Trellix ESM and Exabeam compete in the SIEM solutions category. Exabeam is seen superior in features and overall functionality, but Trellix ESM is preferred for its pricing and support.
Features: Trellix ESM is valued for its advanced threat detection, integration capabilities, and responsive support. Exabeam is appreciated for its user-friendly automation, analytics, and innovative features.
Room for Improvement: Trellix ESM users mention complexities in customization, scalability, and flexibility. Exabeam users suggest enhancements in reporting, dashboard functionalities, and customer service responses.
Ease of Deployment and Customer Service: Trellix ESM has a straightforward deployment process and consistently reliable support. Exabeam offers smooth deployment but may face occasional delays in customer service responses.
Pricing and ROI: Trellix ESM is considered budget-friendly with a good ROI. Exabeam requires a higher upfront cost but is justified by its comprehensive features and long-term benefits.
Exabeam offers more machine learning models that detect anomalies.
Their response time is slow compared to other technical support teams.
I also had the chance to look at the documentation, and the documentation is good.
It's rare for me to need them unless it's an issue with licensing, and they are the best in that regard.
I would rate support for Trellix ESM 10 out of 10 because if we connect with the support in the UK, we get excellent support.
Regarding Exabeam's scalability and how well it adapts to its customers' needs, I would rate it an eight.
Scalability is quite easier with Trellix ESM, because all we need to do is add more receivers to it, so it can go to any point.
These problems were not frequent, and the last six to eight months have been stable.
Overall, I think Exabeam's stability level is good.
Exabeam needs to improve its documentation and provide more customization for dashboards and case management.
Exabeam's integration capabilities are not good, as Exabeam has a very limited number of integrations and no out-of-box integration.
I have explored the SaaS version; it offers many new features.
If there is any device which is not covered, there should not be any additional charges for writing the custom parsers on that.
The product offers useful features like the dashboard, timeline, and session views, which enhance our security tools.
Exabeam's UEBA is the most valuable feature that I have found so far.
Exabeam's AI capabilities, like the natural language mode, convert natural language into Exabeam queries, enhancing ease of use.
The weakest point is it doesn't cover almost all the devices, so the customer has to be more dependent on the parsers to be written by the Professional Services team.
| Product | Mindshare (%) |
|---|---|
| Exabeam | 1.6% |
| Trellix ESM | 1.2% |
| Other | 97.2% |
| Company Size | Count |
|---|---|
| Small Business | 12 |
| Midsize Enterprise | 4 |
| Large Enterprise | 7 |
| Company Size | Count |
|---|---|
| Small Business | 15 |
| Midsize Enterprise | 6 |
| Large Enterprise | 24 |
Exabeam offers intuitive interfaces, detailed dashboards, and powerful analytics to enhance security investigations. Its machine learning detects complex threats with automation streamlining tasks for efficiency and integration with AWS.
Exabeam stands out with its robust cybersecurity management capabilities, offering advanced user behavior analytics and incident detection tools. Security teams can use its systems to monitor events, create investigative timelines, and analyze log data. While praised for easy use, it benefits from initial training for optimal utilization. Challenges include the need for better flexibility, cost-management, and enhanced AI integration. However, it facilitates seamless AWS integration, real-time updates, and vulnerability prioritization within business contexts. Improvements in dashboard customization and overall performance, especially in UI and log ingestion, could enhance usability.
What are Exabeam's key features?Exabeam is widely used across industries such as finance and government for cybersecurity management. Organizations leverage its capabilities for integrating logs, protecting sensitive environments, and supporting compliance efforts. Its tools aid in detecting anomalies and managing security operations within infrastructures effectively.
Trellix ESM is an innovative tool designed to enhance security management through its seamless integration, user-friendly deployment, customizable dashboards, and robust threat detection capabilities.
Trellix ESM is essential for comprehensive security management, ensuring effective threat detection and analysis. It integrates seamlessly with third-party systems and provides advanced correlation and security visualization. Capable of managing logs and monitoring network traffic, it enhances security across diverse environments, making it indispensable for security operations. Despite needing improved SaaS integration, API documentation, and addressing stability issues, it remains crucial for user-friendly deployment and incident analysis. Its benefits are complemented by comprehensive reporting and real-time malware protection.
What Are Trellix ESM's Most Important Features?In diverse industries, Trellix ESM is deployed for central log management and security operations, monitoring servers, virtual machines, and hybrid-cloud environments. Companies use it for managed security services and threat detection, analyzing logs and securing data. It finds great use in monitoring network vulnerabilities and event correlation, enabling service providers and MSSPs to effectively manage endpoints and hybrid-cloud setups as well as gather logs from servers and firewalls, offering abundant transparency into security threats and network activities.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
