Securonix Next-Gen SIEM vs Trellix ESM comparison

Securonix Solutions and Trellix are both solutions in the Security Information and Event Management (SIEM) category. Securonix Solutions is ranked #7 with an average rating of 8.9, while Trellix is ranked #23 with an average rating of 7.6. Securonix Solutions holds a 1.2% mindshare in SIEM, compared to Trellix’s 0.7% mindshare. Additionally, 96% of Securonix Solutions users are willing to recommend the solution, compared to 75% of Trellix users who would recommend it.

Securonix Next-Gen SIEM

Read 29 Securonix Next-Gen SIEM reviews

5,523 Views
2,028 Comparison Views

96% willing to recommend

Trellix ESM

Read 36 Trellix ESM reviews

3,230 Views
1,259 Comparison Views

75% willing to recommend

Securonix Next-Gen SIEM

Trellix ESM

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

Securonix Next-Gen SIEM and Trellix ESM compete in the advanced security information and event management category. Securonix seems to have the upper hand in threat detection and analytics, while Trellix stands out in incident response and integrations.

Features: Securonix offers robust threat detection, strong analytics capabilities, and flexibility with its deployment models. Trellix is noted for its incident response features, extensive integrations, and straightforward deployment process.

Room for Improvement: Securonix could improve its reporting functionalities, make the configuration process more intuitive, and address complexities in deployment. Trellix could enhance its scalability, reduce the complexity in customization, and streamline its customer support.

Ease of Deployment and Customer Service: Securonix provides flexible deployment options but faces occasional complexities, whereas Trellix has a straightforward deployment process but needs more streamlined customer support.

Pricing and ROI: Securonix is generally found cost-effective with good ROI, though initial setup costs are noted. Trellix is perceived as more expensive but justified by its comprehensive features.

To learn more, read our detailed Securonix Next-Gen SIEM vs. Trellix ESM Report (Updated: September 2024).

Buyer's Guide

Securonix Next-Gen SIEM vs. Trellix ESM

September 2024

Download the complete report

Helped 805,335 peers since 2012

Categories and Ranking

Securonix Next-Gen SIEM

Ranking in Security Information and Event Management (SIEM)

7th

Average Rating

8.8

Number of Reviews

Ranking in other categories

Identity Threat Detection and Response (ITDR) (5th)

Trellix ESM

Ranking in Security Information and Event Management (SIEM)

23rd

Average Rating

7.4

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of September 2024, in the Security Information and Event Management (SIEM) category, the mindshare of Securonix Next-Gen SIEM is 1.2%, down from 1.9% compared to the previous year. The mindshare of Trellix ESM is 0.7%, down from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Sebastian Velazquez

Cyber Intelligence Supervisor at a tech services company with 201-500 employees

Sep 29, 2022

Enrichment helps us discover information, and platform is great for visualizing and reviewing data

The most valuable feature is what Securonix calls enrichment. Securonix is very powerful because of all the data it can process and automatically enrich. The actionable intelligence it provides is one of its benefits, due to the processing capacity it has. Something to keep in mind is that Securonix needs a lot of initial work to be able to properly enrich itself, but once installed it is very powerful. It's very good in helping to ingest all our log sources when investigating threats. That is back to the enrichment theme. It's very powerful. When you ingest data to Securonix, what it does is feed back to other sources like your firewall, and antivirus proxy, and vice versa. And the use cases filter data. The UEBA capabilities are also very valuable.

Read full review

reviewer1427199

Information Security Officer at a tech services company with 51-200 employees

Sep 27, 2020

It is easy to use and deploy, but it lacks proper support

McAfee is no more providing security updates on this product, and the enhancements to this product seem to have stopped. Moreover, we don't get proper support, and we struggle to get its support. It would be good if they can add some AI engine and out of the box use cases because it is currently limited to the same scenario and the same setup. I have done a POC for Securonix, LogRhythm. These products are much more ahead as compared to McAfee ESM. They have included multiple modules in the same solution. Correlation is very easy. If McAfee ESM can improve, especially in such implementations, then I believe it would be much better.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"[The solution has] incident-management or case-management functionality. If someone were to download a high number and we decided we needed to investigate it, I could open a case right in the tool. It would be able to directly reference the data that they downloaded and we could open and shut the case directly in the tool, as well as report from it."

"I was looking for software as a service rather than having issues with managing hardware, upgrades, updates. I was trying to step away from that. Those were the key factors when looking at Securonix as a full-feature SIEM with next-generation capabilities available."

"When we were looking for products for our security monitoring needs, our biggest requirement was that we wanted something based on machine-learning and analytics. If you go with rules, it can raise a lot of noise. Securonix, with its UEBA capability, had the best analytics use-cases."

"The two major features of this product we extensively use are the UEBA capability and the multi-tenant approach with the centralized data logs system. Customers are very happy with these features."

"The solution's AI features reduce the need for manual analysis and help in decision-making. It displays the report in seconds. It saves my resources three to four hours of work."

"The big data security analytics platform, structured and unstructured data analytics, and user and entity behavior analytics provided by the product are probably the best in the industry."

"The most valuable feature is that it works on user behavior and event rarities."

"Risk scoring was nice. We could exactly see which user had the highest risk score, and then we could pick it up and work on it."

More Securonix Next-Gen SIEM pros

"The ease of use is the most valuable feature. Over the years I have always been using this solution and have become comfortable with it."

"It is easy to use."

"The product’s most valuable feature is log monitoring."

"The most valuable feature is the capability to correlate different events from different platforms that we feed into it."

"The most valuable feature is that if the scanning does find something, it quarantines it. Then you can decide what you are going to do with it."

"It enables us to detect malicious threats, issues, or vulnerabilities in our network."

"McAfee as a whole is a good solution."

"It is easy to use and deploy. It comes with user-friendly manuals."

More Trellix ESM pros

Cons

"We have compliance needs. We have investigation needs. And we have situations where an analyst needs to look at threats. These three things require a different view of how they look at the threats. What would be good is to have Securonix create three different views of their Security Command Center so that, depending on the persona of the person logging in, they'd get the relevant data they need and not see everything."

"Sometimes, there is instability in the data in terms of the customization of the time. I have sometimes observed discrepancies in the data, which is something they should work on. They should bring more stability to time customization. If we are seeing a particular data, when we change the time zone, there should be the same data. There should not be any discrepancy."

"Other than issues with the training, there have been issues with the encryption. There have also been issues with some of the reporting, minor glitches that they have fixed as they've gone along."

"Regarding the analysis of security events on the SOC side, Securonix Next-Gen SIEM needs to improve its automation capabilities."

"Securonix Next-Gen SIEM's deployment is complex and you need a team to do it."

"Parsing needs to be improved. Every time we integrate a new, specific data source, we face a lot of problems in parsing, even for the old data source."

"One aspect that could be improved is the pricing of the product in Brazil."

"Securonix could open up information regarding the indicators of compromise or cyber-threat intelligence database that they use. The idea is that they share what threats they are detecting."

More Securonix Next-Gen SIEM cons

"The disk space needed for events is not clear. In all clients, we had at least more than 100GB free that we could not use."

"I have to purchase a new box now. Its existing box is not scalable and I can't use it anymore."

"It cannot integrate with our Next-Generation Firewall and few applications such as Cisco ACI."

"Product currently requires Flash."

"McAfee is no more providing security updates on this product, and the enhancements to this product seem to have stopped. Moreover, we don't get proper support, and we struggle to get its support. It would be good if they can add some AI engine and out of the box use cases because it is currently limited to the same scenario and the same setup. I have done a POC for Securonix, LogRhythm. These products are much more ahead as compared to McAfee ESM. They have included multiple modules in the same solution. Correlation is very easy. If McAfee ESM can improve, especially in such implementations, then I believe it would be much better."

"It is not a very advanced solution, and it is for very generic use cases. It cannot cope with the advanced requirements that we're going to have. For example, for multiple authentication failures, it is still based on Windows events for detecting multiple login failures, whereas other companies are going beyond and working on implementing two-factor authentication. It is time to correlate the two-factor authentication results with authentification failures, which is not happening with McAfee ESM. The performance of the tool should be improved because it is very slow. The data display on the console is very slow in McAfee ESM. Its data storage is still old-fashioned, and it should be improved and upgraded to the latest versions. They have to come up with some new ideas to match what other leaders in the same domain are doing. For example, in Splunk, when you search for information for the last 60 days or five months, it quickly shows the information, but that is not the case with McAfee. The results should be quicker and faster on the console. They should integrate some additional features such as User Behavior Analytics (UBA) and automation. The threat intelligence part should also be improved on McAfee."

"There's no software support from McAfee."

"The product’s alert response feature needs improvement. It could be more flexible and secure."

More Trellix ESM cons

Pricing and Cost Advice

"The solution's price is double the competitors."

"We went in on a three-year agreement which has an annual licensing fee, based upon the number of people that we're monitoring. There have not been any additional costs to the standard licensing fees."

"The pricing is fine compared to the market but I think that at some point the competitors will catch up on price."

"I had heard that it was much cheaper than Splunk and some of the other tools, and they gave us a nice package with support. They accommodated the number of users and support very well."

"Compared to other known brands in the industry, the overall cost of the licenses is a bit higher than what customers expect."

"Its pricing is quite similar to others and is very competitive. The other solutions have different types of licensing, but when you do the math, it is competitive."

"Its price is fine. We found it to be cheaper than LogRhythm, Exabeam, Splunk, as well as Elastic Security. A few months ago, when we were comparing Securonix with Elastic Security, we found Securonix to be cheaper than Elasticsearch. We were pretty surprised that Elastic Security is more expensive than Securonix because Elasticsearch is just starting, and it cannot compete with Securonix at this time. So, the pricing of Securonix is pretty good for now."

"Compared to other brands it seems more affordable to us."

More Securonix Next-Gen SIEM pricing and cost advice

"The price of McAfee ESM is higher than some of the other solutions. There are additional features that can be added at an additional fee."

"It is an inexpensive product. We purchase its yearly license."

"The cost is dependent on the customer's environment and requirements."

"The pricing is fair."

"The price is good. It's moderate. We follow a pay-as-you-go model. There are different models available, and they can also be monthly. You can choose monthly or yearly. It's very flexible. If our existing customers exceed the current plan, you can just call McAfee and get it extended."

"When compared to IBM Security QRadar and other similar platforms, the pricing of McAfee ESM is reasonable and comparatively less expensive."

"The licensing cost is based on EPS."

"The cost is all included. The finance department handles the financial part, and we mostly don't get involved in it."

More Trellix ESM pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

805,335 professionals have used our research since 2012.

Comparison Review

Vinod Shankar

Manager, Enterprise Risk Consulting at Deloitte & Touche

Feb 26, 2015

HP ArcSight vs. IBM QRadar vs. McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm

We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…

Read full review

Top Industries

By visitors reading reviews

Computer Software Company

20%

Financial Services Firm

12%

Government

Manufacturing Company

Educational Organization

75%

Computer Software Company

Financial Services Firm

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?

In my market, a lot of financial companies had or have an ArcSight installation. Just because in former times it was pretty good. Now a lot of them are looking for a more effective solution due to ...

See all answers

What do you like most about Securonix Security Analytics?

We can customize our use cases with the tools provided by Securonix. It is an excellent tool that can ingest data in different ways and is very flexible.

See all answers

What is your experience regarding pricing and costs for Securonix Security Analytics?

The pricing is fine compared to the market but I think that at some point the competitors will catch up on price. It would be good if, for example, there were an option to offer customers who have ...

See all answers

What do you like most about McAfee ESM?

The solution's technical support is great.

See all answers

What is your experience regarding pricing and costs for McAfee ESM?

Regarding pricing, Trellix ESM is not that expensive. It's less than half the cost of IBM QRadar.

See all answers

What needs improvement with McAfee ESM?

The product is mature and needs little improvement, but we could enhance the customized dashboarding based on use cases.

See all answers

Comparisons

IBM Security QRadar vs Securonix Next-Gen SIEM

Compared 19% of the time

Microsoft Sentinel vs Securonix Next-Gen SIEM

Compared 12% of the time

Splunk Enterprise Security vs Securonix Next-Gen SIEM

Compared 11% of the time

LogRhythm SIEM vs Securonix Next-Gen SIEM

Compared 6% of the time

Gurucul UEBA vs Securonix Next-Gen SIEM

Compared 5% of the time

More Securonix Next-Gen SIEM Competitors

Splunk Enterprise Security vs Trellix ESM

Compared 20% of the time

ArcSight Enterprise Security Manager (ESM) vs Trellix ESM

Compared 20% of the time

LogRhythm SIEM vs Trellix ESM

Compared 15% of the time

IBM Security QRadar vs Trellix ESM

Compared 15% of the time

Fortinet FortiSIEM vs Trellix ESM

Compared 9% of the time

More Trellix ESM Competitors

Product Reports

Buyer's Guide

Securonix Next-Gen SIEM

August 2024

Download Securonix Next-Gen SIEM product report

Buyer's Guide

Trellix ESM

August 2024

Download Trellix ESM product report

Also Known As

Securonix Security Analytics

McAfee ESM, NitroSecurity, McAfee Enterprise Security Manager

Learn More

Securonix Solutions

Video not available

Trellix

Overview

Securonix Next-Gen SIEM is a security information and event management solution designed to provide advanced threat detection, response, and compliance capabilities. It leverages machine learning and big data analytics to offer a comprehensive security platform for modern enterprises.

Securonix Next-Gen SIEM utilizes advanced analytics and machine learning to detect complex threats that traditional SIEM solutions might miss. Its architecture is built on Hadoop, enabling scalability and the processing of large volumes of data in real-time. This allows organizations to gain deep insights into security incidents, prioritize threats, and automate response actions. The solution also includes behavior analytics to detect insider threats and unknown attacks, integrating seamlessly with existing IT infrastructure.

What are the critical features of Securonix Next-Gen SIEM?

Advanced Threat Detection: Uses machine learning algorithms to identify sophisticated threats and reduce false positives.
Behavior Analytics: Analyzes user and entity behavior to detect insider threats and anomalies.
Scalable Architecture: Built on Hadoop, it scales to handle large data volumes, providing real-time analytics.
Automated Response: Automates incident response to mitigate threats quickly and efficiently.
Integration Capabilities: Easily integrates with various IT and security tools for comprehensive coverage.

What is the ROI expectations?

Improved Threat Detection: Enhanced ability to detect and respond to advanced threats, reducing risk.
Operational Efficiency: Automation of repetitive tasks allows security teams to focus on more critical activities.
Cost Savings: Scalability and efficient data processing reduce the need for additional hardware and resources.
Compliance Support: Helps in meeting regulatory compliance requirements through detailed reporting and monitoring.

Securonix Next-Gen SIEM is implemented across various industries, including finance, healthcare, and retail. Its flexibility and advanced analytics capabilities make it suitable for environments with complex security needs. In finance, it helps detect fraud, while in healthcare, it ensures patient data security. In retail, it protects against data breaches and payment fraud.

In summary, Securonix Next-Gen SIEM offers advanced threat detection, scalability, and integration capabilities, making it a robust solution for modern enterprises.

Make your organization more resilient and confident with Trellix Security Operations. Filter out the noise and cut complexity to deliver faster, more effective SecOps. Integrate your existing security tools and connect with over 650 Trellix solutions and third-party products.

Sample Customers

Dtex Systems, Pfizer, Western Union, Harris, ITG

San Francisco Police Credit Union, Wªstenrot Gruppe, Volusion, California Department of Corrections & Rehabilitation, Government of New Brunswick, State of Colorado, Macquarie Telecom, Texas Tech University Health Sciences Center, Cologne Bonn Airport

Buyer's Guide

Securonix Next-Gen SIEM vs. Trellix ESM

September 2024

Free Report: Securonix Next-Gen SIEM vs. Trellix ESM

Find out what your peers are saying about Securonix Next-Gen SIEM vs. Trellix ESM and other solutions. Updated: September 2024.

DOWNLOAD NOW

805,335 professionals have used our research since 2012.

See our Securonix Next-Gen SIEM vs. Trellix ESM report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.