Skip to main content
TrustRadius
Trellix Enterprise Security Manager

Trellix Enterprise Security Manager
Formerly McAfee Enterprise Security Manager

Overview

What is Trellix Enterprise Security Manager?

Trellix Enterprise Security Manager (formerly McAfee Enterprise Security Manager) is security information and event management (SIEM) software.

Read more
Recent Reviews

TrustRadius Insights

McAfee Enterprise Security Manager has proven to be a valuable tool in improving information security processes and minimizing threats to …
Continue reading

Best SIEM

10 out of 10
May 23, 2019
Incentivized
McAfee Enterprise Security Manager is easy to use and to maintain, with great results. We use this SIEM because it offers threat …
Continue reading
Read all reviews

Popular Features

View all 13 features
  • Centralized event and log data collection (9)
    8.7
    87%
  • Deployment flexibility (9)
    8.3
    83%
  • Event and log normalization/management (9)
    8.0
    80%
  • Correlation (9)
    7.0
    70%
Return to navigation

Pricing

View all pricing
N/A
Unavailable

What is Trellix Enterprise Security Manager?

Trellix Enterprise Security Manager (formerly McAfee Enterprise Security Manager) is security information and event management (SIEM) software.

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

26 people also want pricing

Alternatives Pricing

What is Trellix Helix?

Trellix Helix (formerly FireEye Helix) is a SIEM solution providing a non-malware threat detection solution.

What is Sumo Logic?

Sumo Logic is a log management offering from the San Francisco based company of the same name.

Return to navigation

Features

Security Information and Event Management (SIEM)

Security Information and Event Management is a category of security software that allows security analysts to look at a more comprehensive view of security logs and events than would be possible by looking at the log files of individual, point security tools

8.4
Avg 7.8
Return to navigation

Product Details

What is Trellix Enterprise Security Manager?

Trellix Enterprise Security Manager Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

Trellix Enterprise Security Manager (formerly McAfee Enterprise Security Manager) is security information and event management (SIEM) software.

Reviewers rate Integration with Identity and Access Management Tools and Custom dashboards and workspaces highest, with a score of 9.3.

The most common users of Trellix Enterprise Security Manager are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(40)

Community Insights

TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!

McAfee Enterprise Security Manager has proven to be a valuable tool in improving information security processes and minimizing threats to cloud services and systems. Users have reported that the product effectively monitors, investigates, and mitigates problems and threats encountered in their environments. With its ability to monitor the performance of various components such as systems, applications, databases, and critical network processes, McAfee Enterprise Security Manager enables users to analyze data for threat detection purposes. This capability has been highly praised by customers who appreciate the product's contribution to their overall security strategy.

Another key use case of the product is its role in deploying full disk encryption, managing HIPS, and ensuring endpoint security across large enterprises. McAfee Enterprise Security Manager is widely utilized by organizations of all sizes, be it small companies or large enterprises in both the private and public sectors. The product's robust features are leveraged by entire office staffs to prevent and identify security threats, resulting in a safer work environment. Furthermore, the SIEM solution serves as an enterprise SIEM across multiple sites and domains, collecting system logs and events for correlation and alerting purposes.

Users have commended McAfee Enterprise Security Manager for its ease of use in day-to-day operations and maintenance. The product is highly regarded for providing excellent results while being relatively straightforward to set up and configure. It offers a range of functionalities such as threat intelligence correlation, analytics, profiling, security alerts, data presentation, and compliance capabilities. The integration with other McAfee tools and log sources has been well-received by users as it simplifies the monitoring of security events while facilitating the identification of incidents and cyber attacks. Overall, McAfee Enterprise Security Manager has established itself as a reliable SIEM solution capable of addressing various security challenges faced by organizations today.

Valuable Threat Intelligence: Users have found Advanced Threat intelligence to be a valuable feature, allowing them to prioritize alerts quickly and efficiently. Several reviewers have stated that it helps in identifying potential threats before they happen.

Highly Praised SIEM Log Collection: The SIEM log collection feature is highly praised by users for its ability to integrate other Intel products into a centralized point, enhancing overall security capabilities. Many users appreciate the convenience and effectiveness of this integration.

Key Advantage of VDI Availability: The availability of ESM as a VDI is considered a key advantage by many organizations. It provides flexibility and easy access for users who have moved away from physical appliances. This feature has been highlighted as beneficial for efficient system accessibility.

Cumbersome Integration Process: Several users have found the integration process into other vendor products to be cumbersome and more difficult compared to other vendor products. They feel that it is not as intuitive and requires additional effort.

Lack of Training for Key Features: Some users have noted a lack of training provided for technology teams to fully understand and utilize the key features of the tools. This can lead to challenges in effectively leveraging the software's capabilities.

Difficulties with Reports Customization: Users have expressed frustration with analyzing and customizing reports. They find it challenging to tailor reports according to their specific needs, indicating a need for improvement in this area.

Attribute Ratings

Reviews

(1-9 of 9)
Companies can't remove reviews or game the system. Here's why
Fernanda Ministerio | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
  • Allows data analysis for patterns that may indicate a threat
  • Real-time activity visibility
  • Gives technology support intelligence by creating prioritized alerts that reveal potential threats before they happen
  • Problem reporting is integrated and simplifies analysis and compliance operations
  • Reports can be difficult to analyze
  • There is little training for technology teams to master the key features of the tools
  • Our team may have problems locating errors in our country's bases
  • Reports can be difficult to customize and adapt
Score 7 out of 10
Vetted Review
Verified User
Incentivized
  • Good parsing capability
  • Enables integrations
  • The user interface is not the best, it is still based on Flash player (but they have plans to migrate to HTML5).
  • While the "user" interface is pretty straight forward, the management interface is fairly complicated.
May 29, 2019

Manage you events

Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Integration with other software
  • Log sources integration
  • Very user friendly interface
  • Real-time monitoring
  • Pre-defined reports
  • The system requirements are quite demanding
  • No other tool issue or operational issue was identified
May 23, 2019

Best SIEM

Score 10 out of 10
Vetted Review
Verified User
Incentivized
  • Identify brute force attaks
  • Anomalous traffic detection
  • Faster ingestion and query performance
  • Can collect large volumes of events
  • Operating in all bowsers
  • Documentation detailation
  • Simplify the process of creation core relation rules
Score 5 out of 10
Vetted Review
Verified User
Incentivized
  • McAfee Enterprise Security Manager has a large library of pre-made correlations that reduces the amount of work needed to make it functional.
  • This is a core McAfee product that is still getting support.
  • It has a substantial amount of compatibility and integration with other products.
  • The migration off of Flash has been painful. The new interface is very difficult to work with. Even support tends to fall back to the Flash version.
  • The GUI is not intuitive under any version. Finding settings takes a significant amount of learning.
  • While the product is supported, the transitions from various directions have left the future of the product in question. It used to be the interface for IDS, but the new IDS is stand alone.
  • The way McAfee has dropped products with no warning in the past makes us skeptical of trusting any stated roadmap.
Score 8 out of 10
Vetted Review
Verified User
Incentivized
  • Advanced Threat intelligence gives us the ability to prioritise alerts quickly and efficiently.
  • SIEM log collection allows us to integrate our other Intel products to a centralised point.
  • Physical appliances is one of the areas we have moved away from, so the ability for ESM to be available as a VDI was key.
  • If there is a requirement to integrate into other vendor products i.e. (log sharing) then this was very cumbersome.
  • Integration of vulnerability scanning that is available in other vendor products would be a good addition.
  • When integrating all of Intel's products a third party consultancy is usually required, where other vendor products can be configured without this additional cost.
Alex Waitkus, CISSP-ISSAP, OSCP | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
Incentivized
  • It is a great central management tool with great reports and dashboards.
  • It can easily show devices out of compliance.
  • ESM is easy to manage and maintain.
  • Some tools it manages lack features.
  • ESM can have some issues with upgrading.
  • MFA support is needed.
Return to navigation