Try our new research platform with insights from 80,000+ expert users

NetWitness Platform vs SolarWinds Security Event Manager comparison

NetWitness and SolarWinds are both solutions in the Security Information and Event Management (SIEM) category. NetWitness is ranked #31 with an average rating of 8.0, while SolarWinds is ranked #35 with an average rating of 7.8. NetWitness holds a 0.6% mindshare in SIEM, compared to SolarWinds’s 0.7% mindshare. Additionally, 75% of NetWitness users are willing to recommend the solution, compared to 82% of SolarWinds users who would recommend it.
NetWitness Platform
Read 37 NetWitness Platform reviews
  • 1,469 Views
  • 955 Comparison Views
75% willing to recommend
SolarWinds Security Event M...
Read 26 SolarWinds Security Event Manager reviews
  • 1,084 Views
  • 1,019 Comparison Views
82% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

NetWitness Platform and SolarWinds Security Event Manager compete in the advanced threat detection and security event management category. SolarWinds seems to have the upper hand due to its user-friendly features and ease of integration.

Features: NetWitness Platform is known for its advanced threat detection, real-time monitoring, and robust analytics. SolarWinds Security Event Manager is recognized for comprehensive log management, correlation capabilities, and a wide range of tools, all with user-friendly integration.

Room for Improvement: NetWitness Platform could improve reporting, scalability, and overall performance. SolarWinds Security Event Manager needs enhancements in threat intelligence, alerting mechanisms, and performance. Each product has specific areas for improvement based on user feedback.

Ease of Deployment and Customer Service: NetWitness Platform deployment is complex and requires technical expertise, but customer service is noted for high-quality support. SolarWinds Security Event Manager offers straightforward deployment and a responsive support team, making it easier for users to deploy and access customer service.

Pricing and ROI: NetWitness Platform has higher setup costs but offers significant ROI through advanced threat detection. SolarWinds Security Event Manager is more cost-effective, balancing cost and features, resulting in better overall ROI due to affordability and effectiveness.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed NetWitness Platform vs. SolarWinds Security Event Manager Report (Updated: July 2025).
Buyer's Guide
NetWitness Platform vs. SolarWinds Security Event Manager
July 2025
Download the complete report
Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

NetWitness Platform
Ranking in Security Information and Event Management (SIEM)
31st
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
37
Ranking in other categories
Log Management (35th)
SolarWinds Security Event M...
Ranking in Security Information and Event Management (SIEM)
35th
Average Rating
7.8
Reviews Sentiment
6.7
Number of Reviews
26
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of August 2025, in the Security Information and Event Management (SIEM) category, the mindshare of NetWitness Platform is 0.6%, down from 0.7% compared to the previous year. The mindshare of SolarWinds Security Event Manager is 0.7%, up from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
 

Featured Reviews

MOTASHIM Al Razi - PeerSpot reviewer
It is a stable solution, but they should make the user interface easier to understand
The solution's initial setup takes work. We have to organize multiple paths and many features. The deployment process takes less than a week. But it takes a month to complete if we want to make the solution smarter by integrating it with various devices. I rate the process as a six out of ten.
Read full review
Rafal-Stas - PeerSpot reviewer
Helpful in areas like event management, log viewing, and information management
The product's initial setup phase on the cloud is pretty easy but on an on-premises version, I think it is of a moderate level. The solution is deployed on the cloud and on an on-premises model. The time required to deploy the solution depends on the customers' infrastructure, and it may range from a couple of weeks to a couple of months, as it depends on how many additional custom configurations are required. Around two to three engineers are usually involved in the tool's installation process.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The product's initial setup phase was not at all difficult."
"The most valuable features are the packet inspection and the automated incident response."
"Alerting Module: It provides real-time event processing language on all the logs/packets stream for advanced alerting, i.e., using SQL LIKE statements."
"Performance and reporting are very good."
"NetWitness Platform offers flexibility for deployment and robust integration capabilities."
"NetWitness can be highly beneficial for incident detection and response."
"NetWitness Platform is valuable for creating rules that the solution must detect."
"It gives the ability to investigate into network traffic in the Net and the organization what we couldn't do before."
More NetWitness Platform pros
"The most valuable feature is the ease of use for the end user."
"It supports high availability, which is very helpful."
"It performs network behavior monitoring, log monitoring, and disaster recovery monitoring."
"The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers."
"Some of the rules are most valuable because you can be notified about various things, such as spyware or things that are going on in the internal network."
"The solution helps me to go back in time and search for different events. For example, if you wanted to know who activated an account; you could go back in time and find out."
"SolarWinds' stability is fine. I don't think we've had any software issues."
"We had to integrate with other teams, and the infrastructure deployment didn't take long. The integration involves learning with different teams, networking, and configuring various network devices and servers. Infrastructure deployment only took one or two days."
More SolarWinds Security Event Manager pros
 

Cons

"Its technical support could be better."
"The tool's integration capability isn't so great."
"The log system is a bit complex and has room for improvement."
"The system architecture is complex and sometimes it’s hard to troubleshoot potential problems."
"It should have a monitoring feature. It would help us analyze the current state of attacks faster from a single platform."
"Technical support could be improved."
"We have encountered issues with unresolved crashes."
"I believe that integrating the solution with other products such as Oracle would be beneficial."
More NetWitness Platform cons
"Training for this solution needs to be improved, as new employees are sometimes unfamiliar with the product."
"I would like to be able to dig deeper into the visibility of events or incidents to determine whether they are malicious, such as by doing behavior analysis."
"The product should improve the ease with which you can create event alerts. They are not as hard now but you need to have an easier way."
"We have automated threat detection in the Alliance Security, Antoinette. However, if these features could be further enhanced, it would simplify my work, potentially allowing me to allocate more time to address complex issues."
"We'd like more customization capabilities."
"We used the support from SolarWinds Security Event Manager and they are knowledgeable but challenging to get in contact with them."
"SolarWinds should improve its correlation capabilities. The correlation does not automatically detect and reduce the events fast enough. You have to manually do a correlation report, which means the tool is not scalable in many ways."
"One of the drawbacks of being so flexible is that it is also a fairly complicated software application to install, configure, and maintain."
More SolarWinds Security Event Manager cons
 

Pricing and Cost Advice

"The licenses are good but the cost is very expensive."
"The tool is very expensive, so I rate the pricing a ten out of ten. The solution has an annual subscription."
"The NetWitness Platform may be affordable only for enterprise-level customers, as it may not be within the budget of small and medium-sized businesses."
"We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."
"It is cheap."
"The product price was reasonable for my region and the market."
"We are on an annual license for the use of the solution."
"This is a pricey solution; it's not cheap."
More NetWitness Platform pricing and cost advice
"We do a yearly license renewal. For a year, the solution costs roughly $500,000 USD. There are no costs beyond this yearly fee."
"Licensing is on devices, so if you have many, then this may be high."
"It is in the appropriate mid-range. It is not as expensive as some of the other solutions. It is also not cheap."
"The price of SolarWinds Security Event Manager is reasonable."
"Licenses can only be purchased in blocks of fifty at a time."
"The pricing model would benefit from having package deals with other SolarWinds products."
"The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten."
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
865,384 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
14%
Computer Software Company
13%
Comms Service Provider
6%
Manufacturing Company
6%
University
14%
Financial Services Firm
12%
Computer Software Company
10%
Insurance Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about NetWitness Platform?
The product's initial setup phase was not at all difficult.
See all answers
What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
See all answers
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
See all answers
What do you like most about SolarWinds Security Event Manager ?
The solution helps you monitor database instances, application instances, other customer application things, Linux servers, IBM servers, and Oracle servers.
See all answers
What is your experience regarding pricing and costs for SolarWinds Security Event Manager ?
The tool is available at a good price for customers compared to other solutions in the market. I rate the product's price as an eight out of ten.
See all answers
What needs improvement with SolarWinds Security Event Manager ?
I think the customization area in the tool can be considered as an area of concern where improvements are required In the future, I want to see the tool have better customization abilities with som...
See all answers
 

Comparisons

Splunk Enterprise Security vs NetWitness Platform Logo
Splunk Enterprise Security vs NetWitness Platform
Compared 23% of the time
IBM Security QRadar vs NetWitness Platform Logo
IBM Security QRadar vs NetWitness Platform
Compared 19% of the time
Elastic Security vs NetWitness Platform Logo
Elastic Security vs NetWitness Platform
Compared 12% of the time
RSA enVision vs NetWitness Platform Logo
RSA enVision vs NetWitness Platform
Compared 9% of the time
Trellix Network Detection and Response vs NetWitness Platform Logo
Trellix Network Detection and Response vs NetWitness Platform
Compared 9% of the time
More NetWitness Platform Competitors
Wazuh vs SolarWinds Security Event Manager Logo
Wazuh vs SolarWinds Security Event Manager
Compared 35% of the time
Splunk Enterprise Security vs SolarWinds Security Event Manager Logo
Splunk Enterprise Security vs SolarWinds Security Event Manager
Compared 16% of the time
IBM Security QRadar vs SolarWinds Security Event Manager Logo
IBM Security QRadar vs SolarWinds Security Event Manager
Compared 11% of the time
LogRhythm SIEM vs SolarWinds Security Event Manager Logo
LogRhythm SIEM vs SolarWinds Security Event Manager
Compared 8% of the time
ManageEngine Log360 vs SolarWinds Security Event Manager Logo
ManageEngine Log360 vs SolarWinds Security Event Manager
Compared 8% of the time
More SolarWinds Security Event Manager Competitors
 

Product Reports

Buyer's Guide
NetWitness Platform
August 2025
NetWitness Platform reportDownload NetWitness Platform product report
Buyer's Guide
SolarWinds Security Event Manager
July 2025
SolarWinds Security Event Manager reportDownload SolarWinds Security Event Manager product report
 

Also Known As

RSA Security Analytics
SolarWinds LEM, Solarwinds SIEM, TriGeo, Log and Event Manager
 

Overview

NetWitness Platform is an evolved SIEM and threat detection and response solution that functions as a single, unified platform for ALL your security data. It features an advanced analyst workbench for triaging alerts and incidents, and it orchestrates security operations programs end to end. In short: NetWitness Platform is all you need to run an intelligent SOC.

NetWitness

When TriGeo was acquired by SolarWinds, TriGeo SIM became known as SolarWinds Log & Event Manager. This product is a leading Security Information and Event Management (SIEM) product and log management solution, which provides log collection, analysis, and real-time correlation.

SolarWinds
 

Sample Customers

Los Angeles World Airports, Reply
NetSuite, EasyStreet, Legacy Texas Bank, and Energy Federal Credit Union, to name a few.
Buyer's Guide
NetWitness Platform vs. SolarWinds Security Event Manager
July 2025
Free Report: NetWitness Platform vs. SolarWinds Security Event Manager
Find out what your peers are saying about NetWitness Platform vs. SolarWinds Security Event Manager and other solutions. Updated: July 2025.
DOWNLOAD NOW
865,384 professionals have used our research since 2012.
See our NetWitness Platform vs. SolarWinds Security Event Manager report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.