Try our new research platform with insights from 80,000+ expert users

NetWitness Platform vs SolarWinds Security Event Manager comparison

NetWitness and SolarWinds are both solutions in the Security Information and Event Management (SIEM) category. NetWitness is ranked #30 with an average rating of 8.3, while SolarWinds is ranked #36 with an average rating of 7.5. NetWitness holds a 0.7% mindshare in SIEM, compared to SolarWinds’s 0.8% mindshare. Additionally, 75% of NetWitness users are willing to recommend the solution, compared to 82% of SolarWinds users who would recommend it.
NetWitness Platform
Read 36 NetWitness Platform reviews
  • 1,776 Views
  • 1,119 Comparison Views
75% willing to recommend
SolarWinds Security Event M...
Read 27 SolarWinds Security Event Manager reviews
  • 1,311 Views
  • 1,232 Comparison Views
82% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

NetWitness Platform and SolarWinds Security Event Manager compete in the advanced threat detection and security event management category. SolarWinds seems to have the upper hand due to its user-friendly features and ease of integration.

Features: NetWitness Platform is known for its advanced threat detection, real-time monitoring, and robust analytics. SolarWinds Security Event Manager is recognized for comprehensive log management, correlation capabilities, and a wide range of tools, all with user-friendly integration.

Room for Improvement: NetWitness Platform could improve reporting, scalability, and overall performance. SolarWinds Security Event Manager needs enhancements in threat intelligence, alerting mechanisms, and performance. Each product has specific areas for improvement based on user feedback.

Ease of Deployment and Customer Service: NetWitness Platform deployment is complex and requires technical expertise, but customer service is noted for high-quality support. SolarWinds Security Event Manager offers straightforward deployment and a responsive support team, making it easier for users to deploy and access customer service.

Pricing and ROI: NetWitness Platform has higher setup costs but offers significant ROI through advanced threat detection. SolarWinds Security Event Manager is more cost-effective, balancing cost and features, resulting in better overall ROI due to affordability and effectiveness.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed NetWitness Platform vs. SolarWinds Security Event Manager Report (Updated: December 2025).
Buyer's Guide
NetWitness Platform vs. SolarWinds Security Event Manager
December 2025
Download the complete report
Helped 879,310 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

NetWitness Platform
Ranking in Security Information and Event Management (SIEM)
30th
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
36
Ranking in other categories
Log Management (34th)
SolarWinds Security Event M...
Ranking in Security Information and Event Management (SIEM)
36th
Average Rating
7.8
Reviews Sentiment
5.7
Number of Reviews
27
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of December 2025, in the Security Information and Event Management (SIEM) category, the mindshare of NetWitness Platform is 0.7%, up from 0.6% compared to the previous year. The mindshare of SolarWinds Security Event Manager is 0.8%, up from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Market Share Distribution
ProductMarket Share (%)
NetWitness Platform0.7%
SolarWinds Security Event Manager0.8%
Other98.5%
Security Information and Event Management (SIEM)
 

Featured Reviews

MOTASHIM Al Razi - PeerSpot reviewer
MOTASHIM Al Razi
CISO at One Bank Limited
It is a stable solution, but they should make the user interface easier to understand
The solution's initial setup takes work. We have to organize multiple paths and many features. The deployment process takes less than a week. But it takes a month to complete if we want to make the solution smarter by integrating it with various devices. I rate the process as a six out of ten.
Read full review
Yashokanth Partkunan - PeerSpot reviewer
Yashokanth Partkunan
Managed Services Engineer at Loop1 Systems
Has supported client needs efficiently but requires deeper analysis features and faster support
The log analyzing capability of SolarWinds Security Event Manager should go into more depth than the current environment. More modification and enhancements are required on the dashboard side in order to make it closer to optimal performance. From observation and feedback from users, they need more functionality related to monitoring, and in-depth analyzing needs to be improved.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features are the packet inspection and the automated incident response."
"Performance and reporting are very good."
"The most valuable feature is the security that it provides."
"The most valuable feature of RSA NetWitness Logs and Packets are the alerts and correlations tools."
"The most valuable features are the threat prediction and network forensics."
"It's fully scalable. There is no limit. Of course, the license limits per day the number of terabytes. In my opinion, it's very flexible."
"The most valuable feature is the hunting ability to work in a CERT."
"The most valuable features are the integration and ease of use."
More NetWitness Platform pros
"It's extremely easy to deploy."
"The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers."
"SolarWinds Security Event Manager has been generally working well."
"We did previously use a different solution, but SolarWinds is much better. It's easy to interact with SolarWinds. It's easy to operate, easy to configure and is generally easier compared to what we were working with before."
"We had to integrate with other teams, and the infrastructure deployment didn't take long. The integration involves learning with different teams, networking, and configuring various network devices and servers. Infrastructure deployment only took one or two days."
"The out of the box reports and dashboard. It was easy to trim down these windows to something we could quickly use."
"SolarWinds is easy to configure, and it provides timely alerts."
"The solution helps me to go back in time and search for different events. For example, if you wanted to know who activated an account; you could go back in time and find out."
More SolarWinds Security Event Manager pros
 

Cons

"They should implement algorithms to digest that data and produce additional, more advanced reporting, alerting and support of internal security teams."
"Log aggregation is an issue with this solution because there are a huge number of alerts in a single instance."
"The log system is a bit complex and has room for improvement."
"The initial setup is very complex and should be simplified."
"If we have the ability to run a dynamic analysis through malware in the same suite, it would be great to have a sandbox solution to analyze malware through dynamic analysis."
"Lots of competing products have vulnerability protection built into their products, and this solution would be improved by including that support."
"An area for improvement would be better automation and more inbuilt use cases."
"The implementation needs assistance."
More NetWitness Platform cons
"We'd like more customization capabilities."
"SolarWinds should improve its correlation capabilities. The correlation does not automatically detect and reduce the events fast enough. You have to manually do a correlation report, which means the tool is not scalable in many ways."
"Training for this solution needs to be improved, as new employees are sometimes unfamiliar with the product."
"I would like to have a more customizable dashboard."
"The solution's technical support is okay, but we don't have an SLA, and sometimes the response times are very slow."
"We have automated threat detection in the Alliance Security, Antoinette. However, if these features could be further enhanced, it would simplify my work, potentially allowing me to allocate more time to address complex issues."
"The product should improve the ease with which you can create event alerts. They are not as hard now but you need to have an easier way."
"There are no multiple dashboards which would allow you to see information side-by-side."
More SolarWinds Security Event Manager cons
 

Pricing and Cost Advice

"RSA NetWitness Logs and Packets do not have a subscription model, it's a one-time purchase. There is only a perpetual license."
"The NetWitness Platform may be affordable only for enterprise-level customers, as it may not be within the budget of small and medium-sized businesses."
"In comparison to other SIEM solutions such as Splunk, NetWitness is less costly."
"The licenses are good but the cost is very expensive."
"It is cheap."
"It provides tools to assist in selecting the appropriate license and usage scenarios."
"We have yearly licensing costs. The license fee can be based on the volume of EPS. Some organizations may have, as a gentlemanly gesture, 10,000 EPS and get a 3,000 EPS license but actually use 5,000 EPS."
"We are on an annual license for the use of the solution."
More NetWitness Platform pricing and cost advice
"The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten."
"The price of SolarWinds Security Event Manager is reasonable."
"It is in the appropriate mid-range. It is not as expensive as some of the other solutions. It is also not cheap."
"Licensing is on devices, so if you have many, then this may be high."
"The pricing model would benefit from having package deals with other SolarWinds products."
"Licenses can only be purchased in blocks of fifty at a time."
"We do a yearly license renewal. For a year, the solution costs roughly $500,000 USD. There are no costs beyond this yearly fee."
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
879,310 professionals have used our research since 2012.
 

Comparison Review

VS
Vinod Shankar
Manager, Enterprise Risk Consulting at a tech company with 1,001-5,000 employees
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Computer Software Company
10%
Performing Arts
8%
Comms Service Provider
7%
Financial Services Firm
11%
University
11%
Manufacturing Company
10%
Computer Software Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise7
Large Enterprise20
By reviewers
Company SizeCount
Small Business19
Midsize Enterprise3
Large Enterprise7
 

Questions from the Community

What do you like most about NetWitness Platform?
The product's initial setup phase was not at all difficult.
See all answers
What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
See all answers
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
See all answers
What do you like most about SolarWinds Security Event Manager ?
The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers.
See all answers
What is your experience regarding pricing and costs for SolarWinds Security Event Manager ?
The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten.
See all answers
What needs improvement with SolarWinds Security Event Manager ?
The log analyzing capability of SolarWinds Security Event Manager should go into more depth than the current environment. More modification and enhancements are required on the dashboard side in or...
See all answers
 

Comparisons

IBM Security QRadar vs NetWitness Platform Logo
IBM Security QRadar vs NetWitness Platform
Compared 13% of the time
Splunk Enterprise Security vs NetWitness Platform Logo
Splunk Enterprise Security vs NetWitness Platform
Compared 11% of the time
Elastic Security vs NetWitness Platform Logo
Elastic Security vs NetWitness Platform
Compared 8% of the time
RSA enVision vs NetWitness Platform Logo
RSA enVision vs NetWitness Platform
Compared 6% of the time
Trellix Network Detection and Response vs NetWitness Platform Logo
Trellix Network Detection and Response vs NetWitness Platform
Compared 5% of the time
More NetWitness Platform Competitors
Wazuh vs SolarWinds Security Event Manager Logo
Wazuh vs SolarWinds Security Event Manager
Compared 22% of the time
Splunk Enterprise Security vs SolarWinds Security Event Manager Logo
Splunk Enterprise Security vs SolarWinds Security Event Manager
Compared 16% of the time
IBM Security QRadar vs SolarWinds Security Event Manager Logo
IBM Security QRadar vs SolarWinds Security Event Manager
Compared 14% of the time
ManageEngine Log360 vs SolarWinds Security Event Manager Logo
ManageEngine Log360 vs SolarWinds Security Event Manager
Compared 14% of the time
Trellix ESM vs SolarWinds Security Event Manager Logo
Trellix ESM vs SolarWinds Security Event Manager
Compared 9% of the time
More SolarWinds Security Event Manager Competitors
 

Product Reports

Buyer's Guide
NetWitness Platform
December 2025
NetWitness Platform reportDownload NetWitness Platform product report
Buyer's Guide
SolarWinds Security Event Manager
December 2025
SolarWinds Security Event Manager reportDownload SolarWinds Security Event Manager product report
 

Also Known As

RSA Security Analytics
SolarWinds LEM, Solarwinds SIEM, TriGeo, Log and Event Manager
 

Overview

NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.

NetWitness

When TriGeo was acquired by SolarWinds, TriGeo SIM became known as SolarWinds Log & Event Manager. This product is a leading Security Information and Event Management (SIEM) product and log management solution, which provides log collection, analysis, and real-time correlation.

SolarWinds
 

Sample Customers

Los Angeles World Airports, Reply
NetSuite, EasyStreet, Legacy Texas Bank, and Energy Federal Credit Union, to name a few.
Buyer's Guide
NetWitness Platform vs. SolarWinds Security Event Manager
December 2025
Free Report: NetWitness Platform vs. SolarWinds Security Event Manager
Find out what your peers are saying about NetWitness Platform vs. SolarWinds Security Event Manager and other solutions. Updated: December 2025.
DOWNLOAD NOW
879,310 professionals have used our research since 2012.
See our NetWitness Platform vs. SolarWinds Security Event Manager report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.