No more typing reviews! Try our Samantha, our new voice AI agent.

ManageEngine Log360 vs NetWitness Platform comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jun 3, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

ManageEngine Log360
Ranking in Log Management
23rd
Ranking in Security Information and Event Management (SIEM)
24th
Average Rating
7.6
Reviews Sentiment
6.8
Number of Reviews
19
Ranking in other categories
User Entity Behavior Analytics (UEBA) (13th)
NetWitness Platform
Ranking in Log Management
38th
Ranking in Security Information and Event Management (SIEM)
36th
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
36
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Log Management category, the mindshare of ManageEngine Log360 is 1.3%, up from 1.1% compared to the previous year. The mindshare of NetWitness Platform is 1.1%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Log Management Mindshare Distribution
ProductMindshare (%)
ManageEngine Log3601.3%
NetWitness Platform1.1%
Other97.6%
Log Management
 

Featured Reviews

Burak Karakurt - PeerSpot reviewer
Consultant at TurkOnay Elektronik Para ve Ödeme Hizmetleri A.Ş.
Has fulfilled regulatory requirements through centralized log management
The alerting capabilities in ManageEngine Log360 needed work for creating alarms for the cases where alarms were needed and for prioritizing the alarms for criticality. ManageEngine Log360 uses PostgreSQL as its own database but does not automatically parse and allow creation of alarms the way it does in MS SQL. There is less support in PostgreSQL than in MS SQL. The ability to create alarms based on parsed data in the same way MS SQL does would have been beneficial and would have saved considerable time. On the PostgreSQL side, it was not parsing much, which required a lot of manual work. This support is needed, and I am sure many companies need this support on PostgreSQL. MS SQL features that were missing in ManageEngine Log360 that should be included in the future are those that automatically parse an MS SQL database and provide options for setting alarms. On the PostgreSQL side, this is not the same. At minimum, PostgreSQL support should reach the MS SQL level of features and support that ManageEngine Log360 presents.
reviewer2256927 - PeerSpot reviewer
Head of Information Security, Cyber Defense and IT Risk Management at HCT. at a transportation company with 201-500 employees
A solid SIEM solution that should improve technical support and online resources to be easier to use
A big problem with the product is that we don't have much professional experience in Israel installing, implementing, and integrating this product. There is not enough of a knowledge base. There is no support for this product in this country, so problems have to be resolved through global technical teams. We like to work locally because of the language, and when the product is only supported outside the country, it's a little difficult to implement and use this product. Moreover, AI is something that must be added immediately. Artificial intelligence is a part of the competitors' products, and it's not been implemented for us.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features for us are the application logs monitoring and the dashboard, which provides a single-pane view of all the ongoing activities."
"We have to have these types of tools in place for protecting our network and our data, and it does a good job in that aspect."
"The product is very user-friendly."
"The deployment is quite simple and pretty straightforward."
"It is nice to be able to monitor and to have notifications."
"We have had a fantastic experience with customer service and support."
"You can have all of the logs from servers to network and it gets sent out to the correct owners. This is very helpful."
"The most valuable feature is that this solution is more secure than others, and there are more applications and features as well."
"Thanks to this tool, we have a small SOC running in our company."
"The most valuable feature is the correlation, as it can report in real-time and monitor the management."
"In my opinion, the solution's most valuable feature is its capacity to monitor network traffic, logs from devices within the network, and network captures. This capability extends beyond logs to include full network capturing."
"The detection of ransomware in the internal network has benefited my organization."
"The newer 11.5 version that my team is using has found it to have good mapping."
"Alerting Module: It provides real-time event processing language on all the logs/packets stream for advanced alerting, i.e., using SQL LIKE statements."
"Once it is deployed and you are used to it, you can do whatever you want."
"The most valuable features are the packet decoder, log decoder, and concentrator."
 

Cons

"Log360 currently cannot gather information from Intune logs or cloud-integrated systems."
"It's difficult to find which conditions have been applied to a report because they are provided by default by ManageEngine. However, with other SIEMs if you want to create a report, they provide details, like which conditions are triggering certain reports. This needs to be there in ManageEngine. It would be good to know which parameter has been applied to the report that is updating the system."
"While ManageEngine Log360 is a significant improvement, there could be enhancements in terms of integrating more user-friendly training materials and better deployment documentation."
"The graphical interface could be made easier to use when you are connecting to different network equipment."
"The integration with SharePoint and Teams should be improved."
"Most times log sheets are not assigned well."
"The on-premises solution is very slow. When I move to another tab inside Log360 or in the SIEM, even if my system is running on 36 GB and with a high processor, it takes a lot of time to get into the alert page or the search page."
"There are issues with stability."
"It is overly complicated. It has taken years to implement and the return on investment just isn't there."
"I cannot say that the solution was stable because it tended to crash."
"The system looks like it is a mix of a bunch of different systems, and nothing looked like it was quite together."
"It should have a monitoring feature. It would help us analyze the current state of attacks faster from a single platform."
"The multi-tenant capabilities are lagging compared to IBM QRadar."
"One thing to be improved in NetWitness is the capability to correlate event logs in a general sense."
"If we have the ability to run a dynamic analysis through malware in the same suite, it would be great to have a sandbox solution to analyze malware through dynamic analysis."
"There is no support for this product in this country, so problems have to be resolved through global technical teams."
 

Pricing and Cost Advice

"ManageEngine Log360 is expensive compared to other products."
"Its pricing is definitely huge compared to some of the other SIEMs. Its price should be improved."
"Affordable pricing is provided by the solution."
"My client has a yearly license. I think the cost is not expensive compared to that of other SIEMs, given the service it is providing."
"There is a cost for each feature used."
"It is cheap."
"The tool is very expensive, so I rate the pricing a ten out of ten. The solution has an annual subscription."
"The product price was reasonable for my region and the market."
"Our license is for one year."
"We have yearly licensing costs. The license fee can be based on the volume of EPS. Some organizations may have, as a gentlemanly gesture, 10,000 EPS and get a 3,000 EPS license but actually use 5,000 EPS."
"This is a pricey solution; it's not cheap."
"In comparison to other SIEM solutions such as Splunk, NetWitness is less costly."
"The new pricing and licensing mechanisms are fair. I would advise always to get the full solution (i.e., not only Logs)."
report
Use our free recommendation engine to learn which Log Management solutions are best for your needs.
902,894 professionals have used our research since 2012.
 

Comparison Review

VS
Manager, Enterprise Risk Consulting at a tech company with 1,001-5,000 employees
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
 

Top Industries

By visitors reading reviews
Financial Services Firm
10%
Comms Service Provider
9%
Construction Company
9%
Manufacturing Company
8%
Financial Services Firm
12%
Construction Company
11%
Comms Service Provider
9%
Outsourcing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business14
Midsize Enterprise2
Large Enterprise2
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise7
Large Enterprise20
 

Questions from the Community

What is your experience regarding pricing and costs for ManageEngine Log360?
The price is suitable from a perspective of different pricing options. We already have an ongoing project where some features analytics can be escaped, and companies can manage their budgets carefu...
What needs improvement with ManageEngine Log360?
ManageEngine Log360 could provide more in-depth insights, particularly in reporting. Some other solutions provide deeper insights into issues, especially when generating reports. More detailed insi...
What is your primary use case for ManageEngine Log360?
ManageEngine Log360 is being used for database monitoring and as a SIEM solution.
What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
What is your primary use case for NetWitness Platform?
I use NetWitness Platform ( /products/netwitness-platform-reviews ) in the financial industry as a good product with excellent capabilities and integration with various devices.
 

Also Known As

No data available
RSA Security Analytics
 

Overview

 

Sample Customers

First Mountain Bank, TRA, Citadel Group, OnPoint Financial Corp, Florida Dept. of Transportation
Los Angeles World Airports, Reply
Find out what your peers are saying about ManageEngine Log360 vs. NetWitness Platform and other solutions. Updated: June 2026.
902,894 professionals have used our research since 2012.