Elastic Security vs Trellix ESM comparison

Elastic Security
Read 58 Elastic Security reviews
  • 14,710 Views
  • 12,011 Comparison Views
86% willing to recommend
Trellix ESM
Read 34 Trellix ESM reviews
  • 3,505 Views
  • 1,450 Comparison Views
76% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Elastic Security and Trellix ESM based on real PeerSpot user reviews.

Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Elastic Security vs. Trellix ESM Report (Updated: June 2024).
Buyer's Guide
Elastic Security vs. Trellix ESM
June 2024
Download the complete report
Helped 787,779 peers since 2012
 

Categories and Ranking

Elastic Security
Ranking in Security Information and Event Management (SIEM)
5th
Average Rating
7.6
Number of Reviews
58
Ranking in other categories
Log Management (5th), Endpoint Detection and Response (EDR) (16th), Security Orchestration Automation and Response (SOAR) (6th), Extended Detection and Response (XDR) (7th)
Trellix ESM
Ranking in Security Information and Event Management (SIEM)
18th
Average Rating
7.4
Number of Reviews
34
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of June 2024, in the Security Information and Event Management (SIEM) category, the mindshare of Elastic Security is 5.3%, down from 6.2% compared to the previous year. The mindshare of Trellix ESM is 0.9%, down from 1.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
Unique Categories:
Log Management
9.0%
Endpoint Detection and Response (EDR)
3.3%
No other categories found
 

Featured Reviews

Matthew DeGrandis - PeerSpot reviewer
Mar 9, 2023
It's helpful for looking at multiple data sources to find find patterns or anomalies
We primarily use Elastic Security as a log aggregator, so we use it like a SIEM. It ingests all our logs and reports on them in aggregate We've used Elastic Security to solve some challenges involving various data sources. Things were being logged, but they were scattered around the organization.…
Read full review
Daniel Durian - PeerSpot reviewer
Dec 6, 2022
Provides visibility of all the traffic within the company infrastructure
The primary use case of the solution is central log management for the company. It allows us to see all the traffic coming in and going out to and from the internet. It provides various views from the firewall and web application firewall and event logs from the endpoint. The command view will tell…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Elastic Security is very easy to adapt."
"The most valuable features of the solution are the prevention methods and the incident alerts."
"It's a good platform and the very best in the current market. We looked at the Forester report from December 2022 where it was said to be a leader."
"Just the ability to do a lot more than just up-down is nice, which a lot of people take for granted."
"It is the best open-source product for people working in SO, managing and analyzing logs."
"The most valuable feature of Elastic Security is that you can install agents, and they are not separately licensed."
"The visualization is very good."
"ELK Logstash is easy and fast, at least for the initial setup with the out of box uses."
More Elastic Security pros
"It is a good central viewpoint for issues. These can then be investigated in more detail on the subnet server(s)/endpoints."
"The ease of use is the most valuable feature. Over the years I have always been using this solution and have become comfortable with it."
"We are now able to completely monitor our environment so we can review what is there, which is a big win for us."
"The most valuable feature in ESM is its search and reporting feature. It's really nice."
"It is easy to use and deploy. It comes with user-friendly manuals."
"The most valuable feature is that if the scanning does find something, it quarantines it. Then you can decide what you are going to do with it."
"The support I have received from the vendor has been great."
"It can be easily deployed with the other solutions."
More Trellix ESM pros
 

Cons

"The tool needs to integrate with legacy servers. Big companies can have legacy servers that may not always be updated."
"The solution's query building is not that intuitive compared to other solutions."
"It could use maybe a little more on the Linux side."
"Authentication is not a default in Kibana. We need to have another tool to have authentication and authorization. These two should be part of Kibana."
"Their visuals and graphs need to be better."
"In terms of what could be improved with Elastic, in some use cases, especially on the advanced level, they are not ready made, so you'll have to write some scripts."
"The interface could be more user friendly because it is sometimes hard to deal with."
"This solution cannot do predictive maintenance, so we have to build our own modules for doing it."
More Elastic Security cons
"It seems McAfee does test its product before releasing. When we - not only us, other companies also - deploy McAfee, we face multiple issues from the customer side, after which, McAfee reacts and fixes the bugs."
"McAfee is no more providing security updates on this product, and the enhancements to this product seem to have stopped. Moreover, we don't get proper support, and we struggle to get its support. It would be good if they can add some AI engine and out of the box use cases because it is currently limited to the same scenario and the same setup. I have done a POC for Securonix, LogRhythm. These products are much more ahead as compared to McAfee ESM. They have included multiple modules in the same solution. Correlation is very easy. If McAfee ESM can improve, especially in such implementations, then I believe it would be much better."
"We cannot add new data sources to the most recent version."
"Tech support is required each time there is a system update of the solution."
"The only drawback is that they don't have any packet capturing or network behavior analysis."
"The product’s alert response feature needs improvement. It could be more flexible and secure."
"I have to purchase a new box now. Its existing box is not scalable and I can't use it anymore."
"Product currently requires Flash."
More Trellix ESM cons
 

Pricing and Cost Advice

"We use the open-source version, so there is no charge for this solution."
"The licensing cost of Elastic Security is based on the daily ingestion rate. I can't recall the exact figure, but for 10GB of log action daily, it would cost around $20,000."
"The tool's pricing is flexible and comes at unit cost. You don't have to pay for everything."
"This is an open-source product, so there are no costs."
"Affordable but with additional costs"
"Elastic Security is free to use."
"When compared to other products, the price is average or on the low side."
"Elastic Stack is an open-source tool. You don't have to pay anything for the components."
More Elastic Security pricing and cost advice
"We renew our license annually."
"The cost is all included. The finance department handles the financial part, and we mostly don't get involved in it."
"The pricing is fair."
"You should buy the distributed option instead of the all-in-one for environments with more than 1000 end points."
"The cost is dependent on the customer's environment and requirements."
"The pricing is good, and they are competitive compared to providers such as RSA and IBM QRadar."
"It is an inexpensive product. We purchase its yearly license."
"The product is slightly expensive."
More Trellix ESM pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
787,779 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
10%
Government
9%
Comms Service Provider
6%
Educational Organization
72%
Computer Software Company
5%
Financial Services Firm
4%
Government
4%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Datadog vs ELK: which one is good in terms of performance, cost and efficiency?
With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...
See all answers
What do you like most about Elastic Security?
Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...
See all answers
What is your experience regarding pricing and costs for Elastic Security?
Elastic Security is open-source. Unlike many older solutions where you must pay for data ingestion, Elastic allows you to ingest data freely. Being open source, you can set up a Kafka front door la...
See all answers
What do you like most about McAfee ESM?
The solution's technical support is great.
See all answers
What is your experience regarding pricing and costs for McAfee ESM?
The product is slightly expensive. They offer some discount on the purchase of a certain number of nodes. They should give some concession on the license renewal as well.
See all answers
What needs improvement with McAfee ESM?
The integration capabilities of Trellix ESM with SaaS solutions are an area of concern where improvements are needed. When you continue to add solutions from other vendors, you need to look at the ...
See all answers
 

Comparisons

Wazuh vs Elastic Security Logo
Wazuh vs Elastic Security
Compared 40% of the time
Splunk Enterprise Security vs Elastic Security Logo
Splunk Enterprise Security vs Elastic Security
Compared 8% of the time
Microsoft Sentinel vs Elastic Security Logo
Microsoft Sentinel vs Elastic Security
Compared 7% of the time
IBM Security QRadar vs Elastic Security Logo
IBM Security QRadar vs Elastic Security
Compared 5% of the time
Microsoft Defender for Endpoint vs Elastic Security Logo
Microsoft Defender for Endpoint vs Elastic Security
Compared 5% of the time
More Elastic Security Competitors
ArcSight Enterprise Security Manager (ESM) vs Trellix ESM Logo
ArcSight Enterprise Security Manager (ESM) vs Trellix ESM
Compared 21% of the time
IBM Security QRadar vs Trellix ESM Logo
IBM Security QRadar vs Trellix ESM
Compared 19% of the time
Splunk Enterprise Security vs Trellix ESM Logo
Splunk Enterprise Security vs Trellix ESM
Compared 18% of the time
LogRhythm SIEM vs Trellix ESM Logo
LogRhythm SIEM vs Trellix ESM
Compared 16% of the time
Trellix Helix vs Trellix ESM Logo
Trellix Helix vs Trellix ESM
Compared 8% of the time
More Trellix ESM Competitors
 

Product Reports

Buyer's Guide
Elastic Security
June 2024
Elastic Security reportDownload Elastic Security product report
Buyer's Guide
Trellix ESM
May 2024
Trellix ESM reportDownload Trellix ESM product report
 

Also Known As

Elastic SIEM, ELK Logstash
McAfee ESM, NitroSecurity, McAfee Enterprise Security Manager
 

Learn More

Elastic
Video not available
Trellix
 

Overview

Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.


Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

Additional offerings and benefits:

  • The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
  • It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
  • With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

Make your organization more resilient and confident with Trellix Security Operations. Filter out the noise and cut complexity to deliver faster, more effective SecOps. Integrate your existing security tools and connect with over 650 Trellix solutions and third-party products.

 

Sample Customers

Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care
San Francisco Police Credit Union, Wªstenrot Gruppe, Volusion, California Department of Corrections & Rehabilitation, Government of New Brunswick, State of Colorado, Macquarie Telecom, Texas Tech University Health Sciences Center, Cologne Bonn Airport
Buyer's Guide
Elastic Security vs. Trellix ESM
June 2024
Free Report: Elastic Security vs. Trellix ESM
Find out what your peers are saying about Elastic Security vs. Trellix ESM and other solutions. Updated: June 2024.
DOWNLOAD NOW
787,779 professionals have used our research since 2012.
See our Elastic Security vs. Trellix ESM report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.