Try our new research platform with insights from 80,000+ expert users

NetWitness Platform vs SolarWinds Security Event Manager comparison

NetWitness and SolarWinds are both solutions in the Security Information and Event Management (SIEM) category. NetWitness is ranked #30 with an average rating of 8.3, while SolarWinds is ranked #24 with an average rating of 7.6. NetWitness holds a 0.6% mindshare in SIEM, compared to SolarWinds’s 0.7% mindshare. Additionally, 75% of NetWitness users are willing to recommend the solution, compared to 82% of SolarWinds users who would recommend it.
NetWitness Platform
Read 37 NetWitness Platform reviews
  • 1,507 Views
  • 980 Comparison Views
75% willing to recommend
SolarWinds Security Event M...
Read 27 SolarWinds Security Event Manager reviews
  • 1,097 Views
  • 1,031 Comparison Views
82% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

NetWitness Platform and SolarWinds Security Event Manager compete in the advanced threat detection and security event management category. SolarWinds seems to have the upper hand due to its user-friendly features and ease of integration.

Features: NetWitness Platform is known for its advanced threat detection, real-time monitoring, and robust analytics. SolarWinds Security Event Manager is recognized for comprehensive log management, correlation capabilities, and a wide range of tools, all with user-friendly integration.

Room for Improvement: NetWitness Platform could improve reporting, scalability, and overall performance. SolarWinds Security Event Manager needs enhancements in threat intelligence, alerting mechanisms, and performance. Each product has specific areas for improvement based on user feedback.

Ease of Deployment and Customer Service: NetWitness Platform deployment is complex and requires technical expertise, but customer service is noted for high-quality support. SolarWinds Security Event Manager offers straightforward deployment and a responsive support team, making it easier for users to deploy and access customer service.

Pricing and ROI: NetWitness Platform has higher setup costs but offers significant ROI through advanced threat detection. SolarWinds Security Event Manager is more cost-effective, balancing cost and features, resulting in better overall ROI due to affordability and effectiveness.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed NetWitness Platform vs. SolarWinds Security Event Manager Report (Updated: September 2025).
Buyer's Guide
NetWitness Platform vs. SolarWinds Security Event Manager
September 2025
Download the complete report
Helped 869,566 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

NetWitness Platform
Ranking in Security Information and Event Management (SIEM)
30th
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
37
Ranking in other categories
Log Management (33rd)
SolarWinds Security Event M...
Ranking in Security Information and Event Management (SIEM)
24th
Average Rating
7.8
Reviews Sentiment
5.7
Number of Reviews
27
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of October 2025, in the Security Information and Event Management (SIEM) category, the mindshare of NetWitness Platform is 0.6%, up from 0.6% compared to the previous year. The mindshare of SolarWinds Security Event Manager is 0.7%, up from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Market Share Distribution
ProductMarket Share (%)
SolarWinds Security Event Manager0.7%
NetWitness Platform0.6%
Other98.7%
Security Information and Event Management (SIEM)
 

Featured Reviews

MOTASHIM Al Razi - PeerSpot reviewer
It is a stable solution, but they should make the user interface easier to understand
The solution's initial setup takes work. We have to organize multiple paths and many features. The deployment process takes less than a week. But it takes a month to complete if we want to make the solution smarter by integrating it with various devices. I rate the process as a six out of ten.
Read full review
Yashokanth Partkunan - PeerSpot reviewer
Has supported client needs efficiently but requires deeper analysis features and faster support
The log analyzing capability of SolarWinds Security Event Manager should go into more depth than the current environment. More modification and enhancements are required on the dashboard side in order to make it closer to optimal performance. From observation and feedback from users, they need more functionality related to monitoring, and in-depth analyzing needs to be improved.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It gives the ability to investigate into network traffic in the Net and the organization what we couldn't do before."
"It gives the capability for the incident response team to correlate logs to identify any kind of problem like malware and incidents in a general sense, both for logs and packets."
"It's quite economical compared to other solutions in the market."
"In my opinion, the solution's most valuable feature is its capacity to monitor network traffic, logs from devices within the network, and network captures. This capability extends beyond logs to include full network capturing."
"The packet capture aspect of it is a valuable feature because it is quite different from a traditional SIEM solution that only carries out investigations based on captured logs."
"The most valuable features are the threat prediction and network forensics."
"The most valuable feature is the security that it provides."
"NetWitness Platform is valuable for creating rules that the solution must detect."
More NetWitness Platform pros
"The most valuable feature of this solution is the visibility into both attempted and failed logins."
"The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers."
"The most valuable feature of SolarWinds Security Event Manager is the analysis and the knowledge about the incidence that we trace."
"SolarWinds Security Event Manager has been generally working well."
"It's easy to build rules and actions based on the logs and event types we collect with the software."
"Some of the rules are most valuable because you can be notified about various things, such as spyware or things that are going on in the internal network."
"The most valuable feature is the reporting."
"This tool is simple to use."
More SolarWinds Security Event Manager pros
 

Cons

"There is no support for this product in this country, so problems have to be resolved through global technical teams."
"I believe that integrating the solution with other products such as Oracle would be beneficial."
"The implementation needs assistance."
"Sometimes, it gives me static when integrating Windows-based systems. It should produce a precise log of sorts as to where the problem is. For example, a few days ago because of the McAfee application firewall, I couldn't get access to the particular Windows machine. So, my team and I had to figure out by ourselves that there was a virus responsible for the obstacle. This solution should trigger a meaningful log or message indicating the reason the user or implementer can't get into the machine."
"Health monitoring of the event sources and devices."
"I'd like to see improvement in its ease of use. It's basically unusable. It's overly complex."
"Lots of competing products have vulnerability protection built into their products, and this solution would be improved by including that support."
"The initial setup is very complex and should be simplified."
More NetWitness Platform cons
"The reporting could be more robust. It can be a lot more granular and that will make it a lot more useful in comparison to how it is incorporated at the moment."
"There are no multiple dashboards which would allow you to see information side-by-side."
"I don't think SolarWinds is scalable enough. It is somewhat limited when I need to deploy it across multiple environments in a distributed architecture."
"There is no correlation made between log entries, so no threat information is presented."
"It can be difficult for users who are inexperienced with the solution."
"The only issue is the pricetag. SolarWinds is a costly solution."
"Under the new system, it is not upgradable the way they say. When you try to do an upgrade, it doesn't really work unless you dump everything and start from scratch. You lose a lot of your nodes. Whenever you set your nodes up and everything else, they don't want to bring those nodes back in, so you have to really go back and restructure all your nodes. I went from version 6.5 to version 6.6 and then to version 6.7. I then went to version 2019, and now it is version 2020. It would be good if we can upgrade without having to delete everything and start from scratch. They can maybe build more KPIs and other things for the dashboard. Some of the other systems already have built-in KPIs. SolarWinds is starting to catch up, but it is not there yet. They can include some of the business or industry standards for tracking the time, that is, the meantime to detect (MTTD) and the meantime to resolve (MTTR). They can also find a way to build a KPI that measures the number of instances of port scans experienced in a week or a month."
"I imagine we will have to develop our own reports soon, this seems to be more cumbersome."
More SolarWinds Security Event Manager cons
 

Pricing and Cost Advice

"It provides tools to assist in selecting the appropriate license and usage scenarios."
"We have yearly licensing costs. The license fee can be based on the volume of EPS. Some organizations may have, as a gentlemanly gesture, 10,000 EPS and get a 3,000 EPS license but actually use 5,000 EPS."
"Our license is for one year."
"We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."
"The NetWitness Platform may be affordable only for enterprise-level customers, as it may not be within the budget of small and medium-sized businesses."
"The tool is very expensive, so I rate the pricing a ten out of ten. The solution has an annual subscription."
"The licenses are good but the cost is very expensive."
"It is cheap."
More NetWitness Platform pricing and cost advice
"The price of SolarWinds Security Event Manager is reasonable."
"It is in the appropriate mid-range. It is not as expensive as some of the other solutions. It is also not cheap."
"The pricing model would benefit from having package deals with other SolarWinds products."
"Licensing is on devices, so if you have many, then this may be high."
"The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten."
"Licenses can only be purchased in blocks of fifty at a time."
"We do a yearly license renewal. For a year, the solution costs roughly $500,000 USD. There are no costs beyond this yearly fee."
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
869,566 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Computer Software Company
11%
Comms Service Provider
7%
Performing Arts
7%
University
14%
Financial Services Firm
13%
Computer Software Company
10%
Insurance Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise7
Large Enterprise20
By reviewers
Company SizeCount
Small Business19
Midsize Enterprise3
Large Enterprise7
 

Questions from the Community

What do you like most about NetWitness Platform?
The product's initial setup phase was not at all difficult.
See all answers
What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
See all answers
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
See all answers
What do you like most about SolarWinds Security Event Manager ?
The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers.
See all answers
What is your experience regarding pricing and costs for SolarWinds Security Event Manager ?
The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten.
See all answers
What needs improvement with SolarWinds Security Event Manager ?
The log analyzing capability of SolarWinds Security Event Manager should go into more depth than the current environment. More modification and enhancements are required on the dashboard side in or...
See all answers
 

Comparisons

IBM Security QRadar vs NetWitness Platform Logo
IBM Security QRadar vs NetWitness Platform
Compared 21% of the time
Splunk Enterprise Security vs NetWitness Platform Logo
Splunk Enterprise Security vs NetWitness Platform
Compared 16% of the time
Elastic Security vs NetWitness Platform Logo
Elastic Security vs NetWitness Platform
Compared 12% of the time
USM Anywhere vs NetWitness Platform Logo
USM Anywhere vs NetWitness Platform
Compared 9% of the time
Trellix Network Detection and Response vs NetWitness Platform Logo
Trellix Network Detection and Response vs NetWitness Platform
Compared 8% of the time
More NetWitness Platform Competitors
Wazuh vs SolarWinds Security Event Manager Logo
Wazuh vs SolarWinds Security Event Manager
Compared 30% of the time
Splunk Enterprise Security vs SolarWinds Security Event Manager Logo
Splunk Enterprise Security vs SolarWinds Security Event Manager
Compared 21% of the time
IBM Security QRadar vs SolarWinds Security Event Manager Logo
IBM Security QRadar vs SolarWinds Security Event Manager
Compared 14% of the time
LogRhythm SIEM vs SolarWinds Security Event Manager Logo
LogRhythm SIEM vs SolarWinds Security Event Manager
Compared 9% of the time
Trellix ESM vs SolarWinds Security Event Manager Logo
Trellix ESM vs SolarWinds Security Event Manager
Compared 9% of the time
More SolarWinds Security Event Manager Competitors
 

Product Reports

Buyer's Guide
NetWitness Platform
September 2025
NetWitness Platform reportDownload NetWitness Platform product report
Buyer's Guide
SolarWinds Security Event Manager
September 2025
SolarWinds Security Event Manager reportDownload SolarWinds Security Event Manager product report
 

Also Known As

RSA Security Analytics
SolarWinds LEM, Solarwinds SIEM, TriGeo, Log and Event Manager
 

Overview

NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.

NetWitness

When TriGeo was acquired by SolarWinds, TriGeo SIM became known as SolarWinds Log & Event Manager. This product is a leading Security Information and Event Management (SIEM) product and log management solution, which provides log collection, analysis, and real-time correlation.

SolarWinds
 

Sample Customers

Los Angeles World Airports, Reply
NetSuite, EasyStreet, Legacy Texas Bank, and Energy Federal Credit Union, to name a few.
Buyer's Guide
NetWitness Platform vs. SolarWinds Security Event Manager
September 2025
Free Report: NetWitness Platform vs. SolarWinds Security Event Manager
Find out what your peers are saying about NetWitness Platform vs. SolarWinds Security Event Manager and other solutions. Updated: September 2025.
DOWNLOAD NOW
869,566 professionals have used our research since 2012.
See our NetWitness Platform vs. SolarWinds Security Event Manager report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.