OpenText Enterprise Security Manager and Sumo Logic Security are competing products in the enterprise security market. OpenText seems to have the upper hand for enterprises with its extensive integration and scalability, while Sumo Logic offers simplicity and cost-effectiveness for cloud-based environments.
Features: OpenText Enterprise Security Manager offers strong integration capabilities, powerful correlation rules, and supports a variety of device deployments. Sumo Logic Security provides real-time observability, straightforward platform integration, and is highly effective for quick cloud deployments.
Room for Improvement: OpenText Enterprise Security Manager needs better documentation and support for advanced threat detection. Sumo Logic Security could improve its user interface and pricing model.
Ease of Deployment and Customer Service: OpenText Enterprise Security Manager supports various deployment models but faces challenges in setup and customer service. Sumo Logic Security is designed for quick cloud deployment and generally receives positive feedback on support.
Pricing and ROI: OpenText Enterprise Security Manager is perceived as expensive, with significant ROI in enhanced threat detection. Sumo Logic Security offers a competitive pricing structure but can become costly with higher data usage.
If I raise a P1 or P0 ticket, the response time is often delayed by four to eight hours.
In general, they usually provide continuous support post-implementation, being in touch and trying to help, which makes their after-sale process better than Splunk.
They have a response time of forty-eight hours, which is not instant support.
It lacks some capabilities compared to other tools available in the market.
The tool has high scalability because everything is based in the cloud.
I did not face any significant issues with Sumo Logic Security, but the pricing may be a concern as they try to upsell and raise the prices very quickly.
The stability of ArcSight Enterprise Security Manager (ESM) is not very robust.
If there are many records, the system may stop or the UI may become unresponsive.
The query language is pretty straightforward and easy, and it is very powerful for building different searches and dashboards that will serve for later exploration of the same interests I have.
The integration aspect of ArcSight Enterprise Security Manager (ESM) needs improvement.
I would also appreciate the AWS automation integrations to be more secure because currently, they are using access keys, which involves a user rather than roles, which is the security best practice recommended by AWS.
This can lead to alerts that are collections of disjointed signals that sometimes make no sense and lack real context; this simplistic approach makes it hard to find coherent stories during investigations.
This is crucial to sell to the government and financial sectors as they require data retention within each country.
ArcSight Enterprise Security Manager (ESM) is very cheap compared to other tools.
This makes it more cost-effective because other solutions often include a third element in their pricing.
The ability to interpret data is highly valued.
We are able to save time on fewer alerts because we are able to perform tuning on the logs to be able to only get relevant security-related incidents.
The features I find most useful in Sumo Logic Security are the ease of implementation and connectors; they have a very easy connection and many connectors to important systems, making it very easy to implement and fast to start running in production.
If we cannot find the data in other tools, like email security or NDR, we can fetch those logs in the Log Analytics platform of Sumo Logic.
| Product | Market Share (%) |
|---|---|
| OpenText Enterprise Security Manager | 1.6% |
| Sumo Logic Security | 1.3% |
| Other | 97.1% |
| Company Size | Count |
|---|---|
| Small Business | 37 |
| Midsize Enterprise | 14 |
| Large Enterprise | 57 |
| Company Size | Count |
|---|---|
| Small Business | 6 |
| Midsize Enterprise | 4 |
| Large Enterprise | 13 |
OpenText Enterprise Security Manager enables real-time threat detection through scalable and adaptable solutions, integrating seamlessly with multiple platforms for complex security scenarios across different environments.
OpenText Enterprise Security Manager offers extensive security monitoring capabilities, combining log analysis and incident management to enhance cybersecurity and compliance. Its powerful event correlation engine provides real-time alerts for rapid incident response. Users benefit from customizable dashboards and comprehensive log collection, making it a significant tool in the SIEM market. Flexible deployment options cater to both on-premises and cloud environments, supporting enterprises in managing IT infrastructure and threat detection efficiently.
What are the key features of OpenText Enterprise Security Manager?In industries such as finance, healthcare, and energy, OpenText Enterprise Security Manager is implemented for monitoring critical systems and ensuring compliance with regulatory needs. Enterprises leverage its capabilities for forensic investigations and active threat management, serving as a central hub for cybersecurity operations across diverse IT infrastructures.
Sumo Logic
Sumo Logic is a cloud-based machine data analytics company focusing on security, operations, and BI use cases. It provides log management and analytics services that leverage machine-generated big data to deliver real-time IT insights.
Sumo Logic is developed as a SaaS solution, it processes and analyzes large quantities of IT infrastructure data, spotting patterns and anomalies that can indicate a potential threat or significant event.
The platform is designed to help IT, security, and business operations teams develop, manage, and secure their applications and cloud infrastructures. It collects, aggregates, and analyzes data from various sources including servers, virtual machines, and network devices, providing visibility into complex systems.
What are the key features of Sumo Logic?
Real-time Analytics: Continuous queries and live dashboards that provide insights into application performance, user behavior, and security threats.
Advanced Machine Learning: Utilizes machine learning algorithms to identify trends, anomalies, and patterns.
Integrated Threat Intelligence: Tools and workflows to enhance security postures by detecting threats and anomalies.
Multi-tenant Cloud Service: Allows users to operate in a shared cloud environment securely.
The solution aims to simplify data complexity, streamline operations, and provide actionable insights to businesses across various industries.
Sumo Logic is designed to handle high data volumes from multiple sources without diminishing performance. It is primarily deployed in the cloud with seamless integrations for AWS, Google Cloud, and Microsoft Azure. This flexibility allows users to leverage Sumo Logic’s capabilities regardless of their existing cloud infrastructure.
In summary, Sumo Logic is a comprehensive, AI-driven analytics solution ideal for businesses looking to enhance their IT and security operations through data-driven insights and real-time monitoring. Its flexible deployment options and scalable pricing model make it accessible for various business sizes and sectors.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
