ManageEngine Log360 vs Trellix ESM Comparison 2024

Read 85 Microsoft Sentinel reviews

32,763 views|18,195 comparisons

ManageEngine Log360

Read 15 ManageEngine Log360 reviews

3,559 views|2,479 comparisons

Trellix ESM

Read 34 Trellix ESM reviews

3,720 views|1,591 comparisons

Comparison Buyer's Guide

Download the complete report

Buyer's Guide

ManageEngine Log360 vs. Trellix ESM

March 2024

Executive Summary

We performed a comparison between ManageEngine Log360 and Trellix ESM based on real PeerSpot user reviews.

Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed ManageEngine Log360 vs. Trellix ESM Report (Updated: March 2024).

Download the complete report

768,740 professionals have used our research since 2012.

Featured Review

Nagendra Nekkala

Senior Manager ICT & Innovations at Bangalore International Airport Limited

Provides a unified set of tools to detect, investigate, and respond to incidents and enables proactive threat hunting

We use the tool because we want a solution that can quickly analyze large volumes of data across the enterprise. Microsoft Sentinel is a one-stop... Read more →

Jai S

Student at Rabdan Academy

Facilitates incident backtracking and identifying the cause of incidents but insufficient intelligence-driven...

Having a functional event and log analyzer is crucial for any organization, especially considering ISO mandates. It has helped us meet those... Read more →

Daniel Durian

Information Security Manager at SM Prime Holdings

Provides visibility of all the traffic within the company infrastructure

It provides threat monitoring from the Internet and if there is malicious activity on the end-point, the ESM can provide us what host is affected.

Quotes From Members

We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:

Pros

"The product can integrate with any device.""Sentinel enables us to ingest data from our entire ecosystem. In addition to integrating our Cisco ASA Firewall logs, we get our Palo Alto proxy logs and some on-premises data coming from our hardware devices... That is very important and is one way Sentinel is playing a wider role in our environment.""One of the most valuable features is that it creates a kind of a single pane of glass for organizations that already use Microsoft software. So, when they have things like Microsoft 365, it is very easy for them to kind of plug in or enroll those endpoints into the Azure Sentinel service.""What is most useful, is that it has a good connection to the Microsoft ecosystem, and I think that's the key part.""The UI-based analytics are excellent.""Free ingestion for Azure logs (with E5 licence)""The most valuable feature is the onboarding of the workloads. You can see all that has been onboarded in your account on the dashboards.""One of the most valuable features of Microsoft Sentinel is that it's cloud-based."

More Microsoft Sentinel Pros →

"It is nice to be able to monitor and to have notifications.""We haven't had any stability issues.""The reporting is great. Everything you need is in the report for you already.""It basically helps us. We have to stay in compliance with certain issues with some of our customers. We have to have these types of tools in place for protecting our network and our data. We're in the aerospace industry, so we have a lot of defense contracts. So, all those guys will make sure that we're protecting their information, and it does a good job in that aspect.""The most valuable features for us are the application logs monitoring and the dashboard, which provides a single-pane view of all the ongoing activities.""The most valuable feature is that this solution is more secure than others, and there are more applications and features as well.""The deployment is quite simple and pretty straightforward.""The product is very user-friendly."

More ManageEngine Log360 Pros →

"McAfee as a whole is a good solution.""Compared to other solutions, the user interface is good.""It blocks the things which are not to be allowed. It has an adaptive mode where it learns for itself.""The most valuable feature in ESM is its search and reporting feature. It's really nice.""The most valuable feature is that if the scanning does find something, it quarantines it. Then you can decide what you are going to do with it.""The solution is 100% stable. We really have had a great time working with it. It hasn't let us down.""It can be easily deployed with the other solutions.""This solution integrates easily and very well with other technologies."

More Trellix ESM Pros →

Cons

"We'd like also a better ticketing system, which is older.""Sentinel's reporting is complex and can be more user-friendly.""Microsoft Sentinel is relatively expensive, and its cost should be improved.""We do see continuous improvement all the time, however, I haven't got a specific feature that is lacking or not well designed.""We'd like to see more connectors.""The dashboards can be improved. Creating dashboards is very easy, but the visualizations are not as good as Microsoft Power BI. People who are using Microsoft Power BI do not like Sentinel's dashboards.""The built-in SOAR is not really good out-of-the-box. The SOAR relies on logic apps and you almost need to have some kind of developer background to be able to make these logic apps. Most security people cannot develop anything...""Azure Sentinel will be directly competing with tools such as Splunk or Qradar. These are very established kinds of a product that have been around for the last seven, eight years or more."

More Microsoft Sentinel Cons →

"Their technical support should be improved.""The matter of the data retention needs to be addressed.""There is room for improvement, especially in the reporting aspect. The reports are not as good as those in Splunk.""Most times log sheets are not assigned well.""The integration with SharePoint and Teams should be improved.""It takes a little bit of time for Log360 to actually learn your environment.""The graphical interface could be made easier to use when you are connecting to different network equipment.""We can log in as a local user, and it's fine, but when we login with an Active Directory user, we cannot."

More ManageEngine Log360 Cons →

"Product currently requires Flash.""I would like to see improvements to the user interface.""We cannot add new data sources to the most recent version.""Product-wise, adding accounts on a single data source by batch would be a really great help.""The only issue I have with McAfee is the amount of computer resources that it takes... it's definitely impacting some of the other applications that are running on a computer at the same time.""The product's stability is an area of concern where improvements are required.""The user interface could be more user-friendly.""There are always multiple bugs in the product. For example, the console page was hanging multiple times. Afterwards, they released multiple upgrades for the same, multiple patches from McAfee."

More Trellix ESM Cons →

Pricing and Cost Advice

"It comes with a Microsoft subscription which the customer has, so they don't have to invest somewhere else."

"It is a consumption-based license model. bands at 100, 200, 400 GB per day etc. Azure Sentinel Pricing | Microsoft Azure"

"Good monthly operational cost model for the detection and response outcomes delivered, M365 logs don't count toward the limits which is a good benefit."

"I have had mixed feedback. At one point, I heard a client say that it sometimes seems more expensive. Most of the clients are on Office 365 or M365, and they are forced to take Azure SIEM because of the integration."

"It is kind of like a sliding scale. There are different tiers of pricing that go from $100 per day up to $3,500 per day. So, it just kind of depends on how much data is being stored. There can be additional costs to the standard license other than the additional data. It just kind of depends on what other services you're spinning up in Azure, or if you're using something like Azure log analytics."

"I am just paying for the log space with Azure Sentinel. It costs us about $2,000 a month. Most of the logs are free. We are only paying money for Azure Firewall logs because email logs or Azure AD logs are free to use for us."

"Sentinel is a bit expensive. If you can figure a way of configuring it to meet your needs, then you can find a way around the cost."

"Azure Sentinel is very costly, or at least it appears to be very costly. The costs vary based on your ingestion and your retention charges."

More Microsoft Sentinel Pricing and Cost Advice →

"There is a cost for each feature used."

"Its pricing is definitely huge compared to some of the other SIEMs. Its price should be improved."

"My client has a yearly license. I think the cost is not expensive compared to that of other SIEMs, given the service it is providing."

"ManageEngine Log360 is expensive compared to other products."

"Affordable pricing is provided by the solution."

More ManageEngine Log360 Pricing and Cost Advice →

"You should buy the distributed option instead of the all-in-one for environments with more than 1000 end points."

"We pay for our licensing fees on a yearly basis, and there are no costs in addition to the standard licensing fees."

"The cost is dependent on the customer's environment and requirements."

"The pricing is good, and they are competitive compared to providers such as RSA and IBM QRadar."

"The cost is all included. The finance department handles the financial part, and we mostly don't get involved in it."

"We renew our license annually."

"McAfee is the right choice for a low-budget solution."

"The price is good. It's moderate. We follow a pay-as-you-go model. There are different models available, and they can also be monthly. You can choose monthly or yearly. It's very flexible. If our existing customers exceed the current plan, you can just call McAfee and get it extended."

More Trellix ESM Pricing and Cost Advice →

See Which Vendors Are Best For You

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See Recommendations

768,740 professionals have used our research since 2012.

Comparison Review

Vinod Shankar

Manager, Enterprise Risk Consulting at a tech company

HP ArcSight vs. IBM QRadar vs. McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm

We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are based on Gartner Magic Q which is what Organizations typically use to select SIEM vendors. The Vendors mentioned here in the deck are : 1. HP ArcSight 2. McAfee Nitro 3. IBM QRadar 4. Splunk SIEM 5. RSA Security Analytic 6. LogRhythm. SIEM Technology Space SIEM market analysis of the last 3 years suggest: Market consolidation of SIEM players (25 vendors in 2011 to 16 vendors in 2013)Only products with technology maturity and a strong road map have featured in leaders quadrant.HP ArcSight & IBM Q1 Labs have maintained leadership in SIEM industry with continued technology upgradeMcAfee Nitro has strong product features & road map to challenge HP & IBM for leadershipHPArcSight The ArcSight Enterprise Threat and Risk Management (ETRM) Platform is an integrated set of products for collecting, analysing, and managing enterprise Security Event information ArcSight Enterprise Security Manager (ESM): Correlation and analysis engine used to identify security threat in real-time& virtual environments ArcSight Logger: Log storage and Search solution ArcSight IdentityView: User Identity tracking/User activity monitoring ArcSight Connectors: For data collection from a variety of data… Read more →

Questions from the Community

Is there a common threat intelligence tool that aggregates multiple threa...

Top Answer:Yes, Azure Sentinel is a SIEM on the Cloud. Multiple data sources can be uploaded and analyzed with Azure Sentinel and… more »

Read all 10 answers →

What is a better choice, Splunk or Azure Sentinel?

Top Answer:It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for… more »

Which is better - Azure Sentinel or AWS Security Hub?

Top Answer:We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is… more »

Read all 2 answers →

What do you like most about ManageEngine Log360?

Top Answer:The product is very user-friendly.

Read all 14 answers →

What is your experience regarding pricing and costs for ManageEngine Log360?

Top Answer:Affordable pricing is provided by the solution.

Read all 8 answers →

What needs improvement with ManageEngine Log360?

Top Answer:Deploying ManageEngine Log360 is challenging in terms of knowledge. They offer some out-of-the-box configurations, but… more »

Read all 15 answers →

What do you like most about McAfee ESM?

Top Answer:The solution's technical support is great.

Read all 22 answers →

What is your experience regarding pricing and costs for McAfee ESM?

Top Answer:The product is slightly expensive. They offer some discount on the purchase of a certain number of nodes. They should… more »

Read all 16 answers →

What needs improvement with McAfee ESM?

Top Answer:The integration capabilities of Trellix ESM with SaaS solutions are an area of concern where improvements are needed… more »

Read all 20 answers →

Comparisons

AWS Security Hub vs. Microsoft Sentinel

Compared 17% of the time.

IBM Security QRadar vs. Microsoft Sentinel

Compared 12% of the time.

Microsoft Defender for Cloud vs. Microsoft Sentinel

Compared 7% of the time.

Splunk Enterprise Security vs. Microsoft Sentinel

Compared 6% of the time.

Elastic Security vs. Microsoft Sentinel

Compared 5% of the time.

More Microsoft Sentinel Competitors →

ManageEngine EventLog Analyzer vs. ManageEngine Log360

Compared 27% of the time.

Wazuh vs. ManageEngine Log360

Compared 13% of the time.

Splunk Enterprise Security vs. ManageEngine Log360

Compared 8% of the time.

Fortinet FortiSIEM vs. ManageEngine Log360

Compared 8% of the time.

LogRhythm SIEM vs. ManageEngine Log360

Compared 5% of the time.

More ManageEngine Log360 Competitors →

ArcSight Enterprise Security Manager (ESM) vs. Trellix ESM

Compared 18% of the time.

IBM Security QRadar vs. Trellix ESM

Compared 17% of the time.

Splunk Enterprise Security vs. Trellix ESM

Compared 17% of the time.

LogRhythm SIEM vs. Trellix ESM

Compared 16% of the time.

Cybereason Endpoint Detection & Response vs. Trellix ESM

Compared 4% of the time.

More Trellix ESM Competitors →

Also Known As

Azure Sentinel

McAfee ESM, NitroSecurity, McAfee Enterprise Security Manager

Learn More

Microsoft

ManageEngine

Trellix

Video Not Available

Overview

Microsoft Sentinel is a scalable, cloud-native, security information event management (SIEM) and security orchestration automated response (SOAR) solution that lets you see and stop threats before they cause harm. Microsoft Sentinel delivers intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response. Eliminate security infrastructure setup and maintenance, and elastically scale to meet your security needs—while reducing IT costs. With Microsoft Sentinel, you can:

- Collect data at cloud scale—across all users, devices, applications, and infrastructure, both on-premises and in multiple clouds

- Detect previously uncovered threats and minimize false positives using analytics and unparalleled threat intelligence from Microsoft

- Investigate threats with AI and hunt suspicious activities at scale, tapping into decades of cybersecurity work at Microsoft

- Respond to incidents rapidly with built-in orchestration and automation of common tasks

To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.

Log360 is your one-stop solution for all log management and network security challenges. It is an integrated solution that combines EventLog Analyzer and ADAudit Plus into a single console to help you manage your Active Directory auditing and network security easily.

Make your organization more resilient and confident with Trellix Security Operations. Filter out the noise and cut complexity to deliver faster, more effective SecOps. Integrate your existing security tools and connect with over 650 Trellix solutions and third-party products.

Sample Customers

Microsoft Sentinel is trusted by companies of all sizes including ABM, ASOS, Uniper, First West Credit Union, Avanade, and more.

First Mountain Bank, TRA, Citadel Group, OnPoint Financial Corp, Florida Dept. of Transportation

San Francisco Police Credit Union, Wªstenrot Gruppe, Volusion, California Department of Corrections & Rehabilitation, Government of New Brunswick, State of Colorado, Macquarie Telecom, Texas Tech University Health Sciences Center, Cologne Bonn Airport

Top Industries

REVIEWERS

Financial Services Firm22%

Computer Software Company11%

Manufacturing Company8%

Comms Service Provider8%

VISITORS READING REVIEWS

Computer Software Company16%

Financial Services Firm10%

Government9%

Manufacturing Company7%

REVIEWERS

Non Tech Company22%

Healthcare Company22%

Non Profit11%

University11%

VISITORS READING REVIEWS

Computer Software Company19%

Government11%

Financial Services Firm8%

Manufacturing Company6%

REVIEWERS

Financial Services Firm25%

Government15%

Healthcare Company10%

Manufacturing Company10%

VISITORS READING REVIEWS

Educational Organization70%

Computer Software Company5%

Government4%

Financial Services Firm4%

Company Size

REVIEWERS

Small Business33%

Midsize Enterprise21%

Large Enterprise47%

VISITORS READING REVIEWS

Small Business25%

Midsize Enterprise16%

Large Enterprise59%

REVIEWERS

Small Business79%

Midsize Enterprise14%

Large Enterprise7%

VISITORS READING REVIEWS

Small Business31%

Midsize Enterprise20%

Large Enterprise49%

REVIEWERS

Small Business29%

Midsize Enterprise15%

Large Enterprise56%

VISITORS READING REVIEWS

Small Business8%

Midsize Enterprise74%

Large Enterprise18%

Buyer's Guide

ManageEngine Log360 vs. Trellix ESM

March 2024

Free Report: ManageEngine Log360 vs. Trellix ESM

Find out what your peers are saying about ManageEngine Log360 vs. Trellix ESM and other solutions. Updated: March 2024.

DOWNLOAD NOW

768,740 professionals have used our research since 2012.

ManageEngine Log360 is ranked 19th in Security Information and Event Management (SIEM) with 15 reviews while Trellix ESM is ranked 18th in Security Information and Event Management (SIEM) with 34 reviews. ManageEngine Log360 is rated 7.2, while Trellix ESM is rated 7.4. The top reviewer of ManageEngine Log360 writes "Facilitates incident backtracking and identifying the cause of incidents but insufficient intelligence-driven analysis to suppress unnecessary alerts". On the other hand, the top reviewer of Trellix ESM writes "Provides visibility of all the traffic within the company infrastructure". ManageEngine Log360 is most compared with ManageEngine EventLog Analyzer, Wazuh, Splunk Enterprise Security, Fortinet FortiSIEM and LogRhythm SIEM, whereas Trellix ESM is most compared with ArcSight Enterprise Security Manager (ESM), IBM Security QRadar, Splunk Enterprise Security, LogRhythm SIEM and Cybereason Endpoint Detection & Response. See our ManageEngine Log360 vs. Trellix ESM report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.

ManageEngine Log360 vs Trellix ESM comparison

Microsoft Sentinel

ManageEngine Log360

Trellix ESM