No more typing reviews! Try our Samantha, our new voice AI agent.

Netsurion vs Netwrix Auditor comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 18, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Netsurion
Ranking in Security Information and Event Management (SIEM)
49th
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
24
Ranking in other categories
Managed Security Services Providers (MSSP) (22nd), SOC as a Service (11th), Managed Detection and Response (MDR) (32nd), Extended Detection and Response (XDR) (44th)
Netwrix Auditor
Ranking in Security Information and Event Management (SIEM)
33rd
Average Rating
9.2
Reviews Sentiment
7.2
Number of Reviews
8
Ranking in other categories
GRC (14th), Identity and Access Management as a Service (IDaaS) (IAMaaS) (15th), Active Directory Management (3rd)
 

Mindshare comparison

As of July 2026, in the Security Information and Event Management (SIEM) category, the mindshare of Netsurion is 0.8%, up from 0.5% compared to the previous year. The mindshare of Netwrix Auditor is 0.7%, up from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
Netwrix Auditor0.7%
Netsurion0.8%
Other98.5%
Security Information and Event Management (SIEM)
 

Featured Reviews

John-Berry - PeerSpot reviewer
Information Technology Manager at ProfitSolv
The SOC center monitors, hunts, and notifies us of threats around the clock
I know they are working to resolve this issue, but Netsurion is currently unable to retrieve logs from S3 buckets. We use WP Engine for a lot of web hosting as well as AWS, and both of these platforms use S3 buckets. I would like Netsurion to be able to pull logs from Linux devices. We have some of that capability, and I believe they can do it. However, the way it works with Amazon is strange and glitchy. Therefore, working something out with Amazon would be great. Netsurion's SOC can be a bit too aggressive at times. We have asked them to adjust their playbook because I am tired of being notified about the same issue multiple times a day. I am aware of the issue, and it is not a cause for concern. Let's only take action on this issue if we see an actual problem.
RishiPandit - PeerSpot reviewer
Lead - Technical Services at Impetus
Optimizing time and effort through comprehensive auditing features
Netwrix Auditor doesn't have many competitors at the level in which it is placed. All other companies provide auditing solutions but not up to the feature list; it is very broad and robust. The best features include flexibility to interact directly with MS-SQL. Real-time alerts help identify potential security threats. The ability to streamline audits with insights into configuration states is helpful, as the access reviews and audit reports are really insightful. This is a good tool. The search functionality is available, but comparative to other vendors, this is a bit slower. Reports are effective; the compliance reports and all the reports are very insightful. That is good.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We don't have the eyeballs available to stare and watch for things, or even have the capability of building internal alert systems. So, the managed SOC has been huge for freeing up staff to work on other responsibilities. We are saving on at least one full-time employee."
"I like the UI, overall. I like the main page and there are aspects of the search page that I like. When you bring it up on the left-hand side of the page, as you look at the events, the ability to simply hit and click the plus/minus to pull events in and out of the overall view is well done and is very effective from a threat-hunting and an analysis perspective. I like the detail it shows."
"If we need to do a search for user lockouts, we can go, search, and find locations where they have been locked out, then keep track of those events, historically."
"EventTracker is exactly that; it's giving me all of the features and functions that we need to do our jobs, and at a price point that's incredibly attractive."
"Having this in place gives us the ability to see what's going on, on a daily basis, on all of our systems across the enterprise."
"With the managed component, we get that personal attention and that consistent team to deal with, and to some extent, it's like they're part of our IT team."
"Of all the products and vendors that we've used, I've never had a more positive experience with a support team than with EventTracker's support team."
"Netsurion has its own security operations center, where it tracks information that comes across our telemetry."
"The most valuable feature is the real-time monitoring."
"Without Netwrix, it's impossible to take control of things."
"I have found user behavior analysis and the ability to run risk assessments important features, and additionally the interface and online documentation are very good."
"Netwrix provides features that no other solution on the market does."
"I am impressed with the tool's reporting feature and notifications."
"It maintains audit logs for the duration of time that you wish, as long as you have the storage capacity to do so."
"The most valuable features of Netwrix Auditor are its affordability compared to similar products and its comprehensive monitoring of admin activities."
"What I find the most valuable about Netwrix Auditor is the way it shows risk. The reports are very clear."
 

Cons

"I would like to see a faster response when we see things like 15,000 lockouts."
"The onboarding process was complex, there was quite a learning curve, and few of our technical staff knew what they were talking about on the Netsurion side, but we were expected to do all the work."
"The solution's dashboard is okay. The one thing that we ran into are issues when we upgraded to the newer version. It uses Elasticsearch for the different dashboard entries. So, we were running on spinning disks, and Elasticsearch didn't work that well. A number of the different dashboards, like my dashboard or different things like that, pull from Elasticsearch. Since Elasticsearch really wasn't working, we were having some issues with that, but we just migrated."
"Using Netsurion has not meant we have consolidated cybersecurity technologies."
"The upfront costs have increased, and we have been locked into this contract."
"The system requirements are very, very high. So I need a pretty powerful server to run. If they could lighten that load so that the on-premise part of their product didn't impact my systems as much that would be ideal."
"Probably the biggest thing is just: Can I search for this and what's the best way to do it? If I'm looking for two events versus a singular event, I just throw it back at them. They're the experts on it."
"The MITRE ATT&CK framework could be faster when identifying and understanding sophisticated threats. Whenever something happens, we usually get notified a couple hours later."
"The solution lacks self-service on password reset. It also needs to improve its scalability."
"I expect usability features to become more refined over time. I'm interested to see how it evolves and continues to improve."
"In the UI, we have to adjust and resize our console many times, and sometimes it appears, sometimes you have to close and open it, and sometimes it does not give a scroll bar to navigate."
"There is room for improvements when it comes to the licensing."
"The Linux compatibility of this solution could be improved."
"There is room for improvement with the introduction of AI functionality."
"When there are issues I would like remediation to be in one place."
"An improvement would be if there was an another way to manage the logs besides email because it's not so practical."
 

Pricing and Cost Advice

"It is a bit expensive as compared to some of the other products that have come out in recent years. Expense-wise, the only downside is that it is not cheap."
"EventTracker's subscription-based model is interesting as far as yearly license type stuff. It's nice because you know what it's going to be next year. We haven't really looked at any other solutions. The pricing at the time compared to the other solutions was a lot less. A couple of years ago, we actually looked at Splunk. The amount in Splunk's licensing model is based on 20 gigs a day, or something like that. Based on our number of logs and stuff that we were already generating, the costs would be substantially more for the amount of logs that we would be getting."
"Netsurion's pricing is extremely fair and flexible. The price of their SIEM product is reasonable, and you can pay for those services you want on top of that. It wasn't cheap, but it's competitive, and we intend to renew our contract."
"You are paying for different levels, especially as far as the monitoring goes and how often you review it with the team. The other factor that figures in is how many nodes are on your network, such as clients, network equipment, servers, etc. There are some additional pieces on top of that, but it's laid out pretty simply, as far as how much you're going to pay for a node."
"Our budget follows the calendar year. We just started a new budget year at the beginning of the month. We did budget for an increase in our threat management system selection. Therefore, we have the budget to implement and accommodate a threat management system change, including an increase for the quoted actions that we received to improve EventTracker. We are just waiting on our council to approve that budget, which might not be for a little while. Hopefully, when they do, we will be able to jump on doing something."
"In the security space, it's hard to quantify your return on investment. So, I don't. We spend about $40,000 a year and so. It's hard to say if the SIEM saved that much money."
"Our pricing for Netsurion last year was US $52,000 per year."
"I don't know if the pricing is by the seat but we're paying about $20,000 to 25,000 a year. On top of that, we pay for the managed support services. That runs us about another $35,000 or $40,000 a year."
"There is a license for this solution and we are on an annual license. The price is reasonable."
"The tool's price is fair."
"This solution is reasonably priced. I would rate it a nine out of ten."
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
11%
Outsourcing Company
10%
Performing Arts
10%
Manufacturing Company
9%
Financial Services Firm
10%
Construction Company
9%
Manufacturing Company
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise7
Large Enterprise7
By reviewers
Company SizeCount
Small Business3
Midsize Enterprise1
Large Enterprise4
 

Questions from the Community

Ask a question
Earn 20 points
What is your experience regarding pricing and costs for Netwrix Auditor?
I don't know about the pricing of this, but it is good at this price point because our organization has purchased it, which means it was in budget. We usually do not buy expensive solutions, so the...
What needs improvement with Netwrix Auditor?
The areas of improvement include the front end, as the UI should be more intuitive and there should be fewer bugs. In the UI, we have to adjust and resize our console many times, and sometimes it a...
What is your primary use case for Netwrix Auditor?
We use Netwrix Auditor for auditing, log centralizing, centralizing the logs, log management, and for permission access management, giving permission on shared folders and Active Directory groups.
 

Also Known As

Netsurion Managed Threat Protection, Netsurion EventTracker
No data available
 

Overview

 

Sample Customers

The Salvation Army, The FRESH Market, Pacific Western Bank, NASA, American Academy of Orthopaedic Surgeons (AAOS), and Talbot’s Stores
AT&T, SanDisk, Siemens, Verizon, Electrolux, Allianz, Societe Generale
Find out what your peers are saying about Netsurion vs. Netwrix Auditor and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.