16 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 8.4 out of 101
27 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 8 out of 101

Likelihood to Recommend

AlienVault OSSIM

If this is your first experience with a SIEM, this one can get you started. Take the time to learn the ins and outs of the product and you'll most likely be satisfied with it if your company is an SMB. If you need compliance reports, OSSIM is too small for you, you'll need to go with USM or USM Anywhere.
Ivan Montilla Miralles profile photo

McAfee Enterprise Security Manager

I would make a cautionary recommendation. If you're heavily invested in a McAfee product line, the McAfee Enterprise Security Manager is a natural fit and you probably already understand the risk of working with them. If you are greenfield looking for a SIEM, I would advise documenting your use cases very well, because you may find yourself doing a new implementation down the road.
No photo available

Feature Rating Comparison

Security Information and Event Management (SIEM)

AlienVault OSSIM
8.1
McAfee Enterprise Security Manager
9.2
Centralized event and log data collection
AlienVault OSSIM
8.5
McAfee Enterprise Security Manager
9.7
Correlation
AlienVault OSSIM
8.0
McAfee Enterprise Security Manager
9.7
Event and log normalization
AlienVault OSSIM
7.8
McAfee Enterprise Security Manager
9.3
Deployment flexibility
AlienVault OSSIM
8.5
McAfee Enterprise Security Manager
8.3
Integration with Identity and Access Management Tools
AlienVault OSSIM
7.3
McAfee Enterprise Security Manager
10.0
Custom dashboards and views
AlienVault OSSIM
8.2
McAfee Enterprise Security Manager
8.3
Host and network-based intrusion detection
AlienVault OSSIM
8.5
McAfee Enterprise Security Manager
9.0

Pros

AlienVault OSSIM

  • Most of the configuration comes out-of-the-box suited for most environments. Setting it up is really easy, with the wizard, you can have it working in less than 3 hours of deployment, without counting asset installation.
  • Out-of-the-box dashboards are really useful. You can modify or add new widgets to suit your needs, but you'll most likely agree with what already comes configured.
  • The tickets feature for handling alarms is really easy to use.
Ivan Montilla Miralles profile photo

McAfee Enterprise Security Manager

  • Advanced Threat intelligence gives us the ability to prioritise alerts quickly and efficiently.
  • SIEM log collection allows us to integrate our other Intel products to a centralised point.
  • Physical appliances is one of the areas we have moved away from, so the ability for ESM to be available as a VDI was key.
Philip Clarke profile photo

Cons

AlienVault OSSIM

  • It's a free product! Yes, it doesn't have all the capabilities of the USM anywhere, but it does a great job. Can't really complain.
No photo available

McAfee Enterprise Security Manager

  • If there is a requirement to integrate into other vendor products i.e. (log sharing) then this was very cumbersome.
  • Integration of vulnerability scanning that is available in other vendor products would be a good addition.
  • When integrating all of Intel's products a third party consultancy is usually required, where other vendor products can be configured without this additional cost.
Philip Clarke profile photo

Usability

AlienVault OSSIM

AlienVault OSSIM 8.0
Based on 1 answer
AlienVault OSSIM is far easy to use and manage - provided you know what you're doing. As any SIEM application, there is some background knowledge required in order to take advantage of the product's functionalities, such as the log correlation and analysis. Other than that, the application is quite usable and robust.
Jose Quintero profile photo

McAfee Enterprise Security Manager

No score
No answers yet
No answers on this topic

Support

AlienVault OSSIM

No score
No answers yet
No answers on this topic

McAfee Enterprise Security Manager

McAfee Enterprise Security Manager 8.0
Based on 1 answer
McAfee Enterprise Security Manager overall is a great tool. It is effective in today's setting, wherein lots of potential threats are lurking. Its operations within the network are seamless. Users won't even notice that a SIEM is working in the background. But in today's trend, most of the businesses is heading towards the migration to cloud, which McAfee should improve its integration with.
Brandon Macapelit, CISA profile photo

Alternatives Considered

AlienVault OSSIM

AlienVault OSSIM has the upper ante in initial deployment price, being that it's open source. Also, with perhaps the exception of SolarWinds, it has a lower optimal requirements for onsite deployment, hence your OPEX won't be hit very hard by investing in new hardware to suit the appliance. The correlation engine is somewhat more robust that their counterparts in LogRhythm and SolarWinds, and the IDS (both NIDS and HIDS) are more reliable as well in terms of results. Finally, although Tenable SecurityCenter is more robust in dashboards, alerts and reports, it comes short in front of OSSIM in terms of real-time IDS and SIEM correlation.
Jose Quintero profile photo

McAfee Enterprise Security Manager

We selected and implemented McAfee Enterprise Security Manager because is the best SIEM solution from the market. With a very good support from the vendor. Easy implementation and easy management. A lot of threats addressed. High level of security assured. Very good resilience. Can collect large volumes of events and flow from multiple distributed sources
No photo available

Return on Investment

AlienVault OSSIM

  • The only investment here is setting it up and I think seeing it's performance it's a fantastic tool and has a great positive ROI!
No photo available

McAfee Enterprise Security Manager

  • Identify attack
  • Investigate incidents
  • Be in compliance with international standards
  • Inform manangement about security level
No photo available

Pricing Details

AlienVault OSSIM

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

McAfee Enterprise Security Manager

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Add comparison