We just raised a $30M Series A: Read our story

SolarWinds Security Event Manager Competitors and Alternatives

Get our free report covering Splunk, IBM, ManageEngine, and other competitors of SolarWinds Security Event Manager . Updated: December 2021.
554,586 professionals have used our research since 2012.

Read reviews of SolarWinds Security Event Manager competitors and alternatives

JT
Manager Infra at a computer software company with 10,001+ employees
Real User
Top 5
Good file integrity monitoring and change tracking tools but the knowledge base needs to be available online

Pros and Cons

  • "The FIM features in the Change Tracker and the Log Tracker are the most valuable."
  • "I would like to see the integration of AI technology, so rather than manually monitoring the logs, the tool will understand it and take care of it."

What is our primary use case?

We use this solution primarily for real-time log analytics.

We also use the NNT Log Tracker and Change Tracker for the FIM functionality.

What is most valuable?

The FIM features in the Change Tracker and the Log Tracker are the most valuable. With that, we analyze the log and differentiate between the planned and unplanned changes, rather than just generating the log of the changes. We use the actual outcome.

What needs improvement?

For the NNT Log Tracker and Change Tracker, they have to make their knowledge base available online because there is very little information available on the internet.

I would like to see the integration of AI technology, so rather than manually monitoring the logs, the tool will understand it and take care of it.

For how long have I used the solution?

We have been using ManageEngine EventLog Analyzer for more than three years. We have now moved on from ManageEngine to the NNT Log Tracker solution. 

What do I think about the stability of the solution?

This is a stable product. We have not seen any bugs, glitches, or crashes.

What do I think about the scalability of the solution?

When we were using ManageEngine we were limited because it is dependent on the AWS cloud. With the NNT product, there is no dependence on the AWS cloud so we can extend it as much as possible. Ultimately, the scalability depends on the performance of the platform.

There are 17 people in the team who use this solution and they are primarily security analysts.

Which solution did I use previously and why did I switch?

We are still using NNT after switching from ManageEngine and we have not implemented other solutions beyond the evaluation stage.

How was the initial setup?

The initial setup was good and very simple to do. We installed it on the Windows Server and as soon as it was set up, it started fetching data.

What about the implementation team?

We implemented this solution over two or three years. Initially, we were not familiar with it so we had assistance from the OEM Professional Services. During the second round, my onsite team managed the implementation with some guidance from technical support.

Which other solutions did I evaluate?

We evaluated solutions by SolarWinds in addition to ManageEngine and NNT.

What other advice do I have?

We are using the second most recent version of this solution.

I would recommend using NNT over ManageEngine. The Change Tracker tool is very good. It will reduce your overall workload. The FIM tool allows you to understand the activities and the NNT tool takes care of automatically giving you the actual and planned changes.

I would rate this solution a seven out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Ajay Upadhyay
Principal Security Advisor at Symbiotic Consulting Group
Real User
Top 5
Good correlation engine, average price, stable, and easy to deploy

Pros and Cons

  • "We found the correlation engine to be very good. It takes logs from different types of devices and does the correlation in a good way."
  • "The frequency of the updates that we are getting can be improved because the number and types of incidents that are happening at the global level are far more than what we are receiving. The frequency of updates feeds related to our rules should be increased. There should be more frequent information about the new rules that are coming and the global threats that are happening. There should be better options for dashboard creation. At present, the dashboards are good, but there is scope to make them better."

What is our primary use case?

We have a subscription service to gather global intelligence from the cloud. Within that, we get various feeds. We can get notifications about various types of global attacks that are happening. We can also get updates for our correlation engines from these subscriptions. We are using its latest version.

What is most valuable?

We found the correlation engine to be very good. It takes logs from different types of devices and does the correlation in a good way.

What needs improvement?

The frequency of the updates that we are getting can be improved because the number and types of incidents that are happening at the global level are far more than what we are receiving. The frequency of updates feeds related to our rules should be increased. There should be more frequent information about the new rules that are coming and the global threats that are happening.

There should be better options for dashboard creation. At present, the dashboards are good, but there is scope to make them better.

For how long have I used the solution?

I have been using this solution for over seven years.

What do I think about the stability of the solution?

It has been stable for us.

What do I think about the scalability of the solution?

We have 34 clients. In terms of devices, there are over 120 devices.

We will increase its usage when we get clients who are seeking such services. Currently, we don't have many clients who are seeking such threat intelligence or threat hunting services. At present, we are also learning about Splunk. In the future, we might migrate our setup to Splunk.

How are customer service and technical support?

We have contacted them, and their response is a bit slow. Multiple communication exchanges are required for getting the desired output, but we do get a response. We are satisfied with them.

How was the initial setup?

Its initial setup is easy. There are no issues with that.

What's my experience with pricing, setup cost, and licensing?

Its price is average and not very high. Splunk might be a bit cheaper than this. Its licensing is on a monthly basis.

Which other solutions did I evaluate?

We had evaluated SolarWinds and QRadar. We have different use cases for which we found ArcSight to be better.

What other advice do I have?

I would rate ArcSight Interset/Intelligence an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Get our free report covering Splunk, IBM, ManageEngine, and other competitors of SolarWinds Security Event Manager . Updated: December 2021.
554,586 professionals have used our research since 2012.