

Trellix ESM and SentinelOne Singularity AI SIEM compete in the security solutions category, focusing on threat detection. SentinelOne appears to have the upper hand due to its advanced features and automation capabilities.
Features: Trellix ESM includes comprehensive threat intelligence integration, customizable dashboards, and flexibility for detailed insights. SentinelOne Singularity AI SIEM offers superior automation, machine learning capabilities, and proactive threat identification with real-time response mechanisms.
Room for Improvement: Trellix ESM could enhance automation, expand device coverage, and reduce dependency on custom parsers. SentinelOne Singularity AI SIEM may benefit from simplifying its deployment process, improving user interface customization options, and minimizing initial configuration complexity.
Ease of Deployment and Customer Service: Trellix ESM features a straightforward deployment model with prompt support, facilitating smooth implementation. SentinelOne Singularity AI SIEM offers comprehensive customer support tailored to optimize its complex setup process, emphasizing personalized deployment assistance.
Pricing and ROI: Trellix ESM is cost-effective with a lower initial setup cost, quickly delivering ROI. SentinelOne Singularity AI SIEM demands a higher upfront investment, offering enhanced long-term security benefits justifying its pricing. Trellix provides immediate cost savings, while SentinelOne's returns are linked to its robust capabilities.
SentinelOne Singularity AI SIEM has reduced our response time to true positive alerts by approximately forty percent through automation.
At the moment, I feel the pricing is a little bit on the higher side, but the tool is positioned in a place where risk is very high, and we do not want to take chances, so we are prepared to pay the premium.
The effect of SentinelOne Singularity AI SIEM on our customers' SOC efficiency in investigating alerts and responding to incidents is significant.
SentinelOne Singularity AI SIEM has AI-based technical support available.
Based on my experience with the technical support of SentinelOne Singularity AI SIEM, I would rate them a ten.
In rating the technical support for SentinelOne, it depends on whether we are discussing EDR or SentinelOne Singularity AI SIEM.
I would rate support for Trellix ESM 10 out of 10 because if we connect with the support in the UK, we get excellent support.
It's rare for me to need them unless it's an issue with licensing, and they are the best in that regard.
With any AI adoption, the end goal should be more governance and data security and safety.
The performance depends on the configuration.
It is scalable, and we can increase the compute size. It can scale. There are no challenges.
Scalability is quite easier with Trellix ESM, because all we need to do is add more receivers to it, so it can go to any point.
When it comes to stability, I would give SentinelOne Singularity AI SIEM a nine.
In terms of performance stability, I have never had any crashes, downtimes, or performance issues.
Even the data lake feature they have, in terms of keeping all the logs intact, those log searches are extremely fast on SentinelOne Singularity AI SIEM, even though the data is very high.
The adoption rate will be less compared to other products, as this can be a time-taken process because all my data needs to be offloaded and the system needs to understand my existing alerts, logs, and other things.
The interface flickers frequently, and sometimes it does not load properly.
Whenever OT security comes into the picture, the customers do not allow us to integrate their OT devices on a cloud. It should be available on-premises because the OT SIEM market, in the India market for instance, is something around a four to eight billion dollar market.
If there is any device which is not covered, there should not be any additional charges for writing the custom parsers on that.
I find SentinelOne's pricing to be reasonable and competitive.
We finally have visibility into things that were never visible before.
It employs a combination of AI and ML to check for viruses or any other malicious processes, including fileless attacks.
The AI-driven threat detection capabilities improve our overall security posture.
The weakest point is it doesn't cover almost all the devices, so the customer has to be more dependent on the parsers to be written by the Professional Services team.
| Product | Mindshare (%) |
|---|---|
| SentinelOne Singularity AI SIEM | 1.4% |
| Trellix ESM | 1.0% |
| Other | 97.6% |
| Company Size | Count |
|---|---|
| Small Business | 5 |
| Midsize Enterprise | 3 |
| Large Enterprise | 3 |
| Company Size | Count |
|---|---|
| Small Business | 15 |
| Midsize Enterprise | 6 |
| Large Enterprise | 25 |
SentinelOne Singularity AI SIEM offers comprehensive security information and incident management designed to enhance threat detection, response, and investigation capabilities within enterprise environments.
SentinelOne Singularity AI SIEM is known for its robust capabilities in the realm of cybersecurity, providing organizations with an advanced tool to combat modern threats. The platform integrates machine learning and artificial intelligence to automate threat identification and streamline incident response processes. Its intuitive interface allows teams to manage security events efficiently, ensuring rapid reaction to potential vulnerabilities. As a scalable tool, it adapts to evolving security demands, providing valuable insights to safeguard critical business operations.
What are the important features of SentinelOne Singularity AI SIEM?In industries such as finance and healthcare, implementation of SentinelOne Singularity AI SIEM often means tailored solutions to protect sensitive data, meeting regulatory compliance. These sectors appreciate its capability to provide detailed insights and reduce the risk of data breaches, thus preserving stakeholder trust.
Trellix ESM is an innovative tool designed to enhance security management through its seamless integration, user-friendly deployment, customizable dashboards, and robust threat detection capabilities.
Trellix ESM is essential for comprehensive security management, ensuring effective threat detection and analysis. It integrates seamlessly with third-party systems and provides advanced correlation and security visualization. Capable of managing logs and monitoring network traffic, it enhances security across diverse environments, making it indispensable for security operations. Despite needing improved SaaS integration, API documentation, and addressing stability issues, it remains crucial for user-friendly deployment and incident analysis. Its benefits are complemented by comprehensive reporting and real-time malware protection.
What Are Trellix ESM's Most Important Features?In diverse industries, Trellix ESM is deployed for central log management and security operations, monitoring servers, virtual machines, and hybrid-cloud environments. Companies use it for managed security services and threat detection, analyzing logs and securing data. It finds great use in monitoring network vulnerabilities and event correlation, enabling service providers and MSSPs to effectively manage endpoints and hybrid-cloud setups as well as gather logs from servers and firewalls, offering abundant transparency into security threats and network activities.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.