What users are saying about
24 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 7.3 out of 101

Likelihood to Recommend

McAfee Enterprise Security Manager

I would make a cautionary recommendation. If you're heavily invested in a McAfee product line, the McAfee Enterprise Security Manager is a natural fit and you probably already understand the risk of working with them. If you are greenfield looking for a SIEM, I would advise documenting your use cases very well, because you may find yourself doing a new implementation down the road.
No photo available

Feature Rating Comparison

Security Information and Event Management (SIEM)

McAfee Enterprise Security Manager
6.6
Centralized event and log data collection
McAfee Enterprise Security Manager
9.0
Correlation
McAfee Enterprise Security Manager
8.9
Event and log normalization
McAfee Enterprise Security Manager
7.2
Deployment flexibility
McAfee Enterprise Security Manager
3.6
Integration with Identity and Access Management Tools
McAfee Enterprise Security Manager
7.5
Custom dashboards and views
McAfee Enterprise Security Manager
3.6
Host and network-based intrusion detection
McAfee Enterprise Security Manager
6.3

Pros

McAfee Enterprise Security Manager

  • Advanced Threat intelligence gives us the ability to prioritise alerts quickly and efficiently.
  • SIEM log collection allows us to integrate our other Intel products to a centralised point.
  • Physical appliances is one of the areas we have moved away from, so the ability for ESM to be available as a VDI was key.
Philip Clarke profile photo

Cons

McAfee Enterprise Security Manager

  • If there is a requirement to integrate into other vendor products i.e. (log sharing) then this was very cumbersome.
  • Integration of vulnerability scanning that is available in other vendor products would be a good addition.
  • When integrating all of Intel's products a third party consultancy is usually required, where other vendor products can be configured without this additional cost.
Philip Clarke profile photo

Alternatives Considered

McAfee Enterprise Security Manager

We looked at a few products, these were AlienVault, ESM, LogRhythm and Alert Logic.ESM at the time had more functionality and a friendlier and cleaner user interface than LogRhythmESM had an ability to integrate easily into Intel's endpoint solution versus AlienVault where a parser would have to be written, though AlienVault's inclusion of vulnerability management and IDS made it stand out from some of the others.ESM had a better correlation engine and log drill through than Alert Logic, and in our scenario we were not looking for a hosted solution at the time.ESM has a good network of partners and in the event a managed service is required the transition to this is made very easily.
Philip Clarke profile photo

Return on Investment

McAfee Enterprise Security Manager

  • Centralisation of events form NIDS/IPS/IDS, Firewall(s), Web Proxy and Endpoint
  • Ability to have third party management
  • Actively upgraded product with good vendor support
Philip Clarke profile photo

Pricing Details

McAfee Enterprise Security Manager

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No
Additional Pricing Details

Add comparison