Anomali ThreatStream vs. Trellix Enterprise Security Manager

Anomali ThreatStream

Trellix Enterprise Security Manager

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
Anomali ThreatStream	Score 7.1 out of 10	N/A	ThreatStream from Anomali in Redwood City speeds detection of threats by uniting security solutions under one platform and providing tools to operationalize threat intelligence. ThreatStream also automates many of the tasks typically assigned to security professionals, freeing analysts to quickly handle threats. ThreatStream collects threat intelligence data from hundreds of third party sources.	N/A
Trellix Enterprise Security Manager	Score 7.1 out of 10	N/A	Trellix Enterprise Security Manager (formerly McAfee Enterprise Security Manager) is security information and event management (SIEM) software.	N/A

Pricing

Anomali ThreatStream

Trellix Enterprise Security Manager

Editions & Modules

No answers on this topic

Offerings

Pricing Offerings
Anomali ThreatStream	Trellix Enterprise Security Manager
Free Trial
No	No
Free/Freemium Version
No	No
Premium Consulting/Integration Services
No	No

Entry-level Setup Fee

No setup fee

Additional Details

—

More Pricing Information

Community Pulse
	Anomali ThreatStream	Trellix Enterprise Security Manager
Top Pros	Pro Threat intelligence Pro Time saving Pro Record keeping	Pro User friendly Pro Real time Pro Threat intelligence
Top Cons	Minus Customer service Minus Multi tasking Minus Not find	Minus User interface Minus Management interface Minus Not intuitive

Features

Anomali ThreatStream

Trellix Enterprise Security Manager

Security Information and Event Management (SIEM)

Comparison of Security Information and Event Management (SIEM) features of Product A and Product B
	Anomali ThreatStream - Ratings	Trellix Enterprise Security Manager 8.4 9 Ratings 7% above category average
Centralized event and log data collection	00 Ratings	8.69 Ratings
Correlation	00 Ratings	7.09 Ratings
Event and log normalization/management	00 Ratings	8.09 Ratings
Deployment flexibility	00 Ratings	8.39 Ratings
Integration with Identity and Access Management Tools	00 Ratings	9.37 Ratings
Custom dashboards and workspaces	00 Ratings	9.39 Ratings
Host and network-based intrusion detection	00 Ratings	8.37 Ratings
Data integration/API management	00 Ratings	9.32 Ratings
Behavioral analytics and baselining	00 Ratings	8.72 Ratings
Rules-based and algorithmic detection thresholds	00 Ratings	8.72 Ratings
Response orchestration and automation	00 Ratings	8.02 Ratings
Reporting and compliance management	00 Ratings	8.72 Ratings
Incident indexing/searching	00 Ratings	7.72 Ratings

Best Alternatives
	Anomali ThreatStream	Trellix Enterprise Security Manager
Small Businesses	AlienVault USM Score 8.0 out of 10	AlienVault USM Score 8.0 out of 10
Medium-sized Companies	CrowdStrike Falcon Score 9.1 out of 10	Splunk Enterprise Score 8.4 out of 10
Enterprises	CrowdStrike Falcon Score 9.1 out of 10	Microsoft Sentinel Score 8.4 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	Anomali ThreatStream	Trellix Enterprise Security Manager
Likelihood to Recommend	8.9 (3 ratings)	9.0 (9 ratings)
Support Rating	- (0 ratings)	6.5 (2 ratings)

User Testimonials
	Anomali ThreatStream	Trellix Enterprise Security Manager
Likelihood to Recommend	Anomali Anomali ThreatStream is excellent in scenarios where we deliver Managed Security Services to customers. It offers exhaustive volumes of information in the form of threat bulletins, IOCs, Threat Actor profiling, and details related to campaigns in the wild which can be used to a great extent by MSSPs. For an enterprise SOC, I believe it is a little less suited purely because of the pricing aspect as it is slightly towards the expensive side of the spectrum. Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) I believe that McAfee Enterprise Security Manager is best-suited for anyone in an office setting with a computer containing sensitive information. McAfee Enterprise Security Manager is constantly working to make sure that your device is free from an threats. Our field workers, however, probably wouldn't have a need for McAfee Enterprise Security Manager. They do not use computers for work and have no sensitive information stored in a work-related cloud. Incentivized Verified User Anonymous Read full review
Pros	Anomali Indicators of Compromise Signatures Community Sharing Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) McAfee Enterprise Security Manager has a large library of pre-made correlations that reduces the amount of work needed to make it functional. This is a core McAfee product that is still getting support. It has a substantial amount of compatibility and integration with other products. Incentivized Verified User Anonymous Read full review
Cons	Anomali The user interface, perhaps there is some room for improvement although it is good already. Confidence assigning process for IOCs needs to be more robust and transparent. While integration with SIEM solutions is a cakewalk, there is definitely added value if SIGMA rule conversion and YARA rule creation are provided from the platform. Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) The user interface is not the best, it is still based on Flash player (but they have plans to migrate to HTML5). While the "user" interface is pretty straight forward, the management interface is fairly complicated. Incentivized Verified User Anonymous Read full review
Support Rating	Anomali No answers on this topic	Trellix (FireEye + McAfee) McAfee Enterprise Security Manager overall is a great tool. It is effective in today's setting, wherein lots of potential threats are lurking. Its operations within the network are seamless. Users won't even notice that a SIEM is working in the background. But in today's trend, most of the businesses is heading towards the migration to cloud, which McAfee should improve its integration with. Incentivized Brandon Macapelit, CISA IT Auditor Read full review
Alternatives Considered	Anomali Many of the products that can be used to be ingested into a security event management software can be cumbersome with threat streamThere are many opportunities to continue fine-tuning the environment and providing great context in regards to threat research. When compared to other products threat stream stands out from usability and features. Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) We selected McAfee Enterprise Security Manager because the pricing is competitive in the industry. It is very reliable. The vendor offers good support in real time. Offers the results that we have been looking for. The ability to get the logs may be of last 2 years in a matter of seconds. The ability to retain logs for a very long time. Incentivized NJ Neil Johnson CIO (Chief Information Officer) Read full review
Return on Investment	Anomali After the Initial startup cost, it has overall had a positive impact by increasing efficiency of the team and freeing up analysts to do manual threat hunting Incentivized Verified User Anonymous Read full review	Trellix (FireEye + McAfee) Centralisation of events form NIDS/IPS/IDS, Firewall(s), Web Proxy and Endpoint Ability to have third party management Actively upgraded product with good vendor support Incentivized PC Philip Clarke IT Systems/Security Manager Read full review
ScreenShots