OpenText Enterprise Security Manager (OpenText ESM) and Trellix Enterprise Security Manager (Trellix ESM) compete in the enterprise security management sector. Trellix ESM seems to have the upper hand in ease of use and user-friendliness, appealing more to users for daily operations.
Features: OpenText ESM is known for its high event ingestion capability, robust correlation, and support for multiple log sources, providing a customizable and integrable platform. Trellix ESM offers pre-built correlations, dashboards, and reports, enhancing its ease of use while supporting diverse data inputs.
Room for Improvement: OpenText ESM struggles with significant customization requirements, a complex installation process, and could improve API integration and support services. Trellix ESM faces integration challenges with SaaS solutions and could enhance its stability and reduce resource demands, alongside improving support services and documentation.
Ease of Deployment and Customer Service: OpenText ESM primarily deploys on-premises but also supports hybrid and cloud setups, requiring expertise that complicates deployment. Its customer service needs better initial problem resolution and response speed. Trellix ESM, also mainly on-premises with hybrid cloud support, benefits from easier setup but faces similar customer service issues regarding timely resolutions.
Pricing and ROI: OpenText ESM is generally seen as expensive, with costs influenced by event volume and deployment complexity; however, the functionality is valued by users who find the cost justified. Trellix ESM offers a scalable pricing model, making costs reasonable compared to competitors like IBM QRadar. Users find significant value and ROI in security management despite initial expense.
I find that using ArcSight Enterprise Security Manager (ESM) provides a valuable return on investment as it serves as a single point of glass for logs and data analysis.
If I raise a P1 or P0 ticket, the response time is often delayed by four to eight hours.
I would rate the technical support of ArcSight Enterprise Security Manager (ESM) a nine as they are always available and responsive whenever we open a case.
It's rare for me to need them unless it's an issue with licensing, and they are the best in that regard.
I would rate support for Trellix ESM 10 out of 10 because if we connect with the support in the UK, we get excellent support.
It lacks some capabilities compared to other tools available in the market.
It is easy to scale, and I have not encountered any issues when we require more storage or deployment.
Scalability is quite easier with Trellix ESM, because all we need to do is add more receivers to it, so it can go to any point.
I would rate the stability of ArcSight Enterprise Security Manager (ESM) a nine because I have not encountered significant issues, unlike other solutions that sometimes have database errors.
The stability of ArcSight Enterprise Security Manager (ESM) is not very robust.
I would like to see the detection and response features included in the next release of ArcSight Enterprise Security Manager (ESM), as security orchestration and automation are increasingly important.
The integration aspect of ArcSight Enterprise Security Manager (ESM) needs improvement.
If there is any device which is not covered, there should not be any additional charges for writing the custom parsers on that.
I would rate the pricing of ArcSight Enterprise Security Manager (ESM) around seven, as it varies based on features and demand, making it more affordable for larger organizations, while smaller ones might find it expensive.
ArcSight Enterprise Security Manager (ESM) is very cheap compared to other tools.
The log analysis feature is particularly valuable as it allows analysts to interpret intrusion-related logs efficiently.
The ability to interpret data is highly valued.
The weakest point is it doesn't cover almost all the devices, so the customer has to be more dependent on the parsers to be written by the Professional Services team.
| Product | Mindshare (%) |
|---|---|
| OpenText Enterprise Security Manager | 1.5% |
| Trellix ESM | 1.2% |
| Other | 97.3% |
| Company Size | Count |
|---|---|
| Small Business | 37 |
| Midsize Enterprise | 14 |
| Large Enterprise | 59 |
| Company Size | Count |
|---|---|
| Small Business | 15 |
| Midsize Enterprise | 6 |
| Large Enterprise | 25 |
OpenText Enterprise Security Manager enables real-time threat detection through scalable and adaptable solutions, integrating seamlessly with multiple platforms for complex security scenarios across different environments.
OpenText Enterprise Security Manager offers extensive security monitoring capabilities, combining log analysis and incident management to enhance cybersecurity and compliance. Its powerful event correlation engine provides real-time alerts for rapid incident response. Users benefit from customizable dashboards and comprehensive log collection, making it a significant tool in the SIEM market. Flexible deployment options cater to both on-premises and cloud environments, supporting enterprises in managing IT infrastructure and threat detection efficiently.
What are the key features of OpenText Enterprise Security Manager?In industries such as finance, healthcare, and energy, OpenText Enterprise Security Manager is implemented for monitoring critical systems and ensuring compliance with regulatory needs. Enterprises leverage its capabilities for forensic investigations and active threat management, serving as a central hub for cybersecurity operations across diverse IT infrastructures.
Trellix ESM is an innovative tool designed to enhance security management through its seamless integration, user-friendly deployment, customizable dashboards, and robust threat detection capabilities.
Trellix ESM is essential for comprehensive security management, ensuring effective threat detection and analysis. It integrates seamlessly with third-party systems and provides advanced correlation and security visualization. Capable of managing logs and monitoring network traffic, it enhances security across diverse environments, making it indispensable for security operations. Despite needing improved SaaS integration, API documentation, and addressing stability issues, it remains crucial for user-friendly deployment and incident analysis. Its benefits are complemented by comprehensive reporting and real-time malware protection.
What Are Trellix ESM's Most Important Features?In diverse industries, Trellix ESM is deployed for central log management and security operations, monitoring servers, virtual machines, and hybrid-cloud environments. Companies use it for managed security services and threat detection, analyzing logs and securing data. It finds great use in monitoring network vulnerabilities and event correlation, enabling service providers and MSSPs to effectively manage endpoints and hybrid-cloud setups as well as gather logs from servers and firewalls, offering abundant transparency into security threats and network activities.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
