Try our new research platform with insights from 80,000+ expert users

Anomali vs OpenText Enterprise Security Manager comparison

Anomali and OpenText are both solutions in the Security Information and Event Management (SIEM) category. Anomali is ranked #33 with an average rating of 8.5, while OpenText is ranked #22 with an average rating of 7.0. Anomali holds a 0.3% mindshare in SIEM, compared to OpenText’s 1.4% mindshare. Additionally, 80% of Anomali users are willing to recommend the solution, compared to 88% of OpenText users who would recommend it.
Anomali
Read 4 Anomali reviews
  • 2,282 Views
  • 365 Comparison Views
80% willing to recommend
OpenText Enterprise Securit...
Read 98 OpenText Enterprise Security Manager reviews
  • 2,541 Views
  • 2,414 Comparison Views
88% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jun 19, 2025

OpenText Enterprise Security Manager and Anomali are competitive products in the cybersecurity field, with OpenText leading in enterprise security management and Anomali in threat intelligence. Anomali has the upper hand in threat intelligence with its advanced analytics and real-time threat feeds.

Features: OpenText Enterprise Security Manager offers strong asset management, compliance monitoring, and policy enforcement. Anomali is notable for its advanced threat analytics, real-time threat feeds, and integration with multiple threat sources, providing actionable intelligence.

Room for Improvement: OpenText could benefit from more streamlined deployment options and faster setup processes. Anomali might improve by expanding its customer support options and enhancing ease of use for new users unfamiliar with its system. Additionally, both could refine their integration capabilities with other platforms to streamline user experience.

Ease of Deployment and Customer Service: OpenText provides flexible deployment options with a strong focus on customer support, aiding enterprises needing extensive implementation assistance. Anomali offers a streamlined deployment model with user self-service tools geared towards quick integration and self-management.

Pricing and ROI: OpenText Enterprise Security Manager has a higher setup cost but offers significant ROI through its extensive security features. Anomali is more cost-effective, delivering solid ROI through efficient threat intelligence and integration capabilities, offering better value for cost-conscious organizations.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Anomali vs. OpenText Enterprise Security Manager Report (Updated: July 2025).
Buyer's Guide
Anomali vs. OpenText Enterprise Security Manager
July 2025
Download the complete report
Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Anomali
Ranking in Security Information and Event Management (SIEM)
33rd
Average Rating
7.8
Reviews Sentiment
7.2
Number of Reviews
4
Ranking in other categories
User Entity Behavior Analytics (UEBA) (18th), Advanced Threat Protection (ATP) (22nd), Threat Intelligence Platforms (8th), Extended Detection and Response (XDR) (27th)
OpenText Enterprise Securit...
Ranking in Security Information and Event Management (SIEM)
22nd
Average Rating
7.8
Reviews Sentiment
6.7
Number of Reviews
98
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of August 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Anomali is 0.3%, up from 0.2% compared to the previous year. The mindshare of OpenText Enterprise Security Manager is 1.4%, up from 1.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
 

Featured Reviews

CC
Enables automated threat intelligence sorting and enhances proactive threat hunting capabilities
You have to have at least a threat intelligence background or a SOC analyst background to use it, as that's the information you'll dig around with in there. If you don't have that kind of knowledge, it probably can be a little hard to use, but they do provide training. They offer training not only for how to use the platform but also some basic threat intelligence training to explain what these things are and what these terms mean. My company is a customer of Anomali. I would recommend it to other people. I would advise making sure you don't pick it without testing other products and have your use cases well thought out and documented before testing, so you know it will solve the problems you're trying to address. Keep an open mind with it and realize that whatever you can dream of, you can probably do with the platform. Overall, I would rate Anomali an eight out of ten.
Read full review
Gaurav Ranade - PeerSpot reviewer
Excels at performing regression and correlation on the data
ArcSight is a legacy technology, and many customers want AI-powered technologies integrated with it. That hasn't been done yet, but ArcSight needs to catch up with the newer solutions and technologies available in the market. It can't just rely on the legacy technology from 2010 or 2012. You can't run that in 2024. It's a legacy technology with its own limitations. Customers often face issues that other software or newer solutions can resolve easily. That's the main challenge we face from customers right now. So, the only concerns are that AI needs to be integrated and scalability improved. Those are the main areas to be improved.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable aspect of Anomali is the threat modeling capability."
"We now have a very robust collection of threat intelligence based on the capabilities that Anomali provides."
"I have found Cyber threat intelligence (CTI) very useful and concise. The solution is easy to use."
"The feature I have found most valuable is credential monitoring. This feature is easy and quick."
"Very good real-time reporting with a good dashboard."
"The correlation feature is good."
"I think that the overall experience with this solution is good, but in particular, I think that the dashboards are quite interactive."
"The tool is good for correlation and aggregation. We use it as a collection platform."
"The most valuable features of ArcSight ESM are ease of use and readily usable components."
"Some of the benefits of using this solution are rapid correlation and near-time response on alerts."
"ArcSight ESM allows us to find if someone is doing an administrative operation at inappropriate times of day or trying to do something they're not allowed to."
"ArcSight Enterprise Security Manager (ESM) is very cheap compared to other tools."
More OpenText Enterprise Security Manager pros
 

Cons

"Support in the past has been top-notch, but recent trends indicate that it has taken a back seat, as we often don't get answers for days."
"A lot of tools can give you many features, such as CTI intelligence and a tax service reduction. However, many people are combining different tools together to have more capabilities. It is up to the consumer whether they want to have multiple tools or have one tool that serves the purpose. Anomali Enterprise could improve by combining all the other tools' features into one solution."
"An area for improvement is the intelligence sharing within the Anomali community. The tagging system can be inconsistent, as any company can use any tags for their reporting."
"Less code in integration would be nice when building blocks."
"The roadmap is not clear."
"They need to develop NetFlow appliances that can be installed in the customer network on span ports, collect NetFlow, and send it to ArcSight without relying on the devices' NetFlow capability and their position in the network."
"The security area has room for improvement."
"Its search part can be improved. When I go to the console and search for a few logs or something else, it takes a lot of time. When I try to search for three days or one week, it takes too much time. This is a major area of improvement. I wanted them to include features like SOAR, threat intelligence, and automation, and they seem to have included all these features in version 7.3 or 7.4."
"The stability of ArcSight Enterprise Security Manager (ESM) is not very robust."
"The dashboard looks a bit cumbersome."
"Deployment typology could be improved. Difficult to scale across all the different lines of businesses."
"The way that scaling is set up isn't very cost-effective."
More OpenText Enterprise Security Manager cons
 

Pricing and Cost Advice

"When comparing the price of Anomali Enterprise to other solutions it is in the medium to high range. However, I am satisfied with the price."
"Thanks to Micro Focus's licensing model, as an MSSP, we are able to see a complete return on our investment almost immediately."
"ArcSight can be a little bit expensive because of the area that we work in and the cost. Licensing is mostly on a yearly basis, not monthly."
"Price-wise, ArcSight ESM was a bit high compared to competitors, which factored into our decision to switch to Splunk. It couldn't cover all our business needs for what we wanted to implement."
"The cost of the solution is not very high, although hiring a qualified analyst to work with the product is expensive."
"​It is best to be an institutional buyer and directly contact the sales team, as they can provide over-the-top discounts for bulk orders.​"
"Customers without a ton of resources to dedicate to deployment may be better served by a managed ArcSight service."
"Aggregation can help a lot in pushing down licensing costs."
"HPE ArcSight pricing might be more expensive than other SIEM solutions, but in my opinion it has powerful features and great flexibility in developing complex use cases."
More OpenText Enterprise Security Manager pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
865,384 professionals have used our research since 2012.
 

Comparison Review

VS
Jun 28, 2015
Qradar vs. ArcSight
Continuing with the SIEM posts we have done at Infosecnirvana, this post is a Head to head comparison of the two Industry leading SIEM products in the market – HP ArcSight and IBM QRadar Both the products have consistently been in the Gartner Leaders Quadrant. Both HP and IBM took over niche SIEM…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
17%
Computer Software Company
13%
Government
7%
Insurance Company
6%
Financial Services Firm
15%
Computer Software Company
13%
Manufacturing Company
11%
Educational Organization
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What needs improvement with Anomali ThreatStream?
An area for improvement is the intelligence sharing within the Anomali community. The tagging system can be inconsistent, as any company can use any tags for their reporting. Combining all aliases ...
See all answers
What is your primary use case for Anomali ThreatStream?
I use Anomali ( /products/anomali-reviews ) for threat hunting, threat collection, operationalization of intelligence, such as indicators of compromise (IOCs), and dissemination of reports for repo...
See all answers
What advice do you have for others considering Anomali ThreatStream?
For new users, I recommend taking the training provided by Anomali as it is very well articulated. I advise reading the user manual and taking the instructor-led training sessions from the customer...
See all answers
Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?
In my market, a lot of financial companies had or have an ArcSight installation. Just because in former times it was pretty good. Now a lot of them are looking for a more effective solution due to ...
See all answers
What do you like most about ArcSight Enterprise Security Manager (ESM)?
We utilize ArcSight ESM for real-time threat detection in our organization. We have custom rules that we've developed on top of the WAN services, along with scheduled licensing activities.
See all answers
What is your experience regarding pricing and costs for ArcSight Enterprise Security Manager (ESM)?
ArcSight Enterprise Security Manager (ESM) is very cheap compared to other tools. It is worth the investment if you are considering the cost.
See all answers
 

Comparisons

ThreatConnect Threat Intelligence Platform (TIP) vs Anomali Logo
ThreatConnect Threat Intelligence Platform (TIP) vs Anomali
Compared 20% of the time
Recorded Future vs Anomali Logo
Recorded Future vs Anomali
Compared 17% of the time
ThreatQ vs Anomali Logo
ThreatQ vs Anomali
Compared 13% of the time
Splunk Enterprise Security vs Anomali Logo
Splunk Enterprise Security vs Anomali
Compared 11% of the time
SOCRadar Extended Threat Intelligence vs Anomali Logo
SOCRadar Extended Threat Intelligence vs Anomali
Compared 6% of the time
More Anomali Competitors
Trellix ESM vs OpenText Enterprise Security Manager Logo
Trellix ESM vs OpenText Enterprise Security Manager
Compared 18% of the time
IBM Security QRadar vs OpenText Enterprise Security Manager Logo
IBM Security QRadar vs OpenText Enterprise Security Manager
Compared 11% of the time
Splunk Enterprise Security vs OpenText Enterprise Security Manager Logo
Splunk Enterprise Security vs OpenText Enterprise Security Manager
Compared 10% of the time
Elastic Security vs OpenText Enterprise Security Manager Logo
Elastic Security vs OpenText Enterprise Security Manager
Compared 6% of the time
SurfWatch Labs SurfWatch vs OpenText Enterprise Security Manager Logo
SurfWatch Labs SurfWatch vs OpenText Enterprise Security Manager
Compared 5% of the time
More OpenText Enterprise Security Manager Competitors
 

Product Reports

Buyer's Guide
Threat Intelligence Platforms
July 2025
Anomali reportDownload Anomali product report
Buyer's Guide
OpenText Enterprise Security Manager
August 2025
OpenText Enterprise Security Manager reportDownload OpenText Enterprise Security Manager product report
 

Also Known As

Match, Lens, ThreatStream, STAXX, Anomali Security Analytics
Micro Focus ArcSight, HPE ArcSight, ArcSight
 

Overview

Anomali delivers advanced threat intelligence solutions designed to enhance security operations by providing comprehensive visibility into threats and enabling real-time threat detection and management.

Anomali stands out in threat intelligence, offering an innovative platform that integrates data to identify and analyze threats effectively. It enables teams to streamline threat detection processes and respond to incidents with increased agility. With a focus on accuracy and efficiency, Anomali supports cybersecurity professionals in making informed decisions to safeguard their networks consistently.

What are Anomali's core features?
  • ThreatStream: A platform that aggregates threat intelligence feeds to enhance threat assessment.
  • Match: An automated detection feature that matches internal log data against threat intelligence insights.
  • Link: Provides graphical visualization for threat analysis, helping to understand threat vectors better.
  • STAXX: A lightweight tool for collecting and analyzing open-source threat intelligence.
What are the key benefits and ROI of using Anomali?
  • Improved Threat Detection: Streamlined processes lead to faster identification and response to threats.
  • Resource Efficiency: Automation reduces manual tasks, allowing security teams to focus on strategic activities.
  • Better Decision Making: Provides actionable insights that enable more informed security strategies.

In industries like finance and healthcare, Anomali is implemented to address specific challenges like compliance and data protection. By using this platform, organizations gain the ability to adapt to evolving threats, ensuring robust and adaptable security postures tailored to industry demands.

Anomali

OpenText Enterprise Security Manager enables real-time threat detection through scalable and adaptable solutions, integrating seamlessly with multiple platforms for complex security scenarios across different environments.

OpenText Enterprise Security Manager offers extensive security monitoring capabilities, combining log analysis and incident management to enhance cybersecurity and compliance. Its powerful event correlation engine provides real-time alerts for rapid incident response. Users benefit from customizable dashboards and comprehensive log collection, making it a significant tool in the SIEM market. Flexible deployment options cater to both on-premises and cloud environments, supporting enterprises in managing IT infrastructure and threat detection efficiently.

What are the key features of OpenText Enterprise Security Manager?
  • Event Correlation Engine: Real-time threat detection with advanced correlation capabilities.
  • Scalability: Adapts to enterprise-level demands and complex security needs.
  • Integration: Seamlessly integrates with multiple platforms and third-party tools.
  • Customizable Dashboards: Tailored views and active lists enhance user experience.
  • Advanced Alerting: Provides timely incident response and security alerts.
Why should users look for reviews when evaluating OpenText Enterprise Security Manager?
  • Timely Incident Responses: Fast alerting and action against threats.
  • User-Friendly Experience: Customizable dashboards simplify monitoring tasks.
  • Comprehensive Security Management: Integrated log management and threat detection across domains.
  • Adaptability and Scalability: Supports both on-premises and cloud deployments.

In industries such as finance, healthcare, and energy, OpenText Enterprise Security Manager is implemented for monitoring critical systems and ensuring compliance with regulatory needs. Enterprises leverage its capabilities for forensic investigations and active threat management, serving as a central hub for cybersecurity operations across diverse IT infrastructures.

OpenText
 

Sample Customers

Bank of England, First Energy, UBISOFT, Bank of Hope, Blackhawk Network
Lake Health, U.S. Department of Health and Human Services, Bank AlJazira, Banca Intesa, and Obrela.
Buyer's Guide
Anomali vs. OpenText Enterprise Security Manager
July 2025
Free Report: Anomali vs. OpenText Enterprise Security Manager
Find out what your peers are saying about Anomali vs. OpenText Enterprise Security Manager and other solutions. Updated: July 2025.
DOWNLOAD NOW
865,384 professionals have used our research since 2012.
See our Anomali vs. OpenText Enterprise Security Manager report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.