Try our new research platform with insights from 80,000+ expert users
Trellix ESM Logo

Trellix ESM pros and cons

Vendor: Trellix
3.7 out of 5
Leave a review

Pros & Cons summary

Trellix ESM is lauded for its extensive correlations, reports, and adaptive dashboards. It offers 24/7 technical support and seamless integration with various technologies for network monitoring. Quarantine features enhance security, and scalability is achieved by adding receivers. However, disk space management is unclear, there are performance-affecting bugs, and integration with cloud solutions is lacking. The need for additional equipment to address limitations and the lack of comprehensive updates are concerns for users.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

The most valuable feature is that it comes with many correlations, reports, and dashboards already available and is easy to use.
Trellix ESM blocks unauthorized elements with adaptive learning, effectively correlates different events, enables detection of threats, and has excellent log monitoring.
Technical support is robust, available around the clock, and offers prompt resolution of queries.
Trellix ESM offers easy integration with other technologies, enhancing security and visibility while being scalable.
Deployment is efficient, taking only two days, and Trellix ESM utilizes fewer human resources, improving overall security management.

CONS

Disk space requirements are unclear, and at least 100GB are unusable on clients.
Multiple bugs and frequent system hangs require numerous patches and updates.
Integration capabilities with Next-Generation Firewalls and specific applications need improvement.
Performance is slow, particularly concerning data display and storage efficiency.
Data logging accuracy is problematic, with an inability to reliably capture all changes.
 

Trellix ESM Pros review quotes

Chetankumar Savalagimath - PeerSpot reviewer
May 15, 2021
The most valuable feature in ESM is its search and reporting feature. It's really nice.
Read full review
it_user1033191 - PeerSpot reviewer
Mar 11, 2019
The most valuable feature is the capability to correlate different events from different platforms that we feed into it.
Read full review
Daniel Durian - PeerSpot reviewer
Dec 6, 2022
The most valuable feature is for the security operation center because it provides visibility of all traffic within the company infrastructure.
Read full review
Buyer's Guide
Trellix ESM
July 2025
Free Report: Trellix ESM Reviews and More
Learn what your peers think about Trellix ESM. Get advice and tips from experienced pros sharing their opinions. Updated: July 2025.
DOWNLOAD NOW
865,164 professionals have used our research since 2012.
ES
Nov 15, 2023
The solution's technical support is great.
Read full review
MD
May 12, 2025
The strongest part of Trellix ESM is that we get quite good reports.
Read full review
WA
Aug 8, 2019
This solution integrates easily and very well with other technologies.
Read full review
reviewer927423 - PeerSpot reviewer
May 5, 2021
It is user-friendly. The notification part of McAfee ESM is very easy.
Read full review
reviewer1427199 - PeerSpot reviewer
Sep 27, 2020
It is easy to use and deploy. It comes with user-friendly manuals.
Read full review
CM
Mar 11, 2019
The most valuable feature is that if the scanning does find something, it quarantines it. Then you can decide what you are going to do with it.
Read full review
it_user380976 - PeerSpot reviewer
Jul 4, 2016
The most valuable feature for us is that it comes with many correlations, reports, and dashboards already available. It's also very easy to use.
Read full review
Show 10 more reviews (out of 30)
 

Trellix ESM Cons review quotes

BL
Jul 25, 2025
Areas of Trellix ESM that could be improved or enhanced include checking on the clients who are still on-prem, especially banks, as most are not moving everything to the cloud due to confidentiality and accessibility during network outages.
Read full review
Chetankumar Savalagimath - PeerSpot reviewer
May 15, 2021
Cloud integration has room for improvement because they're not full-fledged to integrate with the cloud solutions that come. They use different integration platforms to bring in data, and that needs to be improved.
Read full review
it_user1033191 - PeerSpot reviewer
Mar 11, 2019
There are some banking and transactional cases that are local, South America transactions. I would like to see them add features that can be used locally, to make those transactions more reliable.
Read full review
Buyer's Guide
Trellix ESM
July 2025
Free Report: Trellix ESM Reviews and More
Learn what your peers think about Trellix ESM. Get advice and tips from experienced pros sharing their opinions. Updated: July 2025.
DOWNLOAD NOW
865,164 professionals have used our research since 2012.
Daniel Durian - PeerSpot reviewer
Dec 6, 2022
Tech support is required each time there is a system update of the solution.
Read full review
ES
Nov 15, 2023
The product's stability is an area of concern where improvements are required.
Read full review
MD
May 12, 2025
We need to improve Trellix ESM by making sure that most of the logging devices available in the global market should be covered, and if there is any device which is not covered, there should not be any additional charges for writing the custom parsers on that.
Read full review
WA
Aug 8, 2019
We cannot add new data sources to the most recent version.
Read full review
reviewer927423 - PeerSpot reviewer
May 5, 2021
It is not a very advanced solution, and it is for very generic use cases. It cannot cope with the advanced requirements that we're going to have. For example, for multiple authentication failures, it is still based on Windows events for detecting multiple login failures, whereas other companies are going beyond and working on implementing two-factor authentication. It is time to correlate the two-factor authentication results with authentification failures, which is not happening with McAfee ESM. The performance of the tool should be improved because it is very slow. The data display on the console is very slow in McAfee ESM. Its data storage is still old-fashioned, and it should be improved and upgraded to the latest versions. They have to come up with some new ideas to match what other leaders in the same domain are doing. For example, in Splunk, when you search for information for the last 60 days or five months, it quickly shows the information, but that is not the case with McAfee. The results should be quicker and faster on the console. They should integrate some additional features such as User Behavior Analytics (UBA) and automation. The threat intelligence part should also be improved on McAfee.
Read full review
reviewer1427199 - PeerSpot reviewer
Sep 27, 2020
McAfee is no more providing security updates on this product, and the enhancements to this product seem to have stopped. Moreover, we don't get proper support, and we struggle to get its support. It would be good if they can add some AI engine and out of the box use cases because it is currently limited to the same scenario and the same setup. I have done a POC for Securonix, LogRhythm. These products are much more ahead as compared to McAfee ESM. They have included multiple modules in the same solution. Correlation is very easy. If McAfee ESM can improve, especially in such implementations, then I believe it would be much better.
Read full review
CM
Mar 11, 2019
The only issue I have with McAfee is the amount of computer resources that it takes... it's definitely impacting some of the other applications that are running on a computer at the same time.
Read full review
Show 10 more reviews (out of 31)

Product Categories

Product Categories
Security Information and Event Management (SIEM)

Popular Comparisons

Popular Comparisons
Microsoft Sentinel vs Trellix ESM Logo
Microsoft Sentinel vs Trellix ESM
Splunk Enterprise Security vs Trellix ESM Logo
Splunk Enterprise Security vs Trellix ESM
IBM Security QRadar vs Trellix ESM Logo
IBM Security QRadar vs Trellix ESM
Elastic Security vs Trellix ESM Logo
Elastic Security vs Trellix ESM
LogRhythm SIEM vs Trellix ESM Logo
LogRhythm SIEM vs Trellix ESM
Fortinet FortiSIEM vs Trellix ESM Logo
Fortinet FortiSIEM vs Trellix ESM
Securonix Next-Gen SIEM vs Trellix ESM Logo
Securonix Next-Gen SIEM vs Trellix ESM
Exabeam vs Trellix ESM Logo
Exabeam vs Trellix ESM
Stellar Cyber Open XDR vs Trellix ESM Logo
Stellar Cyber Open XDR vs Trellix ESM
ManageEngine EventLog Analyzer vs Trellix ESM Logo
ManageEngine EventLog Analyzer vs Trellix ESM
OpenText Enterprise Security Manager vs Trellix ESM Logo
OpenText Enterprise Security Manager vs Trellix ESM
Trellix Helix Connect vs Trellix ESM Logo
Trellix Helix Connect vs Trellix ESM
SolarWinds Security Event Manager vs Trellix ESM Logo
SolarWinds Security Event Manager vs Trellix ESM
Snare vs Trellix ESM Logo
Snare vs Trellix ESM
Graylog Security vs Trellix ESM Logo
Graylog Security vs Trellix ESM
See all alternatives

Product Categories

Product Categories
Security Information and Event Management (SIEM)

Popular Comparisons

Popular Comparisons
Microsoft Sentinel vs Trellix ESM Logo
Microsoft Sentinel vs Trellix ESM
Splunk Enterprise Security vs Trellix ESM Logo
Splunk Enterprise Security vs Trellix ESM
IBM Security QRadar vs Trellix ESM Logo
IBM Security QRadar vs Trellix ESM
Elastic Security vs Trellix ESM Logo
Elastic Security vs Trellix ESM
LogRhythm SIEM vs Trellix ESM Logo
LogRhythm SIEM vs Trellix ESM
Fortinet FortiSIEM vs Trellix ESM Logo
Fortinet FortiSIEM vs Trellix ESM
Securonix Next-Gen SIEM vs Trellix ESM Logo
Securonix Next-Gen SIEM vs Trellix ESM
Exabeam vs Trellix ESM Logo
Exabeam vs Trellix ESM
Stellar Cyber Open XDR vs Trellix ESM Logo
Stellar Cyber Open XDR vs Trellix ESM
ManageEngine EventLog Analyzer vs Trellix ESM Logo
ManageEngine EventLog Analyzer vs Trellix ESM
OpenText Enterprise Security Manager vs Trellix ESM Logo
OpenText Enterprise Security Manager vs Trellix ESM
Trellix Helix Connect vs Trellix ESM Logo
Trellix Helix Connect vs Trellix ESM
SolarWinds Security Event Manager vs Trellix ESM Logo
SolarWinds Security Event Manager vs Trellix ESM
Snare vs Trellix ESM Logo
Snare vs Trellix ESM
Graylog Security vs Trellix ESM Logo
Graylog Security vs Trellix ESM
See all alternatives
Related questions
  • 50
Has anyone got experience in deployment of a SIEM solution?
  • 49
IBM QRadar is rated above competitors (McAfee, Splunk, LogRhythm) in Gartner's 2020 Magic Quandrant. Agree/Disagree?
  • 189
What Solution for SIEM is Best To Be NIST 800-171 Compliant?
  • 56
When evaluating Security Information and Event Management (SIEM), what aspect do you think is the most important feature to look for?
  • 105
What are the main differences between Nessus and Arcsight?
  • 31
What's The Best Way to Trial SIEM Solutions?
  • 142
Which is the best SIEM solution for a government organization?
  • 834
What is the difference between IT event correlation and aggregation?
  • 71
What Is SIEM Used For?
  • 40
RSA-EMC vs. other SIEM products?