Best SIEM
May 23, 2019

Best SIEM

Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User

Overall Satisfaction with McAfee Enterprise Security Manager

McAfee Enterprise Security Manager is easy to use and to maintain, with great results. We use this SIEM because it offers threat intelligence correlation, analytics, profiling, security alerts, data presentation and compliance. Good integration with log sources, inclusive with other McAfee tools. It is easy to monitor security events and identify incidents and cyber attacks.
  • Identify brute force attaks
  • Anomalous traffic detection
  • Faster ingestion and query performance
  • Can collect large volumes of events
  • Operating in all bowsers
  • Documentation detailation
  • Simplify the process of creation core relation rules
  • Identify attack
  • Investigate incidents
  • Be in compliance with international standards
  • Inform manangement about security level
We selected and implemented McAfee Enterprise Security Manager because is the best SIEM solution from the market. With a very good support from the vendor. Easy implementation and easy management. A lot of threats addressed. High level of security assured. Very good resilience. Can collect large volumes of events and flow from multiple distributed sources.
The solution offers a lot of features. Great threat categorization and classification. Collect very quick a large volumes of events. Working in cluster is very useful. Data source onboarding reduces the time required to configure new data sources. Support includes professional services and training. Good performance and redundancy. High level of security.

Trellix Enterprise Security Manager Feature Ratings

Centralized event and log data collection
10
Correlation
10
Event and log normalization/management
10
Deployment flexibility
10
Integration with Identity and Access Management Tools
10
Custom dashboards and workspaces
10
Host and network-based intrusion detection
10