SolarWinds Security Event Manager (SEM)

SolarWinds Security Event Manager (SEM)

Customer Verified
TRUE
Score 8.1 out of 10
TRUE
SolarWinds Security Event Manager (SEM)

Overview

What is SolarWinds Security Event Manager (SEM)?

SolarWinds LEM is security information and event management (SIEM) software.
Read more

Recent Reviews

Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 7 features
  • Centralized event and log data collection (18)
    8.5
    85%
  • Deployment flexibility (18)
    7.9
    79%
  • Event and log normalization/management (36)
    7.3
    73%
  • Custom dashboards and workspaces (34)
    4.9
    49%

Reviewer Pros & Cons

View all pros & cons
Verified User
Engineer in Information Technology
Higher Education Company, 1001-5000 employees
Verified User
Administrator in Information Technology
Electrical & Electronic Manufacturing Company, 51-200 employees

Video Reviews

Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of SolarWinds Security Event Manager (SEM), and make your voice heard!

Record a review
Return to navigation

Pricing

View all pricing
SolarWinds Security Event Manager (SEM)

SolarWinds Security Event Manager (SEM)

N/A
Unavailable

What is SolarWinds Security Event Manager (SEM)?

SolarWinds LEM is security information and event management (SIEM) software.

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visithttps://www.solarwinds.com/products/pri…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

21 people want pricing too

Alternatives Pricing

Microsoft Sentinel

Microsoft Sentinel

$2.46
per GB ingested
What is Microsoft Sentinel?

Microsoft Sentinel (formerly Azure Sentinel) is designed as a birds-eye view across the enterprise. Put the cloud and large-scale intelligence from decades of Microsoft security experience to work. Make threat detection and response smarter and faster with artificial intelligence (AI). Eliminate…

Logz.io

Logz.io

$0.84
per ingested GB 3 day of log retention
What is Logz.io?

Logz.io in Boston offers their enterprise-grade log analytics application, oriented towards providing data security and eliminating the need for capacity management.

Return to navigation

Product Demos

SolarWinds Security Event Manager Overview
02:14
Return to navigation

Features

Security Information and Event Management (SIEM)

Security Information and Event Management is a category of security software that allows security analysts to look at a more comprehensive view of security logs and events than would be possible by looking at the log files of individual, point security tools

7.6Avg 7.8
Return to navigation

Product Details

What is SolarWinds Security Event Manager (SEM)?

SolarWinds Security Event Manager (previously know as Log & Event Manager) is presented by the vendor as a powerful and award-winning SIEM. It is an on-prem deployed tool that collects, consolidates, and analyzes logs and events from firewalls, IDS/IPS devices and applications, switches, routers, servers, operating system logs, and other applications.

The main applications are threat detection, automated incident analysis and response, and compliance reporting for IT infrastructure.

SolarWinds Security Event Manager (SEM) Features

Security Information and Event Management (SIEM) Features

  • Supported: Centralized event and log data collection
  • Supported: Correlation
  • Supported: Event and log normalization/management
  • Supported: Deployment flexibility
  • Supported: Integration with Identity and Access Management Tools
  • Supported: Custom dashboards and workspaces

SolarWinds Security Event Manager (SEM) Screenshots

Screenshot of Screenshot of Screenshot of Screenshot of

SolarWinds Security Event Manager (SEM) Video

Security Event Manager - Overview

SolarWinds Security Event Manager (SEM) Competitors

SolarWinds Security Event Manager (SEM) Technical Details

Deployment TypesOn-premise
Operating SystemsWindows
Mobile ApplicationNo

SolarWinds Security Event Manager (SEM) Downloadables

Frequently Asked Questions

SolarWinds LEM is security information and event management (SIEM) software.

Splunk Enterprise Security (ES), LogRhythm NextGen SIEM Platform, and ManageEngine EventLog Analyzer are common alternatives for SolarWinds Security Event Manager (SEM).

Reviewers rate Host and network-based intrusion detection highest, with a score of 9.

The most common users of SolarWinds Security Event Manager (SEM) are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

 (119)

Attribute Ratings

Reviews

(1-2 of 2)
Popular Filters
Companies can't remove reviews or game the system. Here's why
December 09, 2020

SolarWinds Security Event Manager Review

Verified User
Analyst in Information Technology
Telecommunications Company, 1001-5000 employees
Score 7 out of 10
Vetted Review
Verified User
Use Cases and Deployment Scope
SolarWinds Security Event Manager is utilized by the Information Technology department. Individuals on multiple IT teams have email alerts set up to notify them about events that require action. Additionally, the Security Event Manager is also utilized when there is a need to look at the logs to identify the root cause of a problem. For example, user account lockouts at a time the user wasn't in the office. It addresses multiple business problems by letting us know when something requires our attention.
Pros and Cons
  • Easy to utilize--the rules are straightforward and pre-configured. You just have to customize them to fit your environment.
  • Great customer service, which is incredibly useful when you want help with better utilizing the SEM.
  • Easy and clear filters when looking for specific information without your environment.
  • The SEM can be rather slow--an increase in CPU and RAM appeared to fix this problem fairly easily though.
  • The SEM has lately required reboots for us fairly often. This is something we are currently working with support to resolve.
  • The SEM could release additional graphic options to help better display data to management.
Likelihood to Recommend
The SolarWinds Security Event Manager is great for people who want to be able to either view logs or set up emails for certain actionable events. However, it would be less helpful in a situation where you want your SEM to be taking action on specific items. There are some actions that can be taken by the SEM, but they constitute a rather short list in comparison to other SEM tools.
SolarWinds Security Event Manager (SEM) Feature Ratings
Security Information and Event Management (SIEM) (6)
61.66666666666667%
6.2
Centralized event and log data collection
80%
8.0
Correlation
70%
7.0
Event and log normalization/management
80%
8.0
Deployment flexibility
80%
8.0
Integration with Identity and Access Management Tools
N/A
N/A
Custom dashboards and workspaces
60%
6.0
Return on Investment
  • Able to keep our systems with a higher uptime, due to being able to resolve issues faster.
  • Able to be alerted on key issues, making us more proactive.
  • Able to research issues more easily in one central location.
Alternatives Considered
I have additionally used Netwrix Auditor, which has some similarity with SolarWinds SEM. I use both hand in hand, but typically use the SEM first since it is easier to manage. With Netwrix custom searches are more complex than customer searches in the SEM. The SEM makes it easy to save custom filters, which makes future similar research very easy.
Other Software Used
Products Replaced
No
Key Differentiators
  • Price
  • Product Reputation
Our IT team has a few products with SolarWinds so the SEM was the first product considered. The brand reputation is the main factor that lead to purchasing the SolarWinds Security Event Manager. Additionally, the price is always a factor that is taken into close consideration at our company.
Users and Roles
5
Information Security and Systems Team are the main users of the SEM. A few other teams get alerts from the SEM, but aren't in the SEM interface or familiar with the platform. Only a handful of employees actually handle the management and configuration of the SEM in our environment. But a good amount of our IT team has alerts set up for them.
Support Headcount Required
3
Supporting the SEM has required working with the command line a little bit and being able to enter the back end of the SEM. Having a team member willing to do that, is essential when it comes to things like needing to reboot the SEM or upgrade it. However, most things are handled by one person and then escalated as needed.
Business Processes Supported
  • Filters to check for issues (that you don't want email alerts for)
  • Email alerts for major issues that require user action
  • Automation of actions based on certain alerts
Innovative Uses
  • Checking for failing service accounts
  • Being able to review account logon failure reasons
  • Alerts that we didn't plan on putting in SEM
Future Planned Uses
  • Research problems to find who caused a specific change
Likelihood to Renew
8
It is pretty likely that we will renew SEM when the time comes up. It is easy to use and maintain so there isn't much of a need to replace this product. It is also a pretty fair price for the capabilities provided by the SEM.
Premium Support
No
We have just regular support, which is enough to resolve issues. I turn to the SolarWinds Thwack community for a lot of things. There is lots of documentation and informative information there that can prevent even needing to open a support ticket. I always check documentation, Thwack, and then open a support ticket if those options didn't answer my questions.
Bug Resolution
No
Exceptional Examples of SolarWinds Security Event Manager (SEM) Support
I watched a SolarWinds webinar and months later the SolarWinds rep is still willing to help me out with any questions. Every once in the while, I will send him a quick question regarding configuration or a new feature of the product. He always replies fast and gives great detailed answers.
Support Rating
7
The support for SolarWinds SEM is pretty good. Most issues are easily resolved and the support team will work with you until the issue is fully resolved. Sometimes it takes a while to receive initial help, but once you get in contact with the support agent, it typically is a pretty decent process.
Easy Tasks
  • Search function
  • Setting up filters
  • Monitoring node status
Difficult Tasks
  • Setting up alerts
  • Reducing alert noise
Usability
8
After learning best practices of the SEM it is fairly easy to use and manage. Just the initial configuration and revision process can take some time. After about a month of using the SEM, I was able to navigate through most aspects of it with no problems. It just takes some hands on practice to best utilize the SEM.
October 23, 2020

SEM review of a SolarWinds fanboy at heart

Tim Short | TrustRadius Reviewer
Tim Short
Infrastructure Administrator
Compsource Mutual (Insurance, 201-500 employees)
Score 7 out of 10
Vetted Review
Verified User
Use Cases and Deployment Scope
We are currently using it within our Operations team to monitor events and alert others of security events and anomalies that it detects. I would like to recommend this product to any business needing to increase their security posture and get better alerts and more reliable data to look at to assist with the root cause and security monitoring.
Pros and Cons
  • Automated threat detection
  • Log collection
  • Live filtering
  • Custom rules
  • Alerting can be confusing to configure
  • The dashboards and widgets look a little old as with all SolarWinds products
  • The initial setup can take a lot of time
Likelihood to Recommend
It is great for using the automated response to log off users or detaching a USB device to assist with keeping your end-user devices safe in the workplace and from home now that people are doing more of a home office has a tool that can monitor what is going on on the desktops is a big plus and giving our OPS team the ability to kill a malicious process without giving them more training or privileged account to assist with stopping malicious users. There is not as much of a learning curve due to the fact that we already use the Orion products by SolarWinds making this product easier to learn.
Return on Investment
  • It has given our helpdesk and ops team more capabilities with less training and access.
  • It gives a lot more insight to what the users are doing now that they are working from home
  • Allows for a central tool that works with our other SolarWinds products to give a better view of our entire ecosystem of computers.
Alternatives Considered
We picked SolarWinds because of the better price point, integration with other SolarWinds products, and the ease of training. Because we were already familiar with the SolarWinds way of doing alerts and reports, it made this product a nice fit for our company and it has great capabilities built in to give our team a feeling of being more secure and to help deter possible attackers.
Other Software Used
ORION Enterprise, SolarWinds NetFlow Traffic Analyzer (NTA), SolarWinds Database Performance Analyzer
Products Replaced
No
Key Differentiators
  • Price
  • Product Features
  • Product Usability
  • Product Reputation
  • Prior Experience with the Product
  • Vendor Reputation
  • Existing Relationship with the Vendor
  • Positive Sales Experience with the Vendor
  • Analyst Reports
We decided to use the SolarWinds product because we are really satisfied with the SolarWinds product line and they always make great products. I would recommend this product to anyone especially those who are familiar with other SolarWinds products and have prior experience with SolarWinds. Security event manager is a great addition to anyone already using SolarWinds or even for people who have never used SolarWinds before.
Users and Roles
4
Our organization has 4 people that monitor this on a daily basis and they all work in our Operations center they monitor all of the SolarWinds events. They monitor our similar products to watch for intrusion and unpatched machines along with seeing traffic patterns by the users and server traffic.
Support Headcount Required
2
We have 2 people that monitor it and they are utilizing the SolarWinds training to learn how to better use the product.
Business Processes Supported
  • Monitor for security incidents
  • prevent major network outages
  • keep everyone notified about potential issues
Innovative Uses
  • Fix minor issues before they become major issues
Future Planned Uses
  • train more users to help with monitoring
  • alerting and automation to resolve issues
Likelihood to Renew
8
Evaluation Lessons Learned
I would add a few more people to watch the product demo and maybe have more than 3 products I am reviewing. I am also partial to SolarWinds so I kind of limited myself and my options without realizing it. I would suggest getting a vendor who is agnostic to suggest multiple products to compete with it.
Bug Resolution
No
Support Rating
8
SolarWinds customer support has always been amazing and extremely willing to help. They also are great at providing a library of training and videos to further your knowledge and help you learn more about your product. The support team has helped us with data migration of other products and upgrades and they kept at it and stayed with us until the project was done.
Usability
8
If you are familiar with SolarWinds then you can use this product it's as easy as that. If you have never used a SolarWinds product then it will take a minute to get how they do reports and make dashboards but that being said the tool is great and can make things very easy once you get a feel for how it works and get everything setup how you like it.
Return to navigation