Try our new research platform with insights from 80,000+ expert users

NetWitness Platform vs OpenText Enterprise Security Manager comparison

NetWitness and OpenText are both solutions in the Security Information and Event Management (SIEM) category. NetWitness is ranked #30 with an average rating of 8.0, while OpenText is ranked #22 with an average rating of 7.0. NetWitness holds a 0.6% mindshare in SIEM, compared to OpenText’s 1.5% mindshare. Additionally, 75% of NetWitness users are willing to recommend the solution, compared to 88% of OpenText users who would recommend it.
NetWitness Platform
Read 37 NetWitness Platform reviews
  • 1,537 Views
  • 1,014 Comparison Views
75% willing to recommend
OpenText Enterprise Securit...
Read 98 OpenText Enterprise Security Manager reviews
  • 2,664 Views
  • 2,557 Comparison Views
88% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jun 19, 2025

NetWitness Platform and OpenText Enterprise Security Manager compete in the security monitoring solutions category. NetWitness holds a slight edge due to its superior real-time analytics for immediate threat detection and response.

Features: NetWitness Platform offers advanced threat detection, network visibility, and incident response. OpenText Enterprise Security Manager provides centralized security data management, integration with various data sources, and extensive data management features.

Room for Improvement: NetWitness Platform could enhance its user interface simplicity, log data integration, and customer training resources. OpenText Enterprise Security Manager may benefit from simplifying its setup process, expanding real-time threat detection capabilities, and improving scalability options.

Ease of Deployment and Customer Service: NetWitness Platform ensures a straightforward deployment with comprehensive support for easy integration into existing systems. OpenText Enterprise Security Manager, on the other hand, involves a more extensive setup process but includes responsive customer service and detail-oriented customization.

Pricing and ROI: NetWitness Platform offers competitive pricing with notable ROI because of its efficient threat detection and rapid response capabilities. OpenText Enterprise Security Manager requires a higher initial investment but justifies the cost with its extensive data integration and management features, providing significant long-term value.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed NetWitness Platform vs. OpenText Enterprise Security Manager Report (Updated: September 2025).
Buyer's Guide
NetWitness Platform vs. OpenText Enterprise Security Manager
September 2025
Download the complete report
Helped 867,497 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

NetWitness Platform
Ranking in Security Information and Event Management (SIEM)
30th
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
37
Ranking in other categories
Log Management (34th)
OpenText Enterprise Securit...
Ranking in Security Information and Event Management (SIEM)
22nd
Average Rating
7.8
Reviews Sentiment
6.7
Number of Reviews
98
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of September 2025, in the Security Information and Event Management (SIEM) category, the mindshare of NetWitness Platform is 0.6%, up from 0.6% compared to the previous year. The mindshare of OpenText Enterprise Security Manager is 1.5%, up from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Market Share Distribution
ProductMarket Share (%)
OpenText Enterprise Security Manager1.5%
NetWitness Platform0.6%
Other97.9%
Security Information and Event Management (SIEM)
 

Featured Reviews

MOTASHIM Al Razi - PeerSpot reviewer
It is a stable solution, but they should make the user interface easier to understand
The solution's initial setup takes work. We have to organize multiple paths and many features. The deployment process takes less than a week. But it takes a month to complete if we want to make the solution smarter by integrating it with various devices. I rate the process as a six out of ten.
Read full review
Gaurav Ranade - PeerSpot reviewer
Excels at performing regression and correlation on the data
ArcSight is a legacy technology, and many customers want AI-powered technologies integrated with it. That hasn't been done yet, but ArcSight needs to catch up with the newer solutions and technologies available in the market. It can't just rely on the legacy technology from 2010 or 2012. You can't run that in 2024. It's a legacy technology with its own limitations. Customers often face issues that other software or newer solutions can resolve easily. That's the main challenge we face from customers right now. So, the only concerns are that AI needs to be integrated and scalability improved. Those are the main areas to be improved.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features are its ingestion of logs and raising of alerts based on those logs."
"The most valuable features are the packet decoder, log decoder, and concentrator."
"It gives the ability to investigate into network traffic in the Net and the organization what we couldn't do before."
"The solution is really scalable for the high-end power, enterprise customer."
"The product's initial setup phase was not at all difficult."
"NetWitness Platform offers flexibility for deployment and robust integration capabilities."
"It gives the capability for the incident response team to correlate logs to identify any kind of problem like malware and incidents in a general sense, both for logs and packets."
"Their technical support responds quickly and are knowledgable."
More NetWitness Platform pros
"The feature that I have found the most useful is that it can be deployed to the cloud."
"Stable solution with good customer service support."
"The solution offers very good monitoring."
"Usability is the most valuable feature. The accessibility is quite good."
"ArcSight gives us better visibility into threats that were unknown earlier."
"The out-of-the-box rules that help us configure functioning rules within the environment are valuable."
"The solution has gone beyond signature-based monitoring and analysis and is AI-powered. It is good enough to cover the full range of cybersecurity services."
"ESM has valuable features for event prediction and security analysis."
More OpenText Enterprise Security Manager pros
 

Cons

"If we have the ability to run a dynamic analysis through malware in the same suite, it would be great to have a sandbox solution to analyze malware through dynamic analysis."
"I'd like to see improvement in its ease of use. It's basically unusable. It's overly complex."
"The implementation needs assistance."
"It should have a monitoring feature. It would help us analyze the current state of attacks faster from a single platform."
"An area for improvement would be better automation and more inbuilt use cases."
"The documentation is not as structured as I would like, personally, and I think that it can be improved and made much more user-friendly."
"The product's licensing models are complex to understand. This particular area needs improvement."
"The initial setup is complex. There are other solutions that are easier to implement."
More NetWitness Platform cons
"Its search part can be improved. When I go to the console and search for a few logs or something else, it takes a lot of time. When I try to search for three days or one week, it takes too much time. This is a major area of improvement. I wanted them to include features like SOAR, threat intelligence, and automation, and they seem to have included all these features in version 7.3 or 7.4."
"The stability of ArcSight Enterprise Security Manager (ESM) is not very robust."
"When we need to consume old events, we have to wait for a long time. ArcSight should improve the database capability to reply to queries faster. It would also be interesting if they implemented network visibility. For example, they could add a feature like NetWitness with a model just for looking through the packets."
"ArcSight ESM is lacking cloud scalable technology."
"The way that scaling is set up isn't very cost-effective."
"The visualization is not very good compared to Splunk."
"The product should include a lot more predefined scenarios so the adopted company will have knowledge and a broader skill set in security and network."
"What could be improved in ArcSight Enterprise Security Manager (ESM) is its analytics feature. That feature should be more powerful and have more correlation in terms of AI/ML, though MicroFocus has done a good job in adding analytics to ArcSight Enterprise Security Manager (ESM) which has become a big draw to customers. What I'd like to see in the next release of the solution is the addition of AI/ML features."
More OpenText Enterprise Security Manager cons
 

Pricing and Cost Advice

"We have yearly licensing costs. The license fee can be based on the volume of EPS. Some organizations may have, as a gentlemanly gesture, 10,000 EPS and get a 3,000 EPS license but actually use 5,000 EPS."
"It is cheap."
"We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."
"In comparison to other SIEM solutions such as Splunk, NetWitness is less costly."
"Compared to the competition, the is price is not that high."
"The new pricing and licensing mechanisms are fair. I would advise always to get the full solution (i.e., not only Logs)."
"We are on an annual license for the use of the solution."
"Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day."
More NetWitness Platform pricing and cost advice
"Thanks to Micro Focus's licensing model, as an MSSP, we are able to see a complete return on our investment almost immediately."
"The licensing cost is affordable if you get an enterprise license. The licensing is based on EPS, so you can probably provide a package of license for multiple ESMs with their correlational end fees. It is cost-effective."
"Aggregation can help a lot in pushing down licensing costs."
"The pricing model is expensive compared to open-source alternatives."
"Pricing is good, I'd rate the pricing a seven out of ten, with ten being low price. It's better than Splunk and IBM QRadar because their pricing is based on EPS."
"ArcSight is pretty expensive compared with its competitors. I believe that is fine as it provides value."
"ArcSight ESM is an affordable solution, it cost approximately $200,000 for three years. This price was at a substantial discount."
"The cost of the solution is not very high, although hiring a qualified analyst to work with the product is expensive."
More OpenText Enterprise Security Manager pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
867,497 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Computer Software Company
12%
Performing Arts
7%
Manufacturing Company
6%
Financial Services Firm
14%
Computer Software Company
13%
Manufacturing Company
11%
Educational Organization
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise7
Large Enterprise20
By reviewers
Company SizeCount
Small Business37
Midsize Enterprise14
Large Enterprise57
 

Questions from the Community

What do you like most about NetWitness Platform?
The product's initial setup phase was not at all difficult.
See all answers
What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
See all answers
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
See all answers
Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?
In my market, a lot of financial companies had or have an ArcSight installation. Just because in former times it was pretty good. Now a lot of them are looking for a more effective solution due to ...
See all answers
What do you like most about ArcSight Enterprise Security Manager (ESM)?
We utilize ArcSight ESM for real-time threat detection in our organization. We have custom rules that we've developed on top of the WAN services, along with scheduled licensing activities.
See all answers
What is your experience regarding pricing and costs for ArcSight Enterprise Security Manager (ESM)?
ArcSight Enterprise Security Manager (ESM) is very cheap compared to other tools. It is worth the investment if you are considering the cost.
See all answers
 

Comparisons

IBM Security QRadar vs NetWitness Platform Logo
IBM Security QRadar vs NetWitness Platform
Compared 20% of the time
Splunk Enterprise Security vs NetWitness Platform Logo
Splunk Enterprise Security vs NetWitness Platform
Compared 20% of the time
Elastic Security vs NetWitness Platform Logo
Elastic Security vs NetWitness Platform
Compared 13% of the time
RSA enVision vs NetWitness Platform Logo
RSA enVision vs NetWitness Platform
Compared 10% of the time
Fortinet FortiSIEM vs NetWitness Platform Logo
Fortinet FortiSIEM vs NetWitness Platform
Compared 6% of the time
More NetWitness Platform Competitors
Trellix ESM vs OpenText Enterprise Security Manager Logo
Trellix ESM vs OpenText Enterprise Security Manager
Compared 19% of the time
IBM Security QRadar vs OpenText Enterprise Security Manager Logo
IBM Security QRadar vs OpenText Enterprise Security Manager
Compared 11% of the time
Splunk Enterprise Security vs OpenText Enterprise Security Manager Logo
Splunk Enterprise Security vs OpenText Enterprise Security Manager
Compared 9% of the time
SurfWatch Labs SurfWatch vs OpenText Enterprise Security Manager Logo
SurfWatch Labs SurfWatch vs OpenText Enterprise Security Manager
Compared 6% of the time
Elastic Security vs OpenText Enterprise Security Manager Logo
Elastic Security vs OpenText Enterprise Security Manager
Compared 6% of the time
More OpenText Enterprise Security Manager Competitors
 

Product Reports

Buyer's Guide
NetWitness Platform
August 2025
NetWitness Platform reportDownload NetWitness Platform product report
Buyer's Guide
OpenText Enterprise Security Manager
August 2025
OpenText Enterprise Security Manager reportDownload OpenText Enterprise Security Manager product report
 

Also Known As

RSA Security Analytics
Micro Focus ArcSight, HPE ArcSight, ArcSight
 

Overview

NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.

NetWitness

OpenText Enterprise Security Manager enables real-time threat detection through scalable and adaptable solutions, integrating seamlessly with multiple platforms for complex security scenarios across different environments.

OpenText Enterprise Security Manager offers extensive security monitoring capabilities, combining log analysis and incident management to enhance cybersecurity and compliance. Its powerful event correlation engine provides real-time alerts for rapid incident response. Users benefit from customizable dashboards and comprehensive log collection, making it a significant tool in the SIEM market. Flexible deployment options cater to both on-premises and cloud environments, supporting enterprises in managing IT infrastructure and threat detection efficiently.

What are the key features of OpenText Enterprise Security Manager?
  • Event Correlation Engine: Real-time threat detection with advanced correlation capabilities.
  • Scalability: Adapts to enterprise-level demands and complex security needs.
  • Integration: Seamlessly integrates with multiple platforms and third-party tools.
  • Customizable Dashboards: Tailored views and active lists enhance user experience.
  • Advanced Alerting: Provides timely incident response and security alerts.
Why should users look for reviews when evaluating OpenText Enterprise Security Manager?
  • Timely Incident Responses: Fast alerting and action against threats.
  • User-Friendly Experience: Customizable dashboards simplify monitoring tasks.
  • Comprehensive Security Management: Integrated log management and threat detection across domains.
  • Adaptability and Scalability: Supports both on-premises and cloud deployments.

In industries such as finance, healthcare, and energy, OpenText Enterprise Security Manager is implemented for monitoring critical systems and ensuring compliance with regulatory needs. Enterprises leverage its capabilities for forensic investigations and active threat management, serving as a central hub for cybersecurity operations across diverse IT infrastructures.

OpenText
 

Sample Customers

Los Angeles World Airports, Reply
Lake Health, U.S. Department of Health and Human Services, Bank AlJazira, Banca Intesa, and Obrela.
Buyer's Guide
NetWitness Platform vs. OpenText Enterprise Security Manager
September 2025
Free Report: NetWitness Platform vs. OpenText Enterprise Security Manager
Find out what your peers are saying about NetWitness Platform vs. OpenText Enterprise Security Manager and other solutions. Updated: September 2025.
DOWNLOAD NOW
867,497 professionals have used our research since 2012.
See our NetWitness Platform vs. OpenText Enterprise Security Manager report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.