We performed a comparison between Elastic Security and IBM SevOne Network Performance Management (NPM) based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The cost is reasonable. It's not overly pricey."
"Its flexibility is most valuable. We can have a number of scenarios, and we can get logs from anything. If we know how to use Logstash, we can tweak it in many ways. This makes the logging search on Elastic very easy."
"It is very quick to react. I can set it to check anomalies or suspicious behavior every 30 seconds. It is very fast."
"ELK is open-source, and it will give you the framework you need to build everything from scratch."
"The feature that we have found the most valuable is scalability."
"Elastic Security is a highly flexible platform that can be implemented anywhere."
"It's simple and easy to use."
"The most valuable feature is the speed, as it responds in a very short time."
"Flexible architecture: You can extend the system and its capacity by attaching another cluster pair."
"The most valuable feature as of late has been the API integration with ServiceNow."
"We find that the reporting is particularly valuable in terms of not only communicating with our peer teams but also with the executives."
"SevOne has rich API capabilities, giving us the flexibility to control what we collect and customize the collection, creation, and manipulation of now metrics as necessary."
"The monitoring of the network is very customizable. That is its unique feature."
"It's given us the ability to create various real-time network performance reports and distribute them to any colleague who can access these reports immediately."
"Another useful feature is that SevOne gives you real-time insights into your network performance. It polls every five minutes. That is important for our customers because there are some network teams that are always monitoring their networks."
"SevOne’s data collection functionality is very good. From a collection point of view, we pull SNMP data, which is simple. It is easy to manipulate the pull in the estate. It is really simple compared to some of the other products that we have used. However, for deferred data, i.e., things that we import or don't pull directly, we tend to have a preplanned integration. So, its Universal Collector is really useful."
"An area for improvement in Elastic Security is the pricing. It could be better. Right now, when you increase the volume of logs to be collected, the price also increases a lot."
"The biggest challenge has been related to the implementation."
"Elastic has one problem. In the past, Elastic Security was free. Now, they currently only offer the basic license or a certain period of time."
"Its documentation should be a bit better. I have to spend at least a couple of hours to find the solution for a simple thing. When we buy Elastic, training is not included for free with Elastic. We have to pay extra for the training. They should include training in the price."
"Elastic Security could improve the documentation. It would help if they were more simple and clean."
"They don't provide user authentication and authorisation features (Shield) as a part of their open-source version."
"The setup process is complex. You need a solid working knowledge of networking, operating systems, and a little programming."
"I would like the process of retrieving archived data and viewing it in Kibana to be simplified."
"Some similar solutions offer end-to-end visibility."
"NMS has several areas for improvement. It should be more user-friendly inside of NMS for some of the functionality in there. It's been getting better the last version or two, but the there have been bugs in there whenever I've gone to new versions."
"High-frequency polling is data-intensive because you're pulling more. If SevOne could figure out a way to manage the impact of high-frequency polling on the system, that would be very popular."
"SevOne should work with the graphs legend functionality."
"There is no service mode setup in this monitoring tool if you want to snooze alerts for any specific amount of time, to account for any activity change or major incident."
"You need to plan integrations. That has been the biggest bug with SevOne so far. For the things that SevOne pulls directly, those are easy to understand, modify, and put into the database. For things that need to use the Universal Collector or xStats, you need to plan that stuff well in advance."
"User-friendly, multi-tenancy."
"Would benefit with the addition of AI modules for proactive data insights."
More IBM SevOne Network Performance Management (NPM) Pricing and Cost Advice →
Elastic Security is ranked 5th in Log Management with 58 reviews while IBM SevOne Network Performance Management (NPM) is ranked 32nd in Log Management with 52 reviews. Elastic Security is rated 7.6, while IBM SevOne Network Performance Management (NPM) is rated 8.6. The top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". On the other hand, the top reviewer of IBM SevOne Network Performance Management (NPM) writes "We can get a new vendor certified and monitored in our system significantly faster than before". Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, Microsoft Defender for Endpoint and IBM Security QRadar, whereas IBM SevOne Network Performance Management (NPM) is most compared with LogicMonitor, Instana Infrastructure Monitoring, SolarWinds NPM, Splunk Enterprise Security and SolarWinds Network Device Monitor. See our Elastic Security vs. IBM SevOne Network Performance Management (NPM) report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.