your log sources. To build visibility of incoming and outgoing traffic, you need logs from perimeter defense, firewalls, web application firewalls, and endpoint protection. With good traffic visibility, incident response time is really quick. Trellix ESM provides situation awareness. On the dashboard, I can see outbound and inbound communications to known threat hosts, IPS/IDS activity, and threat intelligence of the perimeter defense in the firewall. This information helps preempt attacks.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The solution helps me to go back in time and search for different events. For example, if you wanted to know who activated an account; you could go back in time and find out."

"It supports high availability, which is very helpful."

"The graphical user interface is very user-friendly. SolarWinds is a hybrid solution so you can use it across many platforms."

"It has in-depth monitoring capabilities and an easy way for setting up dashboards. I can expand in various areas, or I can reduce areas. It supports different types of breakdowns, filters, and rules. It is very simple for an out-of-the-box type of product. It doesn't take a lot of time to figure it out, which is unlike some of the solutions that I have looked at. It meets all the aspects."

"The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers."

"SolarWinds' stability is fine. I don't think we've had any software issues."

"The most valuable feature of this solution is the visibility into both attempted and failed logins."

"It's easy to build rules and actions based on the logs and event types we collect with the software."

More SolarWinds Security Event Manager pros

"It can be easily deployed with the other solutions."

"It enables us to detect malicious threats, issues, or vulnerabilities in our network."

"It is easy to use and deploy. It comes with user-friendly manuals."

"The solution's technical support is great."

"McAfee as a whole is a good solution."

"The most valuable features of McAfee ESM are intrusion detection, malware protection, and the device controller."

"Trellix ESM is very user-friendly."

"The tool's effectiveness depends on how you define your log sources. To build visibility of incoming and outgoing traffic, you need logs from perimeter defense, firewalls, web application firewalls, and endpoint protection. With good traffic visibility, incident response time is really quick."

More Trellix ESM pros

Cons

"We used the support from SolarWinds Security Event Manager and they are knowledgeable but challenging to get in contact with them."

"There is no correlation made between log entries, so no threat information is presented."

"I imagine we will have to develop our own reports soon, this seems to be more cumbersome."

"Training for this solution needs to be improved, as new employees are sometimes unfamiliar with the product."

"It is a very technical program. They can simplify it so that it isn't so hard to deal with."

"I think the customization area in the tool can be considered as an area of concern where improvements are required."

"The only issue is the pricetag. SolarWinds is a costly solution."

"Under the new system, it is not upgradable the way they say. When you try to do an upgrade, it doesn't really work unless you dump everything and start from scratch. You lose a lot of your nodes. Whenever you set your nodes up and everything else, they don't want to bring those nodes back in, so you have to really go back and restructure all your nodes. I went from version 6.5 to version 6.6 and then to version 6.7. I then went to version 2019, and now it is version 2020. It would be good if we can upgrade without having to delete everything and start from scratch. They can maybe build more KPIs and other things for the dashboard. Some of the other systems already have built-in KPIs. SolarWinds is starting to catch up, but it is not there yet. They can include some of the business or industry standards for tracking the time, that is, the meantime to detect (MTTD) and the meantime to resolve (MTTR). They can also find a way to build a KPI that measures the number of instances of port scans experienced in a week or a month."

More SolarWinds Security Event Manager cons

"Product-wise, adding accounts on a single data source by batch would be a really great help."

"The product is mature and needs little improvement, but we could enhance the customized dashboarding based on use cases."

"It cannot integrate with our Next-Generation Firewall and few applications such as Cisco ACI."

"McAfee is no more providing security updates on this product, and the enhancements to this product seem to have stopped. Moreover, we don't get proper support, and we struggle to get its support. It would be good if they can add some AI engine and out of the box use cases because it is currently limited to the same scenario and the same setup. I have done a POC for Securonix, LogRhythm. These products are much more ahead as compared to McAfee ESM. They have included multiple modules in the same solution. Correlation is very easy. If McAfee ESM can improve, especially in such implementations, then I believe it would be much better."

"It seems McAfee does test its product before releasing. When we - not only us, other companies also - deploy McAfee, we face multiple issues from the customer side, after which, McAfee reacts and fixes the bugs."

"Cloud integration has room for improvement because they're not full-fledged to integrate with the cloud solutions that come. They use different integration platforms to bring in data, and that needs to be improved."

"There are always multiple bugs in the product. For example, the console page was hanging multiple times. Afterwards, they released multiple upgrades for the same, multiple patches from McAfee."

"McAfee ESM is not user-friendly and the log is not accurate. For instance, if I were assigned to generate a log for changes made today, I wouldn't be able to see all the modifications. While Palo Alto allows us to see all changes, McAfee ESM only captures one out of every ten changes. It's crucial to have visibility into all changes made."

More Trellix ESM cons

Pricing and Cost Advice

"The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten."

"The price of SolarWinds Security Event Manager is reasonable."

"We do a yearly license renewal. For a year, the solution costs roughly $500,000 USD. There are no costs beyond this yearly fee."

"The pricing model would benefit from having package deals with other SolarWinds products."

"It is in the appropriate mid-range. It is not as expensive as some of the other solutions. It is also not cheap."

"Licensing is on devices, so if you have many, then this may be high."

"Licenses can only be purchased in blocks of fifty at a time."

"We pay for our licensing fees on a yearly basis, and there are no costs in addition to the standard licensing fees."

"The pricing is fair."

"McAfee is the right choice for a low-budget solution."

"We renew our license annually."

"You should buy the distributed option instead of the all-in-one for environments with more than 1000 end points."

"The cost is all included. The finance department handles the financial part, and we mostly don't get involved in it."

"When compared to IBM Security QRadar and other similar platforms, the pricing of McAfee ESM is reasonable and comparatively less expensive."

"It is an inexpensive product. We purchase its yearly license."

More Trellix ESM pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

842,296 professionals have used our research since 2012.

Comparison Review

Vinod Shankar

Manager, Enterprise Risk Consulting at Deloitte & Touche

Feb 26, 2015

HP ArcSight vs. IBM QRadar vs. McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm

We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…

Read full review

Top Industries

By visitors reading reviews

Educational Organization

77%

Computer Software Company

Financial Services Firm

University

Educational Organization

76%

Financial Services Firm

Computer Software Company

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about SolarWinds Security Event Manager ?

The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers.

What is your experience regarding pricing and costs for SolarWinds Security Event Manager ?

The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten.

What needs improvement with SolarWinds Security Event Manager ?

I think the customization area in the tool can be considered as an area of concern where improvements are required In the future, I want to see the tool have better customization abilities with som...

What do you like most about McAfee ESM?

The solution's technical support is great.

What is your experience regarding pricing and costs for McAfee ESM?

Regarding pricing, Trellix ESM is not that expensive. It's less than half the cost of IBM QRadar.

What needs improvement with McAfee ESM?

The product is mature and needs little improvement, but we could enhance the customized dashboarding based on use cases.

Wazuh vs SolarWinds Security Event Manager

Comparisons

Compared 30% of the time

Splunk Enterprise Security vs SolarWinds Security Event Manager

Compared 19% of the time

IBM Security QRadar vs SolarWinds Security Event Manager

Compared 14% of the time

Microsoft Sentinel vs SolarWinds Security Event Manager

Compared 13% of the time

Microsoft Defender XDR vs SolarWinds Security Event Manager

Compared 9% of the time

More SolarWinds Security Event Manager Competitors

ArcSight Enterprise Security Manager (ESM) vs Trellix ESM

Compared 25% of the time

Splunk Enterprise Security vs Trellix ESM

Compared 20% of the time

LogRhythm SIEM vs Trellix ESM

Compared 17% of the time

IBM Security QRadar vs Trellix ESM

Compared 10% of the time

Fortinet FortiSIEM vs Trellix ESM

Compared 10% of the time

More Trellix ESM Competitors

Product Reports

SolarWinds Security Event Manager

Download SolarWinds Security Event Manager product report

SolarWinds Security Event Manager report

Trellix ESM

Download Trellix ESM product report

Also Known As

SolarWinds LEM, Solarwinds SIEM, TriGeo, Log and Event Manager

McAfee ESM, NitroSecurity, McAfee Enterprise Security Manager

Overview

When TriGeo was acquired by SolarWinds, TriGeo SIM became known as SolarWinds Log & Event Manager. This product is a leading Security Information and Event Management (SIEM) product and log management solution, which provides log collection, analysis, and real-time correlation.

SolarWinds

Make your organization more resilient and confident with Trellix Security Operations. Filter out the noise and cut complexity to deliver faster, more effective SecOps. Integrate your existing security tools and connect with over 650 Trellix solutions and third-party products.

Trellix

Sample Customers

NetSuite, EasyStreet, Legacy Texas Bank, and Energy Federal Credit Union, to name a few.

San Francisco Police Credit Union, Wªstenrot Gruppe, Volusion, California Department of Corrections & Rehabilitation, Government of New Brunswick, State of Colorado, Macquarie Telecom, Texas Tech University Health Sciences Center, Cologne Bonn Airport

SolarWinds Security Event Manager vs. Trellix ESM