Skip to main content
TrustRadius
Trellix Enterprise Security Manager

Trellix Enterprise Security Manager
Formerly McAfee Enterprise Security Manager

Overview

What is Trellix Enterprise Security Manager?

Trellix Enterprise Security Manager (formerly McAfee Enterprise Security Manager) is security information and event management (SIEM) software.

Read more
Recent Reviews

Best SIEM

10 out of 10
May 23, 2019
Incentivized
McAfee Enterprise Security Manager is easy to use and to maintain, with great results. We use this SIEM because it offers threat …
Continue reading
Read all reviews

Popular Features

View all 13 features
  • Centralized event and log data collection (9)
    8.7
    87%
  • Deployment flexibility (9)
    8.3
    83%
  • Event and log normalization/management (9)
    8.0
    80%
  • Correlation (9)
    7.0
    70%
Return to navigation

Pricing

View all pricing
Trellix Enterprise Security Manager

Trellix Enterprise Security Manager

N/A
Unavailable

What is Trellix Enterprise Security Manager?

Trellix Enterprise Security Manager (formerly McAfee Enterprise Security Manager) is security information and event management (SIEM) software.

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

26 people also want pricing

Alternatives Pricing

Trellix Helix

Trellix Helix

Free
What is Trellix Helix?

Trellix Helix (formerly FireEye Helix) is a SIEM solution providing a non-malware threat detection solution.

InsightIDR

InsightIDR

$5.89
per month per asset
What is InsightIDR?

In addition to their incident response service, Rapid7 offers InsightIDR, a combined XDR and SIEM that provides user behavior and threat analytics.

Return to navigation

Features

Security Information and Event Management (SIEM)

Security Information and Event Management is a category of security software that allows security analysts to look at a more comprehensive view of security logs and events than would be possible by looking at the log files of individual, point security tools

8.5
Avg 7.8
Return to navigation

Product Details

What is Trellix Enterprise Security Manager?

Trellix Enterprise Security Manager Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

Trellix Enterprise Security Manager (formerly McAfee Enterprise Security Manager) is security information and event management (SIEM) software.

Reviewers rate Integration with Identity and Access Management Tools and Custom dashboards and workspaces highest, with a score of 9.3.

The most common users of Trellix Enterprise Security Manager are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(39)

Attribute Ratings

Reviews

(1-9 of 9)
Companies can't remove reviews or game the system. Here's why
July 28, 2021

McAfee Enterprise Security Manager Secures Your Enterprise!

Verified User
Analyst in Other
Construction Company, 201-500 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
McAfee Enterprise Security Manager is used by our entire office staff. With the help of McAfee Enterprise Security Manager, we have been able to prevent - as well as identify - security threats to our organization. Every computer in our office has McAfee Enterprise Security Manager installed and I believe our office is truly safer as a result.
Pros and Cons
  • Runs on Startup
  • User-Friendly
  • Identifies Threats
  • Customer Outreach
  • IT Support
  • Overall Aesthetic
Likelihood to Recommend
I believe that McAfee Enterprise Security Manager is best-suited for anyone in an office setting with a computer containing sensitive information. McAfee Enterprise Security Manager is constantly working to make sure that your device is free from an threats. Our field workers, however, probably wouldn't have a need for McAfee Enterprise Security Manager. They do not use computers for work and have no sensitive information stored in a work-related cloud.
May 22, 2021

Identification, neutralization and investigation of threats

Fernanda Ministerio | TrustRadius Reviewer
Fernanda Ministerio
Especialista de Desenvolvimento Industrial
SENAI-DN (Non-profit Organization Management, 10,001+ employees)
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
McAfee Enterprise Security Manager is being managed by the company's infrastructure area to improve information security processes in monitoring, investigating and minimizing problems and threats to our cloud services and systems. We use it mainly to monitor the performance of systems and applications, databases and critical network processes. The objective is to perform data analysis for patterns that may indicate a threat. This intelligence process determines priorities and alerts that reveal possible threats as early as possible.
Pros and Cons
  • Allows data analysis for patterns that may indicate a threat
  • Real-time activity visibility
  • Gives technology support intelligence by creating prioritized alerts that reveal potential threats before they happen
  • Problem reporting is integrated and simplifies analysis and compliance operations
  • Reports can be difficult to analyze
  • There is little training for technology teams to master the key features of the tools
  • Our team may have problems locating errors in our country's bases
  • Reports can be difficult to customize and adapt
Likelihood to Recommend
It is an important tool for large companies that have their cloud infrastructure. It is very interesting for organizations that need to monitor and analyze data from a heterogeneous infrastructure. It allows you to store billions of events and flows with quick access to long-term event data storage, but this infrastructure has a processing cost.
December 16, 2019

A robust SIEM solution for medium/large companies

Verified User
Consultant in Professional Services
Computer & Network Security Company, 51-200 employees
Score 7 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We deploy and sell the McAfee ESM (the SIEM solution) to our clients. We had it deployed in several kinds of companies, from small companies to large organizations. From private sector to public sector. McAfee is used to monitor the events (logs) of the clients and correlate them to generate alerts regarding security threats.
Pros and Cons
  • Good parsing capability
  • Enables integrations
  • The user interface is not the best, it is still based on Flash player (but they have plans to migrate to HTML5).
  • While the "user" interface is pretty straight forward, the management interface is fairly complicated.
Likelihood to Recommend
McAfee is a good solution if you're in a medium/large company and if you're looking for a solution that can be customized and expanded. I also recommend if you have the most common log sources on your environment, since McAfee supports the major log sources (but lack a lot of small vendors).
In my opinion, I wouldn't recommend McAfee for small companies, since it's not that easy to manage and maintain.
September 07, 2019

Overall, A Great Value Security Solution

Brandon Macapelit, CISA | TrustRadius Reviewer
Brandon Macapelit, CISA
IT Auditor
Unilab Inc (Pharmaceuticals, 1001-5000 employees)
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
McAfee Enterprise Security Manager is used in our company as the overall security information and event management system. It manages the whole network security inside our organization. Together with other McAfee services, it proactively monitors the behavior of all activities within the network and would prompt the security team whenever there seems to malicious things happening within the corporate network and connected devices.
Pros and Cons
  • Updated and current incident libraries.
  • It monitors the entire enterprise network proactively.
  • Its monitoring activities do not impact the network.
  • Widen more its integration capabilities, such as integration to some cloud platforms.
Likelihood to Recommend
McAfee Enterprise Security Manager can be well suited to any type of business or architecture of enterprise IT infrastructure and network since it can be tailored fit to your organization needs. Just make sure that during the engagement with the vendor, you need to be clear with what systems you have, as McAfee tends to have some limitations on integrating with other systems, especially with some cloud platform wherein we needed to acquire other SIEM because McAfee isn't compatible with the function we need from it in our cloud system.
May 29, 2019

Manage you events

NJ
Neil Johnson
CIO (Chief Information Officer)
UK Flooring Direct Ltd. (Consumer Goods, 501-1000 employees)
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
McAfee Enterprise Security Manager is a powerful SIEM that offers us the comfort of being in compliance with international standards in the domain of information security and helps us to assure security. Correlation of different events from different platforms is very useful and necessary. The integration with another software from McAfee is also very good (EPO, DLP).
Pros and Cons
  • Integration with other software
  • Log sources integration
  • Very user friendly interface
  • Real-time monitoring
  • Pre-defined reports
  • The system requirements are quite demanding
  • No other tool issue or operational issue was identified
Likelihood to Recommend
Collect valuable data from hundreds of types of devices. Events correlation and offenses work very well. Notification in case of an incident also works perfectly. The configuration is easy to customize. With the Content Packs (plugins) the system is flexible for new questions or new situations. Helps in improving visibility of threat actors and helps in further prevention.
May 23, 2019

Best SIEM

Verified User
Supervisor in Information Technology
Banking Company, 201-500 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
McAfee Enterprise Security Manager is easy to use and to maintain, with great results. We use this SIEM because it offers threat intelligence correlation, analytics, profiling, security alerts, data presentation and compliance. Good integration with log sources, inclusive with other McAfee tools. It is easy to monitor security events and identify incidents and cyber attacks.
Pros and Cons
  • Identify brute force attaks
  • Anomalous traffic detection
  • Faster ingestion and query performance
  • Can collect large volumes of events
  • Operating in all bowsers
  • Documentation detailation
  • Simplify the process of creation core relation rules
Likelihood to Recommend
The solution offers a lot of features. Great threat categorization and classification. Collect very quick a large volumes of events. Working in cluster is very useful. Data source onboarding reduces the time required to configure new data sources. Support includes professional services and training. Good performance and redundancy. High level of security.
December 07, 2018

McAfee ESM, a cautionary tale

Verified User
Analyst in Information Technology
Oil & Energy Company, 1001-5000 employees
Score 5 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
McAfee Enterprise Security Manager (previously called Nitro) is used as an enterprise SIEM across multiple sites and domains. It collects system logs and system events for correlation and alerting. It's a hub for security operations.
Pros and Cons
  • McAfee Enterprise Security Manager has a large library of pre-made correlations that reduces the amount of work needed to make it functional.
  • This is a core McAfee product that is still getting support.
  • It has a substantial amount of compatibility and integration with other products.
  • The migration off of Flash has been painful. The new interface is very difficult to work with. Even support tends to fall back to the Flash version.
  • The GUI is not intuitive under any version. Finding settings takes a significant amount of learning.
  • While the product is supported, the transitions from various directions have left the future of the product in question. It used to be the interface for IDS, but the new IDS is stand alone.
  • The way McAfee has dropped products with no warning in the past makes us skeptical of trusting any stated roadmap.
Likelihood to Recommend
I would make a cautionary recommendation. If you're heavily invested in a McAfee product line, the McAfee Enterprise Security Manager is a natural fit and you probably already understand the risk of working with them. If you are greenfield looking for a SIEM, I would advise documenting your use cases very well, because you may find yourself doing a new implementation down the road.
April 20, 2017

SIEM causing Anger then use Enterprise Security Manager

PC
Philip Clarke
IT Systems/Security Manager
R&Q (Insurance, 201-500 employees)
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
McAfee Enterprise Security Manager is used not only for its log collection capabilities but also for its advanced threat intelligence. We are using the product as part of moving into Intel's complete suite of products, where appliance integration will bring a commonality to our incident capabilities and help with faster response times and visibility.
Pros and Cons
  • Advanced Threat intelligence gives us the ability to prioritise alerts quickly and efficiently.
  • SIEM log collection allows us to integrate our other Intel products to a centralised point.
  • Physical appliances is one of the areas we have moved away from, so the ability for ESM to be available as a VDI was key.
  • If there is a requirement to integrate into other vendor products i.e. (log sharing) then this was very cumbersome.
  • Integration of vulnerability scanning that is available in other vendor products would be a good addition.
  • When integrating all of Intel's products a third party consultancy is usually required, where other vendor products can be configured without this additional cost.
Likelihood to Recommend

McAfee Enterprise Security Manager is well placed when the environment has other Intel products. We operate McAfee Move and the two products work extremely well together. The anti-virus product can be very cumbersome if used with another SIEM solution when log collecting.

We have other areas where intel solutions are not in use and in these circumstances we used another well-known SIEM solution that had an easier implementation phase than Intel's and where remote access was challenging.

April 12, 2017

ESM is great, McAfee AV, not so much

Alex Waitkus, CISSP-ISSAP, OSCP | TrustRadius Reviewer
Alex Waitkus, CISSP-ISSAP, OSCP
Security Architect
Securicon, LLC (Computer & Network Security, 11-50 employees)
Score 7 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
McAfee Enterprise Security Manager was used to deploy full disk encryption to sensitive end points, manage the HIPS, and end point security across the enterprise of 5000 + endpoints.
Pros and Cons
  • It is a great central management tool with great reports and dashboards.
  • It can easily show devices out of compliance.
  • ESM is easy to manage and maintain.
  • Some tools it manages lack features.
  • ESM can have some issues with upgrading.
  • MFA support is needed.
Likelihood to Recommend
It is great for deploying and managing enterprise endpoint protection; McAfee Antivirus is still not a leader.
Return to navigation