Intel Security

Security Information & Event Management

McAfee is a leader in the Gartner Magic Quadrant for SIEM

Read Report

Detect, Prioritize & Manage Incidents with One SIEM Solution

SIEM Products

Our high-performance, powerful security information and event management (SIEM) solution brings event, threat, and risk data together to provide strong security intelligence, rapid incident response, seamless log management, and compliance reporting—delivering the context required for adaptive security risk management.

McAfee Enterprise Security Manager

At the core of our SIEM offering, McAfee Enterprise Security Manager delivers the performance, actionable intelligence, and real-time situational awareness required to identify, understand, and respond to stealthy threats, while the embedded compliance framework simplifies compliance.

SIEM Add-Ons

  • McAfee Advanced Correlation Engine
    Deploy McAfee Advanced Correlation Engine with McAfee Enterprise Security Manager to identify and score threat events in real time using both rule- and risk-based logic. You tell McAfee Advanced Correlation Engine what you value—users or groups, applications, specific servers, or subnets—and it will alert you if the asset is threatened.
  • McAfee Application Data Monitor
    Advance security and compliance beyond log management by monitoring all the way to the application layer to detect fraud, data loss, and advanced threats. This SIEM tool supports accurate analysis of real application use, while enforcing policies and detecting malicious, covert traffic.
  • McAfee Database Event Monitor for SIEM
    Get a complete audit trail of all database activities, including queries, results, authentication activity, and privilege escalations, widening your visibility into who’s accessing your data and why.
  • McAfee Event Receiver
    Collect up to tens of thousands of events per second with a single receiver, and use a highly indexed database to quickly retrieve data and analysis.
  • McAfee Enterprise Log Manager
    Reduce compliance costs with automated log collection, storage, and management. Collect, compress, sign, and store all original events with a clear audit trail of activity that can’t be repudiated.
  • McAfee Global Threat Intelligence for Enterprise Security Manager
    Enhance your SIEM deployment with a constantly updated threat intelligence feed that broadens situational awareness by enabling rapid discovery of events involving communications with suspicious or malicious IPs.

McAfee SIEM-Integrated Partners

Leveraging the value of the Security Connected framework from McAfee allows for faster response, lower TCO, and business-wide visibility across systems, networks, and data—helping organizations respond to attacks more quickly and efficiently. Our Security Innovation Alliance partner solutions integrated with McAfee Enterprise Security Manager turn billions of “so what?” events into actionable information via context and advanced analytics. Below are a selection of our Enterprise Security Manager-integrated partners that provide a variety of workflows across organizations.

IScan Online
Lieberman Software
LOGbinder software
Raz-Lee Security
Topia Technology
See All SIEM-Integrated Partners