Try our new research platform with insights from 80,000+ expert users

Trellix ESM vs USM Anywhere comparison

Trellix and LevelBlue are both solutions in the Security Information and Event Management (SIEM) category. Trellix is ranked #19 with an average rating of 8.0, while LevelBlue is ranked #28 with an average rating of 7.3. Trellix holds a 1.0% mindshare in SIEM, compared to LevelBlue’s 0.9% mindshare. Additionally, 75% of Trellix users are willing to recommend the solution, compared to 92% of LevelBlue users who would recommend it.
Trellix ESM
Read 37 Trellix ESM reviews
  • 1,801 Views
  • 742 Comparison Views
75% willing to recommend
USM Anywhere
Read 115 USM Anywhere reviews
  • 1,843 Views
  • 1,047 Comparison Views
92% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

Trellix ESM and USM Anywhere are powerful security management solutions. Based on user reviews, USM Anywhere leads in features while Trellix ESM excels in customer service. USM Anywhere remains the better choice for users due to its advanced capabilities.

Features: Trellix ESM offers comprehensive threat detection, incident response features, and robust performance. USM Anywhere provides extensive integrations, advanced threat intelligence, and more advanced features. Users favor USM Anywhere’s capabilities.

Room for Improvement: Trellix ESM could improve scalability, intuitive reporting tools, and scalability. USM Anywhere needs more flexible customization options, better documentation, and improved customization.

Ease of Deployment and Customer Service: Trellix ESM users find deployment straightforward but require training. Trellix ESM's customer service is highly praised. USM Anywhere's deployment is simple, and customer service is effective but not as highly rated as Trellix ESM.

Pricing and ROI: Trellix ESM has a higher setup cost but offers a high return on investment. USM Anywhere is cost-effective with satisfactory ROI but requires additional investment for full functionality. Users see USM Anywhere as more cost-effective initially, with Trellix ESM providing higher ROI over time.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Trellix ESM vs. USM Anywhere Report (Updated: June 2025).
Buyer's Guide
Trellix ESM vs. USM Anywhere
June 2025
Download the complete report
Helped 857,028 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
5.4
McAfee's ROI is praised for security management, despite executives seeking better ESM report visibility at the C-level.
Sentiment score
6.8
USM Anywhere enhances security, saves time and resources, reduces staffing needs, and meets compliance, offering financial and time benefits.
No quotes available
For more quotes and insights, download the Trellix ESM report
Customers see ROI as they save on staff and other resources.
For more quotes and insights, download the USM Anywhere report
 

Customer Service

Sentiment score
5.9
Trellix ESM's customer service is praised, but technical support quality is inconsistent and varies by region, needing improvement.
Sentiment score
8.0
USM Anywhere's customer service is generally praised for responsiveness but experiences occasional delays and inconsistent support information.
I would rate support for Trellix ESM 10 out of 10 because if we connect with the support in the UK, we get excellent support.
For more quotes and insights, download the Trellix ESM report
No quotes available
For more quotes and insights, download the USM Anywhere report
 

Scalability Issues

Sentiment score
8.5
Trellix ESM is adaptable and scalable, suiting diverse business sizes and needs, though setup may challenge smaller users.
Sentiment score
7.5
USM Anywhere is scalable for small to medium businesses, but enterprise-scale deployments face data volume and speed challenges.
Scalability is quite easier with Trellix ESM, because all we need to do is add more receivers to it, so it can go to any point.
For more quotes and insights, download the Trellix ESM report
USM Anywhere faces scalability issues because of a 60 TB limit.
For more quotes and insights, download the USM Anywhere report
 

Stability Issues

Sentiment score
8.5
Trellix ESM is perceived as stable overall, with occasional bugs resolvable by support, especially stable in data centers.
Sentiment score
7.2
USM Anywhere receives mixed stability reviews, with some users praising its reliability and others reporting issues during updates or large data handling.
 

Room For Improvement

Trellix ESM needs improved stability, a modern interface, better integration, decreased resource use, and enhanced analytics capabilities.
USM Anywhere needs improved performance, user interface, integration, and support, with better updates and less disruptive software changes.
If there is any device which is not covered, there should not be any additional charges for writing the custom parsers on that.
For more quotes and insights, download the Trellix ESM report
There are scalability issues due to a 60 TB limit, which restricts its use for large customers like banks.
For more quotes and insights, download the USM Anywhere report
 

Setup Cost

Trellix ESM offers competitive and flexible pricing, with discounts for large purchases, easy deployment, and annual or monthly payments.
USM Anywhere offers scalable, affordable SIEM solutions ideal for SMBs, recommended for budget-conscious enterprises over costly competitors.
No quotes available
For more quotes and insights, download the Trellix ESM report
The pricing is amazing and really cheap.
For more quotes and insights, download the USM Anywhere report
 

Valuable Features

Trellix ESM offers user-friendly features like dashboards, integration, threat monitoring, and automation for enhanced security and operational efficiency.
USM Anywhere offers event correlation, vulnerability scanning, and centralized logging with customizable, user-friendly security monitoring for small teams.
In case of other ESM solutions, there are no parsers required, and almost every device is covered within the license, so there is no hidden cost as custom parsers.
For more quotes and insights, download the Trellix ESM report
The 365-day block query is a major feature.
For more quotes and insights, download the USM Anywhere report
 

Categories and Ranking

Trellix ESM
Ranking in Security Information and Event Management (SIEM)
19th
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
37
Ranking in other categories
No ranking in other categories
USM Anywhere
Ranking in Security Information and Event Management (SIEM)
28th
Average Rating
8.4
Reviews Sentiment
7.0
Number of Reviews
115
Ranking in other categories
Log Management (47th), Endpoint Detection and Response (EDR) (52nd), Compliance Management (12th)
 

Mindshare comparison

As of June 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Trellix ESM is 1.0%, up from 0.8% compared to the previous year. The mindshare of USM Anywhere is 0.9%, down from 1.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
 

Featured Reviews

Daniel Durian - PeerSpot reviewer
Helps to monitor and detect cyberattacks
The tool's effectiveness depends on how you define your log sources. To build visibility of incoming and outgoing traffic, you need logs from perimeter defense, firewalls, web application firewalls, and endpoint protection. With good traffic visibility, incident response time is really quick. Trellix ESM provides situation awareness. On the dashboard, I can see outbound and inbound communications to known threat hosts, IPS/IDS activity, and threat intelligence of the perimeter defense in the firewall. This information helps preempt attacks.
Read full review
Kris Nawani - PeerSpot reviewer
Offers complete coverage without the need to install additional software
USM Anywhere is used for threat detection and investigation. It provides a solution with built-in threat intelligence and various other investigation tools The solution offers complete coverage without the need to install additional software, as it is maintained by the vendor. It helps in saving…
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
857,028 professionals have used our research since 2012.
 

Comparison Review

VS
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Educational Organization
53%
Financial Services Firm
7%
Computer Software Company
7%
Comms Service Provider
6%
Computer Software Company
20%
Financial Services Firm
10%
Comms Service Provider
8%
Educational Organization
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about McAfee ESM?
The solution's technical support is great.
See all answers
What is your experience regarding pricing and costs for McAfee ESM?
When discussing Trellix ESM pricing and licensing, if you consider some premium product, the pricing also has to be premium, however, enterprise customers who look for a premium product, alongside ...
See all answers
What needs improvement with McAfee ESM?
We need to improve Trellix ESM by making sure that most of the logging devices available in the global market should be covered, and if there is any device which is not covered, there should not be...
See all answers
What do you like most about AT&T AlienVault USM?
The most valuable feature of the solution is the ease of deployment that it provides to users. The integrations that the product has with third-party applications are useful.
See all answers
What is your experience regarding pricing and costs for AT&T AlienVault USM?
The pricing is amazing and really cheap.
See all answers
What needs improvement with AT&T AlienVault USM?
There are scalability issues due to a 60 TB limit, which restricts its use for large customers like banks. It is also limited when used with bigger products and has complex password requirements.
See all answers
 

Comparisons

ArcSight Enterprise Security Manager (ESM) vs Trellix ESM Logo
ArcSight Enterprise Security Manager (ESM) vs Trellix ESM
Compared 28% of the time
Splunk Enterprise Security vs Trellix ESM Logo
Splunk Enterprise Security vs Trellix ESM
Compared 17% of the time
LogRhythm SIEM vs Trellix ESM Logo
LogRhythm SIEM vs Trellix ESM
Compared 16% of the time
Fortinet FortiSIEM vs Trellix ESM Logo
Fortinet FortiSIEM vs Trellix ESM
Compared 10% of the time
IBM Security QRadar vs Trellix ESM Logo
IBM Security QRadar vs Trellix ESM
Compared 9% of the time
More Trellix ESM Competitors
AlienVault OSSIM vs USM Anywhere Logo
AlienVault OSSIM vs USM Anywhere
Compared 30% of the time
Splunk Enterprise Security vs USM Anywhere Logo
Splunk Enterprise Security vs USM Anywhere
Compared 14% of the time
Rapid7 InsightIDR vs USM Anywhere Logo
Rapid7 InsightIDR vs USM Anywhere
Compared 12% of the time
IBM Security QRadar vs USM Anywhere Logo
IBM Security QRadar vs USM Anywhere
Compared 10% of the time
Wazuh vs USM Anywhere Logo
Wazuh vs USM Anywhere
Compared 10% of the time
More USM Anywhere Competitors
 

Product Reports

Buyer's Guide
Trellix ESM
May 2025
Trellix ESM reportDownload Trellix ESM product report
Buyer's Guide
USM Anywhere
May 2025
USM Anywhere reportDownload USM Anywhere product report
 

Also Known As

McAfee ESM, NitroSecurity, McAfee Enterprise Security Manager
AT&T AlienVault USM, AlienVault, AlienVault USM, Alienvault Cybersecurity
 

Overview

Make your organization more resilient and confident with Trellix Security Operations. Filter out the noise and cut complexity to deliver faster, more effective SecOps. Integrate your existing security tools and connect with over 650 Trellix solutions and third-party products.

Trellix

USM Anywhere centralizes security monitoring of networks and devices in the cloud, on premises, and in remote locations, helping you to detect threats virtually anywhere.

Discover

  • Network asset discovery
  • Software & services discovery
  • AWS asset discovery
  • Azure asset discovery
  • Google Cloud Platform asset discovery

Analyze

  • SIEM event correlation, auto-prioritized alarms
  • User activity monitoring
  • Up to 90-days of online, searchable events

Detect

  • Cloud intrusion detection (AWS, Azure, GCP)
  • Network intrusion detection (NIDS)
  • Host intrusion detection (HIDS)
  • Endpoint Detection and Response (EDR)

Respond

  • Forensics querying
  • Automate & orchestrate response
  • Notifications and ticketing

Assess

  • Vulnerability scanning
  • Cloud infrastructure assessment
  • User & asset configuration
  • Dark web monitoring

Report

  • Pre-built compliance reporting templates
  • Pre-built event reporting templates
  • Customizable views and dashboards
  • Log storage
LevelBlue
 

Sample Customers

San Francisco Police Credit Union, Wªstenrot Gruppe, Volusion, California Department of Corrections & Rehabilitation, Government of New Brunswick, State of Colorado, Macquarie Telecom, Texas Tech University Health Sciences Center, Cologne Bonn Airport
Abel & Cole, Bank of Ireland, Bluegrass Cellular, CareerBuilder, Claire's, Hays Medical Center, Hope International, McCurrach, McKinsey & Company, Party Delights, Pepco Holdings, Richland School District, Ricoh, SaveMart, Shake Shack, Steelcase, TaxAct, Taylor Morrison, Vonage and Zoom
Buyer's Guide
Trellix ESM vs. USM Anywhere
June 2025
Free Report: Trellix ESM vs. USM Anywhere
Find out what your peers are saying about Trellix ESM vs. USM Anywhere and other solutions. Updated: June 2025.
DOWNLOAD NOW
857,028 professionals have used our research since 2012.
See our Trellix ESM vs. USM Anywhere report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.