IT Central Station is now PeerSpot: Here's why

McAfee ESM Pros

reviewer1285209 - PeerSpot reviewer
Tech Lead at a tech services company with 1,001-5,000 employees
The most valuable feature in ESM is its search and reporting feature. It's really nice.
View full review »
MV
Senior Security Specialist at a manufacturing company with 10,001+ employees
It is user-friendly. The notification part of McAfee ESM is very easy.
View full review »
MA
Information Security Officer at a tech services company with 51-200 employees
It is easy to use and deploy. It comes with user-friendly manuals.
View full review »
Buyer's Guide
Security Information and Event Management (SIEM)
July 2022
Find out what your peers are saying about McAfee, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: July 2022.
622,645 professionals have used our research since 2012.
Selina Aldefolla - PeerSpot reviewer
Information Security Officer at a healthcare company with 1,001-5,000 employees
It enables us to detect malicious threats, issues, or vulnerabilities in our network.
View full review »
LL
VP Cyber Security & IT at a computer software company with 1,001-5,000 employees
The most valuable feature is the correlation rules.
View full review »
SK
Vice President Cyber Security Practice Head at a tech services company with 1,001-5,000 employees
I like the ease of deployment.
View full review »
Amirsaeed Iloukhani - PeerSpot reviewer
Security Consultant at Bank Meli Exchange
The most valuable features of McAfee ESM are intrusion detection, malware protection, and the device controller.
View full review »
SW
Technical Support Engineer at a comms service provider with 10,001+ employees
The ease of use is the most valuable feature. Over the years I have always been using this solution and have become comfortable with it.
View full review »
SH
Assistant Vice President at a financial services firm with 1,001-5,000 employees
McAfee as a whole is a good solution.
View full review »

McAfee ESM Cons

reviewer1285209 - PeerSpot reviewer
Tech Lead at a tech services company with 1,001-5,000 employees
Cloud integration has room for improvement because they're not full-fledged to integrate with the cloud solutions that come. They use different integration platforms to bring in data, and that needs to be improved.
View full review »
MV
Senior Security Specialist at a manufacturing company with 10,001+ employees
It is not a very advanced solution, and it is for very generic use cases. It cannot cope with the advanced requirements that we're going to have. For example, for multiple authentication failures, it is still based on Windows events for detecting multiple login failures, whereas other companies are going beyond and working on implementing two-factor authentication. It is time to correlate the two-factor authentication results with authentification failures, which is not happening with McAfee ESM. The performance of the tool should be improved because it is very slow. The data display on the console is very slow in McAfee ESM. Its data storage is still old-fashioned, and it should be improved and upgraded to the latest versions. They have to come up with some new ideas to match what other leaders in the same domain are doing. For example, in Splunk, when you search for information for the last 60 days or five months, it quickly shows the information, but that is not the case with McAfee. The results should be quicker and faster on the console. They should integrate some additional features such as User Behavior Analytics (UBA) and automation. The threat intelligence part should also be improved on McAfee.
View full review »
MA
Information Security Officer at a tech services company with 51-200 employees
McAfee is no more providing security updates on this product, and the enhancements to this product seem to have stopped. Moreover, we don't get proper support, and we struggle to get its support. It would be good if they can add some AI engine and out of the box use cases because it is currently limited to the same scenario and the same setup. I have done a POC for Securonix, LogRhythm. These products are much more ahead as compared to McAfee ESM. They have included multiple modules in the same solution. Correlation is very easy. If McAfee ESM can improve, especially in such implementations, then I believe it would be much better.
View full review »
Buyer's Guide
Security Information and Event Management (SIEM)
July 2022
Find out what your peers are saying about McAfee, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: July 2022.
622,645 professionals have used our research since 2012.
Selina Aldefolla - PeerSpot reviewer
Information Security Officer at a healthcare company with 1,001-5,000 employees
We acquired the IBM product because McAfee is slightly confusing to use, and it's broader.
View full review »
LL
VP Cyber Security & IT at a computer software company with 1,001-5,000 employees
There should be support for multitenancy in the product.
View full review »
SK
Vice President Cyber Security Practice Head at a tech services company with 1,001-5,000 employees
I would like to see good analytics in future releases.
View full review »
Amirsaeed Iloukhani - PeerSpot reviewer
Security Consultant at Bank Meli Exchange
The support from McAfee ESM could improve. They could improve the speed.
View full review »
SW
Technical Support Engineer at a comms service provider with 10,001+ employees
The initial setup is difficult and could improve.
View full review »
SH
Assistant Vice President at a financial services firm with 1,001-5,000 employees
It cannot integrate with our Next-Generation Firewall and few applications such as Cisco ACI.
View full review »
Buyer's Guide
Security Information and Event Management (SIEM)
July 2022
Find out what your peers are saying about McAfee, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: July 2022.
622,645 professionals have used our research since 2012.