No more typing reviews! Try our Samantha, our new voice AI agent.

SolarWinds Security Event Manager vs Trellix ESM comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 18, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

SolarWinds Security Event M...
Ranking in Security Information and Event Management (SIEM)
34th
Average Rating
7.8
Reviews Sentiment
5.7
Number of Reviews
27
Ranking in other categories
No ranking in other categories
Trellix ESM
Ranking in Security Information and Event Management (SIEM)
30th
Average Rating
7.4
Reviews Sentiment
7.0
Number of Reviews
38
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Security Information and Event Management (SIEM) category, the mindshare of SolarWinds Security Event Manager is 1.0%, up from 0.7% compared to the previous year. The mindshare of Trellix ESM is 1.0%, down from 1.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
Trellix ESM1.0%
SolarWinds Security Event Manager1.0%
Other98.0%
Security Information and Event Management (SIEM)
 

Featured Reviews

Yashokanth Partkunan - PeerSpot reviewer
Managed Services Engineer at Loop1 Systems
Has supported client needs efficiently but requires deeper analysis features and faster support
The log analyzing capability of SolarWinds Security Event Manager should go into more depth than the current environment. More modification and enhancements are required on the dashboard side in order to make it closer to optimal performance. From observation and feedback from users, they need more functionality related to monitoring, and in-depth analyzing needs to be improved.
MD
Senior Vice President IT at AS IT Consulting Pvt. Ltd.
Offers comprehensive report generation while maintaining ease of integration
We need to improve Trellix ESM by making sure that most of the logging devices available in the global market should be covered, and if there is any device which is not covered, there should not be any additional charges for writing the custom parsers on that. We can add some new features regarding AI in the future for Trellix ESM, but the maturity will take a longer time. There are many false positives that happen in an environment during the first couple of months, or around six months, so the system analyst is not able to identify whether the event which has occurred is a true positive or a false positive.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We did previously use a different solution, but SolarWinds is much better. It's easy to interact with SolarWinds. It's easy to operate, easy to configure and is generally easier compared to what we were working with before."
"The most valuable feature of this solution is the visibility into both attempted and failed logins."
"SolarWinds has provided greater visibility into incidents and activities on the network."
"SolarWinds is effective for server, network, and log monitoring. It's also good for IP address management. We also have a patch manager, but we're still working on getting that operational."
"The File Integrity Monitoring is great, giving you visibility into who has changed a file, when that file was changed, and more, with easy out-of-the-box reporting and customization for reports and alerts that help maintain compliance and security."
"The product's most effective part in improving security stems from the fact that the solution is deployed for event management, log viewing, and information management."
"Technical support for this solution is good."
"If you have no monitoring tool in place, SolarWinds SIEM is a good place to start and very inexpensive."
"It blocks the things which are not to be allowed. It has an adaptive mode where it learns for itself."
"The most valuable feature is the capability to correlate different events from different platforms that we feed into it."
"It has performed well and delivered the results that I have been looking for."
"I would tell potential customers that ESM has a feature called all in one box."
"VirusScan Enterprise provides protection against real-time malware attacks."
"It enables us to detect malicious threats, issues, or vulnerabilities in our network."
"I rate the tool's deployment an eight out of ten. The deployment is completed in two days."
"The most valuable feature of Trellix ESM, for detecting, is that it detects malware and viruses, such as a particular virus that was critical in Kenya; we used ESM to detect and block that particular virus completely."
 

Cons

"The log analyzing capability of SolarWinds Security Event Manager should go into more depth than the current environment."
"We need to post events on the end of the devices. Sometimes, the event does not respond."
"Under the new system, it is not upgradable the way they say. When you try to do an upgrade, it doesn't really work unless you dump everything and start from scratch. You lose a lot of your nodes. Whenever you set your nodes up and everything else, they don't want to bring those nodes back in, so you have to really go back and restructure all your nodes. I went from version 6.5 to version 6.6 and then to version 6.7. I then went to version 2019, and now it is version 2020. It would be good if we can upgrade without having to delete everything and start from scratch. They can maybe build more KPIs and other things for the dashboard. Some of the other systems already have built-in KPIs. SolarWinds is starting to catch up, but it is not there yet. They can include some of the business or industry standards for tracking the time, that is, the meantime to detect (MTTD) and the meantime to resolve (MTTR). They can also find a way to build a KPI that measures the number of instances of port scans experienced in a week or a month."
"I would like to be able to dig deeper into the visibility of events or incidents to determine whether they are malicious, such as by doing behavior analysis."
"I think the product can use some improvement on the reporting side. The reporting could be easier and more robust."
"The query capability in this solution needs improvement."
"It can be difficult for users who are inexperienced with the solution."
"It is a very technical program. They can simplify it so that it isn't so hard to deal with."
"We are having trouble migrating our data sources from version 10 to version 11.2. We cannot add new data sources to the most recent version."
"The API the product provides still needs to develop some maturity."
"We would welcome integrations with some of the new McAfee acquisitions, e.g., behavioural analytics."
"It is more difficult to operate Trellix ESM than other solutions."
"I have to purchase a new box now. Its existing box is not scalable and I can't use it anymore."
"There's no software support from McAfee."
"Tech support is required each time there is a system update of the solution."
"The product's stability is an area of concern where improvements are required."
 

Pricing and Cost Advice

"Licensing is on devices, so if you have many, then this may be high."
"The pricing model would benefit from having package deals with other SolarWinds products."
"Licenses can only be purchased in blocks of fifty at a time."
"The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten."
"It is in the appropriate mid-range. It is not as expensive as some of the other solutions. It is also not cheap."
"We do a yearly license renewal. For a year, the solution costs roughly $500,000 USD. There are no costs beyond this yearly fee."
"The price of SolarWinds Security Event Manager is reasonable."
"The cost is all included. The finance department handles the financial part, and we mostly don't get involved in it."
"The pricing is fair."
"The licensing cost is based on EPS."
"Regarding pricing, Trellix ESM is not that expensive. It's less than half the cost of IBM QRadar."
"The product is slightly expensive."
"The cost is dependent on the customer's environment and requirements."
"We pay for our licensing fees on a yearly basis, and there are no costs in addition to the standard licensing fees."
"You should buy the distributed option instead of the all-in-one for environments with more than 1000 end points."
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
904,899 professionals have used our research since 2012.
 

Comparison Review

VS
Manager, Enterprise Risk Consulting at a tech company with 1,001-5,000 employees
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
14%
Construction Company
13%
Manufacturing Company
11%
Comms Service Provider
7%
Comms Service Provider
14%
Construction Company
13%
Financial Services Firm
9%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business19
Midsize Enterprise3
Large Enterprise7
By reviewers
Company SizeCount
Small Business15
Midsize Enterprise6
Large Enterprise25
 

Questions from the Community

What is your experience regarding pricing and costs for SolarWinds Security Event Manager ?
The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten.
What needs improvement with SolarWinds Security Event Manager ?
The log analyzing capability of SolarWinds Security Event Manager should go into more depth than the current environment. More modification and enhancements are required on the dashboard side in or...
What is your primary use case for SolarWinds Security Event Manager ?
I work with all SolarWinds products mostly, including Network Configuration Manager and NPM. I am a reseller. I usually recommend SolarWinds products for Loop1. It's for the bigger ones; we are the...
What is your experience regarding pricing and costs for McAfee ESM?
When discussing Trellix ESM pricing and licensing, if you consider some premium product, the pricing also has to be premium, however, enterprise customers who look for a premium product, alongside ...
What needs improvement with McAfee ESM?
Areas of Trellix ESM that could be improved or enhanced include checking on the clients who are still on-prem, especially banks, as most are not moving everything to the cloud due to confidentialit...
What is your primary use case for McAfee ESM?
My customer's usual use case for Trellix ESM involves one client, as most of the users have moved to ESM. Nowadays, they don't use IPS only, since McAfee IPS is standalone; they incorporate firewal...
 

Also Known As

SolarWinds LEM, Solarwinds SIEM, TriGeo, Log and Event Manager
McAfee ESM, NitroSecurity, McAfee Enterprise Security Manager
 

Overview

 

Sample Customers

NetSuite, EasyStreet, Legacy Texas Bank, and Energy Federal Credit Union, to name a few.
San Francisco Police Credit Union, Wªstenrot Gruppe, Volusion, California Department of Corrections & Rehabilitation, Government of New Brunswick, State of Colorado, Macquarie Telecom, Texas Tech University Health Sciences Center, Cologne Bonn Airport
Find out what your peers are saying about SolarWinds Security Event Manager vs. Trellix ESM and other solutions. Updated: June 2026.
904,899 professionals have used our research since 2012.