Elastic Security vs SolarWinds Security Event Manager comparison

Elastic Security vs. SolarWinds Security Event Manager

Download the complete report

Helped 849,686 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Elastic Security

Ranking in Security Information and Event Management (SIEM)

5th

Average Rating

7.8

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Log Management (7th), Endpoint Detection and Response (EDR) (16th), Security Orchestration Automation and Response (SOAR) (6th), Extended Detection and Response (XDR) (8th)

SolarWinds Security Event M...

Ranking in Security Information and Event Management (SIEM)

21st

Average Rating

7.8

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of May 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Elastic Security is 6.3%, down from 9.3% compared to the previous year. The mindshare of SolarWinds Security Event Manager is 0.6%, down from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

SyedAli17

Assistant Director at PTA

Centralized monitoring improves security posture through rapid data processing

The processing part of Elastic Security ( /products/elastic-security-reviews ) is very interesting for us since we handle almost 7,000 to 8,000 alerts per minute. We require rapid processing speed for alerts and event data, and Elastic Security is very efficient at handling this level of data. Additionally, Elastic Security helps improve the security posture of Pakistan through centralized visibility and real-time processing.

Read full review

Alex Kinyanjui

Enterprise Cloud Infrastructure Engineer at Safaricom

A stable and scalable solution that provide 24/7 monitoring

We have to protect customer data, including any PII, accessed via the internet terminal. Additionally, we need to monitor events from network devices and servers that may raise suspicion, allowing us to analyze them and determine what is occurring. SolarWinds affected your overall security costs. Considering the nature of our traffic, it has been very effective. We have proactively identified and addressed issues before they escalate into incidents. I've noticed a reduced investment in handling event-related cases with SolarWinds Security Event Manager. This reduction includes reducing human resources and the time required for teams to provide 24/7 monitoring. Consequently, there has been a significant decrease in costs. Additionally, the platform enables us to address issues before they escalate into incidents, thus preventing revenue leakage. As a result, the organization experiences reduced costs and avoids revenue leakage. Since the SolarWinds Security Event Manager implementation, the total budget allocated to security has been reduced by close to five percent. Initially, there was a heavy investment in that aspect, but we have observed this reduction in the allocated budget for the security team. Since implementing SolarWinds Security Event Manager, the team members' pressure has been reduced. They can now concentrate on more critical tasks and development, promoting growth within their department rather than solely focusing on incident monitoring. I recommend the solution. Overall, I rate the solution an eight out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Elastic Security is very customizable, and the dashboards are very easy to build."

"The indexes allow you to get your results quickly. The filtering and log passing is the advantage of Logstash."

"Elastic Security offers advanced features such as machine learning and integration with ChatGPT."

"It is scalable."

"The most valuable features are the speed, detail, and visualization. It has the latest standards."

"It's simple and easy to use."

"Elastic has a lot of beats, such as Winlogbeat and Filebeat. Beats are the agents that have to be installed on the terminals to send the data. When we install beats or Elastic agents on every terminal, they don't overload the terminals. In other SIEM solutions such as Splunk or QRadar, when beats or agents are installed on endpoints, they are very heavy for the terminals. They consume a lot of power of the terminals, whereas Elastic agents hardly consume any power and don't overload the terminals."

"Elastic Security is a highly flexible platform that can be implemented anywhere."

More Elastic Security pros

"SolarWinds' stability is fine. I don't think we've had any software issues."

"It has in-depth monitoring capabilities and an easy way for setting up dashboards. I can expand in various areas, or I can reduce areas. It supports different types of breakdowns, filters, and rules. It is very simple for an out-of-the-box type of product. It doesn't take a lot of time to figure it out, which is unlike some of the solutions that I have looked at. It meets all the aspects."

"SolarWinds is effective for server, network, and log monitoring. It's also good for IP address management. We also have a patch manager, but we're still working on getting that operational."

"It's easy to build rules and actions based on the logs and event types we collect with the software."

"The graphical user interface is very user-friendly. SolarWinds is a hybrid solution so you can use it across many platforms."

"The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers."

"We had to integrate with other teams, and the infrastructure deployment didn't take long. The integration involves learning with different teams, networking, and configuring various network devices and servers. Infrastructure deployment only took one or two days."

"The most valuable feature is the ease of use for the end user."

More SolarWinds Security Event Manager pros

Cons

"The tool should improve its scalability."

"The setup process is complex. You need a solid working knowledge of networking, operating systems, and a little programming."

"Email notification should be done the same way as Logentries does it."

"Improvements in Elastic Security could include refining and normalizing queries to make them more user-friendly, enhancing the user experience with better documentation, and addressing any latency issues."

"We set up a cron job to delete old logs so that we wouldn't hit a disk space issue. Such a feature should be available in the UI, where old logs can be deleted automatically. (Don’t know if this feature is already there)."

"In terms of improvement, there could be more automation in responding to and evaluating detections."

"It is difficult to anticipate and understand the space utilization, so more clarity there would be great."

"There are connectors to gather logs for Windows PCs and Linux PCs, but if we have to get the logs from Syslog then we have to do it manually, and this should be automated."

More Elastic Security cons

"I think the customization area in the tool can be considered as an area of concern where improvements are required."

"We'd like more customization capabilities."

"One of the drawbacks of being so flexible is that it is also a fairly complicated software application to install, configure, and maintain."

"The only issue is the pricetag. SolarWinds is a costly solution."

"It can be difficult for users who are inexperienced with the solution."

"SolarWinds should improve its correlation capabilities. The correlation does not automatically detect and reduce the events fast enough. You have to manually do a correlation report, which means the tool is not scalable in many ways."

"I would like to be able to dig deeper into the visibility of events or incidents to determine whether they are malicious, such as by doing behavior analysis."

"We have automated threat detection in the Alliance Security, Antoinette. However, if these features could be further enhanced, it would simplify my work, potentially allowing me to allocate more time to address complex issues."

More SolarWinds Security Event Manager cons

Pricing and Cost Advice

"Compared to other tools, Elastic Security is a cheaper solution."

"The product offers an amazing pricing structure. Price-wise, the product is very competitive."

"The pricing is in the middle. I think it is not an expensive experience if we compare it with big names, for example, QRadar, and also Oxide. I think Elastic Security is quite cheap. I would rate the pricing of this solution a five out of ten."

"The base product is open-source but if you need advanced security features then you need to pay for the subscription. Elastic Security's price is reasonable in some cases and in other cases it's not."

"The solution is free."

"Affordable but with additional costs"

"The licensing cost of Elastic Security is based on the daily ingestion rate. I can't recall the exact figure, but for 10GB of log action daily, it would cost around $20,000."

"The solution is not expensive and costs around ten dollars a month."

More Elastic Security pricing and cost advice

"Licenses can only be purchased in blocks of fifty at a time."

"The price of SolarWinds Security Event Manager is reasonable."

"We do a yearly license renewal. For a year, the solution costs roughly $500,000 USD. There are no costs beyond this yearly fee."

"It is in the appropriate mid-range. It is not as expensive as some of the other solutions. It is also not cheap."

"The pricing model would benefit from having package deals with other SolarWinds products."

"Licensing is on devices, so if you have many, then this may be high."

"The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten."

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

849,686 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Government

10%

Financial Services Firm

Comms Service Provider

Educational Organization

74%

Computer Software Company

Financial Services Firm

University

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Datadog vs ELK: which one is good in terms of performance, cost and efficiency?

With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...

What do you like most about Elastic Security?

Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...

What is your experience regarding pricing and costs for Elastic Security?

Since Elastic Security is community-based, it does not require significant costs. This is beneficial for SMEs as they do not need extensive budgets for security solutions.

What do you like most about SolarWinds Security Event Manager ?

The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers.

What is your experience regarding pricing and costs for SolarWinds Security Event Manager ?

The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten.

What needs improvement with SolarWinds Security Event Manager ?

I think the customization area in the tool can be considered as an area of concern where improvements are required In the future, I want to see the tool have better customization abilities with som...

Wazuh vs Elastic Security

Comparisons

Compared 21% of the time

CrowdStrike Falcon vs Elastic Security

Compared 8% of the time

IBM Security QRadar vs Elastic Security

Compared 7% of the time

Splunk Enterprise Security vs Elastic Security

Compared 7% of the time

Microsoft Defender for Endpoint vs Elastic Security

Compared 5% of the time

More Elastic Security Competitors

Wazuh vs SolarWinds Security Event Manager

Compared 34% of the time

Splunk Enterprise Security vs SolarWinds Security Event Manager

Compared 15% of the time

IBM Security QRadar vs SolarWinds Security Event Manager

Compared 11% of the time

Microsoft Sentinel vs SolarWinds Security Event Manager

Compared 9% of the time

LogRhythm SIEM vs SolarWinds Security Event Manager

Compared 8% of the time

More SolarWinds Security Event Manager Competitors

Product Reports

Elastic Security

Download Elastic Security product report

SolarWinds Security Event Manager

Download SolarWinds Security Event Manager product report

SolarWinds Security Event Manager report

Also Known As

Elastic SIEM, ELK Logstash

SolarWinds LEM, Solarwinds SIEM, TriGeo, Log and Event Manager

Overview

Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.

Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

Additional offerings and benefits:

The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

Elastic

When TriGeo was acquired by SolarWinds, TriGeo SIM became known as SolarWinds Log & Event Manager. This product is a leading Security Information and Event Management (SIEM) product and log management solution, which provides log collection, analysis, and real-time correlation.

SolarWinds

Sample Customers

Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care

NetSuite, EasyStreet, Legacy Texas Bank, and Energy Federal Credit Union, to name a few.

Elastic Security vs. SolarWinds Security Event Manager