No more typing reviews! Try our Samantha, our new voice AI agent.

NetWitness Platform vs OpenText Enterprise Security Manager comparison

NetWitness and OpenText are both solutions in the Security Information and Event Management (SIEM) category. NetWitness is ranked #37 with an average rating of 8.0, while OpenText is ranked #23 with an average rating of 7.3. NetWitness holds a 1.0% mindshare in SIEM, compared to OpenText’s 1.6% mindshare. Additionally, 75% of NetWitness users are willing to recommend the solution, compared to 88% of OpenText users who would recommend it.
NetWitness Platform
Read 36 NetWitness Platform reviews
  • 4,345 Views
  • 2,433 Comparison Views
75% willing to recommend
OpenText Enterprise Securit...
Read 99 OpenText Enterprise Security Manager reviews
  • 6,933 Views
  • 6,794 Comparison Views
88% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jun 3, 2026

NetWitness Platform and OpenText Enterprise Security Manager are products in the enterprise security market, both providing threat detection and incident response. OpenText generally seems to offer superior features with a focus on compliance, while NetWitness is noted for cost-effectiveness and support.

Features: NetWitness Platform provides comprehensive threat intelligence, deep packet inspection, and user behavior analytics. OpenText Enterprise Security Manager features scalable architecture, robust compliance reporting, and strong integration capabilities.

Room for Improvement: NetWitness could enhance scalability, improve compliance reporting, and offer more comprehensive integration with third-party products. OpenText could benefit from simplifying deployment processes, improving initial usability, and enhancing real-time threat detection.

Ease of Deployment and Customer Service: NetWitness emphasizes a streamlined deployment with reliable customer support, ensuring rapid integration and ease of use. OpenText offers a powerful deployment model but may require more complex steps, impacting usability at the start.

Pricing and ROI: NetWitness generally has a lower setup cost, offering strong ROI through competitive pricing and effective threat management. OpenText may involve higher initial investments, yet its expansive feature set and compliance focus provide substantial long-term returns.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed NetWitness Platform vs. OpenText Enterprise Security Manager Report (Updated: June 2026).
Buyer's Guide
NetWitness Platform vs. OpenText Enterprise Security Manager
June 2026
Download the complete report
Helped 900,747 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

NetWitness Platform
Ranking in Security Information and Event Management (SIEM)
37th
Average Rating
7.4
Reviews Sentiment
7.4
Number of Reviews
36
Ranking in other categories
Log Management (37th)
OpenText Enterprise Securit...
Ranking in Security Information and Event Management (SIEM)
23rd
Average Rating
7.8
Reviews Sentiment
6.7
Number of Reviews
99
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of June 2026, in the Security Information and Event Management (SIEM) category, the mindshare of NetWitness Platform is 1.0%, up from 0.6% compared to the previous year. The mindshare of OpenText Enterprise Security Manager is 1.6%, up from 1.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
OpenText Enterprise Security Manager1.6%
NetWitness Platform1.0%
Other97.4%
Security Information and Event Management (SIEM)
 

Featured Reviews

reviewer2256927 - PeerSpot reviewer
reviewer2256927
Head of Information Security, Cyber Defense and IT Risk Management at HCT. at a transportation company with 201-500 employees
A solid SIEM solution that should improve technical support and online resources to be easier to use
A big problem with the product is that we don't have much professional experience in Israel installing, implementing, and integrating this product. There is not enough of a knowledge base. There is no support for this product in this country, so problems have to be resolved through global technical teams. We like to work locally because of the language, and when the product is only supported outside the country, it's a little difficult to implement and use this product. Moreover, AI is something that must be added immediately. Artificial intelligence is a part of the competitors' products, and it's not been implemented for us.
Read full review
SM
Shelesh-Kumar
Cloud Security Archirect at IBM
Unified log analysis has strengthened incident detection and supports continuous attack simulation
I do not have any areas for improvement in ArcSight Enterprise Security Manager (ESM) as I have not delved deeply into it; overall, it is a good package. I would like to see the detection and response features included in the next release of ArcSight Enterprise Security Manager (ESM), as security orchestration and automation are increasingly important.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Setting up NetWitness is straightforward. There are multiple connectors, including standard and specialized connectors. One purpose of the connectors is the enhanced capability integrate the custom applications. NetWitness comes with E6 appliances and application images that we use for the initial configurations and for the OS stack information. From there, you can consider the correlation rules, integrate the different log sources, and easily create correlation rules and backlog reports."
"It gives the capability for the incident response team to correlate logs to identify any kind of problem like malware and incidents in a general sense, both for logs and packets."
"NetWitness can be highly beneficial for incident detection and response."
"Overall, I feel that the product is very good and my biggest complaint is about their support."
"The most valuable features are the packet inspection and the automated incident response."
"Prior to implementing the solution, the customers had no visibility of their assets, however, after adopting the solution, they have gained complete visibility over all their assets, including a comprehensive understanding of the network and attack symptoms."
"The solution is reliable."
"Their customer service is excellent, one of the best."
More NetWitness Platform pros
"It is a robust product and has multiple valuable features."
"Feature-rich solution which provides better network visibility for improved security"
"We utilize ArcSight ESM for real-time threat detection in our organization. We have custom rules that we've developed on top of the WAN services, along with scheduled licensing activities."
"I would rate the ease of use for new users an eight out of ten, with ten being easy to use. It is a good tool."
"ArcSight is better than them all when it comes to filtering, normalization, aggregation, dashboards, reporting and correlation, multi-tenancy and custom devices support."
"The filters and the ability to do what you want are the most valuable features; there is nothing that you cannot do in this solution, and it has all the features, which makes it very dynamic."
"It is a very useful tool for intelligence building because it has many use cases and many rule sets."
"ArcSight Enterprise Security Manager (ESM) works perfectly. It's a stable and scalable product."
More OpenText Enterprise Security Manager pros
 

Cons

"The solution is pretty complex to set up. Comparatively, I have worked on IBM QRadar and Splunk; they are much easier to set up."
"I believe that integrating the solution with other products such as Oracle would be beneficial."
"The threat detection capability and centralizing and upgrading capability need to be improved. The threat alert capability needs to be improved as well because there is some lag time at present. They need to work on their database search too."
"Nowadays, their support is a little subpar compared to other solutions. I rate RSA support six out of 10."
"RSA NetWitness Logs and Packets can improve the threat level aspect, it is lacking compared to other solutions. Whenever any hacking activity or any other threat factor occurred they used to provide the coverages very fast when comparing RSA NetWitness Logs and Packets. I heard the other three solutions, from a discussion with my team members who had experience in other solutions, they used to say that. Whenever any issues happened across the globe RSA NetWitness Logs and Packets are a little bit slow improving those detection mechanisms."
"Lots of competing products have vulnerability protection built into their products, and this solution would be improved by including that support."
"An area for improvement would be better automation and more inbuilt use cases."
"We have encountered issues with unresolved crashes."
More NetWitness Platform cons
"The onboarding process for this solution could be better. It also needs a better GUI."
"The support from ArcSight ESM is very poor. We had a negative experience."
"I would like to have native cluster for connectors as a software version and not as an appliance. It also needs a better disaster recovery procedure."
"We have pricing issues. ArcSight ESM may not be the most user-friendly option, and its interface is quite traditional. However, despite these aspects, we find it a good cybersecurity solution. It needs to improve the dashboards, documentation, and support as well."
"Honestly, I won't recommend the ArcSight to another person."
"The API integration could be better, and I'd like to see more machine-learning capabilities in the future."
"The only concern is that AI needs to be integrated"
"The initial setup could be more straightforward."
More OpenText Enterprise Security Manager cons
 

Pricing and Cost Advice

"It provides tools to assist in selecting the appropriate license and usage scenarios."
"Compared to the competition, the is price is not that high."
"We have yearly licensing costs. The license fee can be based on the volume of EPS. Some organizations may have, as a gentlemanly gesture, 10,000 EPS and get a 3,000 EPS license but actually use 5,000 EPS."
"Our license is for one year."
"We have a perpetual license, so the total cost of ownership is not very expensive. It's a good investment."
"The tool is very expensive, so I rate the pricing a ten out of ten. The solution has an annual subscription."
"This is a pricey solution; it's not cheap."
"The licenses are good but the cost is very expensive."
More NetWitness Platform pricing and cost advice
"The pricing is great compared to others."
"Price-wise, ArcSight ESM was a bit high compared to competitors, which factored into our decision to switch to Splunk. It couldn't cover all our business needs for what we wanted to implement."
"Thanks to Micro Focus's licensing model, as an MSSP, we are able to see a complete return on our investment almost immediately."
"The product licenses are inexpensive."
"The pricing model is expensive compared to open-source alternatives."
"ArcSight ESM is an affordable solution, it cost approximately $200,000 for three years. This price was at a substantial discount."
"Pricing is good, I'd rate the pricing a seven out of ten, with ten being low price. It's better than Splunk and IBM QRadar because their pricing is based on EPS."
"The cost of the solution is not very high, although hiring a qualified analyst to work with the product is expensive."
More OpenText Enterprise Security Manager pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
900,747 professionals have used our research since 2012.
 

Comparison Review

VS
Vinod Shankar
Manager, Enterprise Risk Consulting at a tech company with 1,001-5,000 employees
Feb 26, 2015
HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
12%
Construction Company
11%
Comms Service Provider
9%
Outsourcing Company
8%
Financial Services Firm
15%
Construction Company
11%
Marketing Services Firm
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise7
Large Enterprise20
By reviewers
Company SizeCount
Small Business37
Midsize Enterprise14
Large Enterprise59
 

Questions from the Community

What is your experience regarding pricing and costs for NetWitness Platform?
The pricing is comparable to others, and I consider the cost to be intermediate. Specific cost details are unknown to me.
See all answers
What needs improvement with NetWitness Platform?
There is currently no need for improvement in the SIEM ( /categories/security-information-and-event-management-siem ), though there could be potential enhancements by integrating with AI.
See all answers
What is your primary use case for NetWitness Platform?
I use NetWitness Platform ( /products/netwitness-platform-reviews ) in the financial industry as a good product with excellent capabilities and integration with various devices.
See all answers
Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?
In my market, a lot of financial companies had or have an ArcSight installation. Just because in former times it was pretty good. Now a lot of them are looking for a more effective solution due to ...
See all answers
What is your experience regarding pricing and costs for ArcSight Enterprise Security Manager (ESM)?
I would rate the pricing of ArcSight Enterprise Security Manager (ESM) around seven, as it varies based on features and demand, making it more affordable for larger organizations, while smaller one...
See all answers
What needs improvement with ArcSight Enterprise Security Manager (ESM)?
I do not have any areas for improvement in ArcSight Enterprise Security Manager (ESM) as I have not delved deeply into it; overall, it is a good package. I would like to see the detection and respo...
See all answers
 

Comparisons

Splunk Enterprise Security vs NetWitness Platform Logo
Splunk Enterprise Security vs NetWitness Platform
Compared 7% of the time
IBM Security QRadar vs NetWitness Platform Logo
IBM Security QRadar vs NetWitness Platform
Compared 6% of the time
Palo Alto Networks WildFire vs NetWitness Platform Logo
Palo Alto Networks WildFire vs NetWitness Platform
Compared 5% of the time
Idira Privileged Access Manager vs NetWitness Platform Logo
Idira Privileged Access Manager vs NetWitness Platform
Compared 4% of the time
RSA enVision vs NetWitness Platform Logo
RSA enVision vs NetWitness Platform
Compared 4% of the time
More NetWitness Platform Competitors
IBM Security QRadar vs OpenText Enterprise Security Manager Logo
IBM Security QRadar vs OpenText Enterprise Security Manager
Compared 10% of the time
SurfWatch Labs SurfWatch vs OpenText Enterprise Security Manager Logo
SurfWatch Labs SurfWatch vs OpenText Enterprise Security Manager
Compared 8% of the time
Trellix ESM vs OpenText Enterprise Security Manager Logo
Trellix ESM vs OpenText Enterprise Security Manager
Compared 7% of the time
Splunk Enterprise Security vs OpenText Enterprise Security Manager Logo
Splunk Enterprise Security vs OpenText Enterprise Security Manager
Compared 6% of the time
OpenText Behavioral Signals vs OpenText Enterprise Security Manager Logo
OpenText Behavioral Signals vs OpenText Enterprise Security Manager
Compared 6% of the time
More OpenText Enterprise Security Manager Competitors
 

Product Reports

Buyer's Guide
NetWitness Platform
June 2026
NetWitness Platform reportDownload NetWitness Platform product report
Buyer's Guide
OpenText Enterprise Security Manager
June 2026
OpenText Enterprise Security Manager reportDownload OpenText Enterprise Security Manager product report
 

Also Known As

RSA Security Analytics
Micro Focus ArcSight, HPE ArcSight, ArcSight
 

Overview

NetWitness Platform provides seamless threat intelligence integration and robust log/packet ingestion. It enhances network visibility and incident management through automated threat detection, ideal for enterprises seeking scalability and security intelligence.

NetWitness Platform offers a comprehensive suite of tools designed to tackle security challenges within Security Operations Centers. It integrates data from endpoints, networks, and other sources, ensuring in-depth security analysis. By supporting features like XDR and UEBA, it grants a unified view of security events. Its capabilities extend to threat hunting, malware analysis, and network forensics, assisting organizations in managing incidents, ensuring compliance with regulations like GDPR, and detecting cyber threats. Users appreciate its ease of deployment, flexibility, and threat prediction capabilities, although improvements in integration, documentation, and AI are desired.

What are the key features of NetWitness Platform?
  • User-friendly Interface: Simplifies security monitoring and management.
  • Threat Intelligence Integration: Provides seamless access to threat data.
  • Log/Packet Ingestion and Alerting: Enhances detection and response.
  • Network Visibility: Improves threat detection across networks.
  • Incident Management: Streamlines response to security incidents.
  • Automated Threat Detection: Facilitates quick identification of threats.
  • Custom Connectors: Allows for tailored integrations.
  • Advanced Dashboarding and Reporting: Offers detailed insights.
  • Packet/Incident Correlation: Enhances understanding of threats.
What benefits can users expect when evaluating NetWitness Platform?
  • Threat Prediction: Anticipates potential vulnerabilities.
  • Ease of Use: Streamlines user experience.
  • Deployment Flexibility: Adapts to organizational structure.
  • Scalability: Supports growing security infrastructure needs.
  • Security Intelligence: Enhances awareness and response capabilities.

In finance and health sectors, NetWitness Platform aids significantly by providing comprehensive threat analysis, ensuring compliance, and facilitating rapid incident management. Enterprises in these industries benefit by maintaining robust security postures and meeting regulatory demands.

NetWitness

OpenText Enterprise Security Manager enables real-time threat detection through scalable and adaptable solutions, integrating seamlessly with multiple platforms for complex security scenarios across different environments.

OpenText Enterprise Security Manager offers extensive security monitoring capabilities, combining log analysis and incident management to enhance cybersecurity and compliance. Its powerful event correlation engine provides real-time alerts for rapid incident response. Users benefit from customizable dashboards and comprehensive log collection, making it a significant tool in the SIEM market. Flexible deployment options cater to both on-premises and cloud environments, supporting enterprises in managing IT infrastructure and threat detection efficiently.

What are the key features of OpenText Enterprise Security Manager?
  • Event Correlation Engine: Real-time threat detection with advanced correlation capabilities.
  • Scalability: Adapts to enterprise-level demands and complex security needs.
  • Integration: Seamlessly integrates with multiple platforms and third-party tools.
  • Customizable Dashboards: Tailored views and active lists enhance user experience.
  • Advanced Alerting: Provides timely incident response and security alerts.
Why should users look for reviews when evaluating OpenText Enterprise Security Manager?
  • Timely Incident Responses: Fast alerting and action against threats.
  • User-Friendly Experience: Customizable dashboards simplify monitoring tasks.
  • Comprehensive Security Management: Integrated log management and threat detection across domains.
  • Adaptability and Scalability: Supports both on-premises and cloud deployments.

In industries such as finance, healthcare, and energy, OpenText Enterprise Security Manager is implemented for monitoring critical systems and ensuring compliance with regulatory needs. Enterprises leverage its capabilities for forensic investigations and active threat management, serving as a central hub for cybersecurity operations across diverse IT infrastructures.

OpenText
 

Sample Customers

Los Angeles World Airports, Reply
Lake Health, U.S. Department of Health and Human Services, Bank AlJazira, Banca Intesa, and Obrela.
Buyer's Guide
NetWitness Platform vs. OpenText Enterprise Security Manager
June 2026
Free Report: NetWitness Platform vs. OpenText Enterprise Security Manager
Find out what your peers are saying about NetWitness Platform vs. OpenText Enterprise Security Manager and other solutions. Updated: June 2026.
DOWNLOAD NOW
900,747 professionals have used our research since 2012.
See our NetWitness Platform vs. OpenText Enterprise Security Manager report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.