SolarWinds Security Event Manager (SEM)

SolarWinds Security Event Manager (SEM)

Customer Verified
Score 8.1 out of 10
SolarWinds Security Event Manager (SEM)


What is SolarWinds Security Event Manager (SEM)?

SolarWinds LEM is security information and event management (SIEM) software.
Read more

Recent Reviews

Read all reviews


Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 7 features
  • Centralized event and log data collection (18)
  • Deployment flexibility (18)
  • Event and log normalization/management (36)
  • Custom dashboards and workspaces (34)

Reviewer Pros & Cons

View all pros & cons

Video Reviews

Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of SolarWinds Security Event Manager (SEM), and make your voice heard!

Return to navigation


View all pricing

What is SolarWinds Security Event Manager (SEM)?

SolarWinds LEM is security information and event management (SIEM) software.

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visit…


  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

21 people want pricing too

Alternatives Pricing

What is Microsoft Sentinel?

Microsoft Sentinel (formerly Azure Sentinel) is designed as a birds-eye view across the enterprise. Put the cloud and large-scale intelligence from decades of Microsoft security experience to work. Make threat detection and response smarter and faster with artificial intelligence (AI). Eliminate…

What is in Boston offers their enterprise-grade log analytics application, oriented towards providing data security and eliminating the need for capacity management.

Return to navigation

Product Demos

SolarWinds Security Event Manager Overview
Return to navigation


Security Information and Event Management (SIEM)

Security Information and Event Management is a category of security software that allows security analysts to look at a more comprehensive view of security logs and events than would be possible by looking at the log files of individual, point security tools

7.6Avg 7.8
Return to navigation

Product Details

What is SolarWinds Security Event Manager (SEM)?

SolarWinds Security Event Manager (previously know as Log & Event Manager) is presented by the vendor as a powerful and award-winning SIEM. It is an on-prem deployed tool that collects, consolidates, and analyzes logs and events from firewalls, IDS/IPS devices and applications, switches, routers, servers, operating system logs, and other applications.

The main applications are threat detection, automated incident analysis and response, and compliance reporting for IT infrastructure.

SolarWinds Security Event Manager (SEM) Features

Security Information and Event Management (SIEM) Features

  • Supported: Centralized event and log data collection
  • Supported: Correlation
  • Supported: Event and log normalization/management
  • Supported: Deployment flexibility
  • Supported: Integration with Identity and Access Management Tools
  • Supported: Custom dashboards and workspaces

SolarWinds Security Event Manager (SEM) Screenshots

Screenshot of Screenshot of Screenshot of Screenshot of

SolarWinds Security Event Manager (SEM) Video

Security Event Manager - Overview

SolarWinds Security Event Manager (SEM) Technical Details

Deployment TypesOn-premise
Operating SystemsWindows
Mobile ApplicationNo

SolarWinds Security Event Manager (SEM) Downloadables

Frequently Asked Questions

SolarWinds LEM is security information and event management (SIEM) software.

Splunk Enterprise Security (ES), LogRhythm NextGen SIEM Platform, and ManageEngine EventLog Analyzer are common alternatives for SolarWinds Security Event Manager (SEM).

Reviewers rate Host and network-based intrusion detection highest, with a score of 9.

The most common users of SolarWinds Security Event Manager (SEM) are from Mid-sized Companies (51-1,000 employees).
Return to navigation


View all alternatives
Return to navigation


(1-2 of 2)
Companies can't remove reviews or game the system. Here's why
Score 7 out of 10
Vetted Review
Verified User
SolarWinds Security Event Manager is utilized by the Information Technology department. Individuals on multiple IT teams have email alerts set up to notify them about events that require action. Additionally, the Security Event Manager is also utilized when there is a need to look at the logs to identify the root cause of a problem. For example, user account lockouts at a time the user wasn't in the office. It addresses multiple business problems by letting us know when something requires our attention.
  • Easy to utilize--the rules are straightforward and pre-configured. You just have to customize them to fit your environment.
  • Great customer service, which is incredibly useful when you want help with better utilizing the SEM.
  • Easy and clear filters when looking for specific information without your environment.
  • The SEM can be rather slow--an increase in CPU and RAM appeared to fix this problem fairly easily though.
  • The SEM has lately required reboots for us fairly often. This is something we are currently working with support to resolve.
  • The SEM could release additional graphic options to help better display data to management.
The SolarWinds Security Event Manager is great for people who want to be able to either view logs or set up emails for certain actionable events. However, it would be less helpful in a situation where you want your SEM to be taking action on specific items. There are some actions that can be taken by the SEM, but they constitute a rather short list in comparison to other SEM tools.
Security Information and Event Management (SIEM) (6)
Centralized event and log data collection
Event and log normalization/management
Deployment flexibility
Integration with Identity and Access Management Tools
Custom dashboards and workspaces
  • Able to keep our systems with a higher uptime, due to being able to resolve issues faster.
  • Able to be alerted on key issues, making us more proactive.
  • Able to research issues more easily in one central location.
I have additionally used Netwrix Auditor, which has some similarity with SolarWinds SEM. I use both hand in hand, but typically use the SEM first since it is easier to manage. With Netwrix custom searches are more complex than customer searches in the SEM. The SEM makes it easy to save custom filters, which makes future similar research very easy.
  • Price
  • Product Reputation
Our IT team has a few products with SolarWinds so the SEM was the first product considered. The brand reputation is the main factor that lead to purchasing the SolarWinds Security Event Manager. Additionally, the price is always a factor that is taken into close consideration at our company.
Information Security and Systems Team are the main users of the SEM. A few other teams get alerts from the SEM, but aren't in the SEM interface or familiar with the platform. Only a handful of employees actually handle the management and configuration of the SEM in our environment. But a good amount of our IT team has alerts set up for them.
Supporting the SEM has required working with the command line a little bit and being able to enter the back end of the SEM. Having a team member willing to do that, is essential when it comes to things like needing to reboot the SEM or upgrade it. However, most things are handled by one person and then escalated as needed.
  • Filters to check for issues (that you don't want email alerts for)
  • Email alerts for major issues that require user action
  • Automation of actions based on certain alerts
  • Checking for failing service accounts
  • Being able to review account logon failure reasons
  • Alerts that we didn't plan on putting in SEM
  • Research problems to find who caused a specific change
It is pretty likely that we will renew SEM when the time comes up. It is easy to use and maintain so there isn't much of a need to replace this product. It is also a pretty fair price for the capabilities provided by the SEM.
We have just regular support, which is enough to resolve issues. I turn to the SolarWinds Thwack community for a lot of things. There is lots of documentation and informative information there that can prevent even needing to open a support ticket. I always check documentation, Thwack, and then open a support ticket if those options didn't answer my questions.
I watched a SolarWinds webinar and months later the SolarWinds rep is still willing to help me out with any questions. Every once in the while, I will send him a quick question regarding configuration or a new feature of the product. He always replies fast and gives great detailed answers.
The support for SolarWinds SEM is pretty good. Most issues are easily resolved and the support team will work with you until the issue is fully resolved. Sometimes it takes a while to receive initial help, but once you get in contact with the support agent, it typically is a pretty decent process.
  • Search function
  • Setting up filters
  • Monitoring node status
  • Setting up alerts
  • Reducing alert noise
After learning best practices of the SEM it is fairly easy to use and manage. Just the initial configuration and revision process can take some time. After about a month of using the SEM, I was able to navigate through most aspects of it with no problems. It just takes some hands on practice to best utilize the SEM.
Tim Short | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
We are currently using it within our Operations team to monitor events and alert others of security events and anomalies that it detects. I would like to recommend this product to any business needing to increase their security posture and get better alerts and more reliable data to look at to assist with the root cause and security monitoring.
  • Automated threat detection
  • Log collection
  • Live filtering
  • Custom rules
  • Alerting can be confusing to configure
  • The dashboards and widgets look a little old as with all SolarWinds products
  • The initial setup can take a lot of time
It is great for using the automated response to log off users or detaching a USB device to assist with keeping your end-user devices safe in the workplace and from home now that people are doing more of a home office has a tool that can monitor what is going on on the desktops is a big plus and giving our OPS team the ability to kill a malicious process without giving them more training or privileged account to assist with stopping malicious users. There is not as much of a learning curve due to the fact that we already use the Orion products by SolarWinds making this product easier to learn.
  • It has given our helpdesk and ops team more capabilities with less training and access.
  • It gives a lot more insight to what the users are doing now that they are working from home
  • Allows for a central tool that works with our other SolarWinds products to give a better view of our entire ecosystem of computers.
We picked SolarWinds because of the better price point, integration with other SolarWinds products, and the ease of training. Because we were already familiar with the SolarWinds way of doing alerts and reports, it made this product a nice fit for our company and it has great capabilities built in to give our team a feeling of being more secure and to help deter possible attackers.
ORION Enterprise, SolarWinds NetFlow Traffic Analyzer (NTA), SolarWinds Database Performance Analyzer
  • Price
  • Product Features
  • Product Usability
  • Product Reputation
  • Prior Experience with the Product
  • Vendor Reputation
  • Existing Relationship with the Vendor
  • Positive Sales Experience with the Vendor
  • Analyst Reports
We decided to use the SolarWinds product because we are really satisfied with the SolarWinds product line and they always make great products. I would recommend this product to anyone especially those who are familiar with other SolarWinds products and have prior experience with SolarWinds. Security event manager is a great addition to anyone already using SolarWinds or even for people who have never used SolarWinds before.
Our organization has 4 people that monitor this on a daily basis and they all work in our Operations center they monitor all of the SolarWinds events. They monitor our similar products to watch for intrusion and unpatched machines along with seeing traffic patterns by the users and server traffic.
We have 2 people that monitor it and they are utilizing the SolarWinds training to learn how to better use the product.
  • Monitor for security incidents
  • prevent major network outages
  • keep everyone notified about potential issues
  • Fix minor issues before they become major issues
  • train more users to help with monitoring
  • alerting and automation to resolve issues
I would add a few more people to watch the product demo and maybe have more than 3 products I am reviewing. I am also partial to SolarWinds so I kind of limited myself and my options without realizing it. I would suggest getting a vendor who is agnostic to suggest multiple products to compete with it.
SolarWinds customer support has always been amazing and extremely willing to help. They also are great at providing a library of training and videos to further your knowledge and help you learn more about your product. The support team has helped us with data migration of other products and upgrades and they kept at it and stayed with us until the project was done.
If you are familiar with SolarWinds then you can use this product it's as easy as that. If you have never used a SolarWinds product then it will take a minute to get how they do reports and make dashboards but that being said the tool is great and can make things very easy once you get a feel for how it works and get everything setup how you like it.
Return to navigation