McAfee Enterprise Security Manager

Quickly identify, investigate, and resolve threats

Free Trial

Real-time visibility into all activity on systems, networks, databases, and applications

McAfee Enterprise Security Manager is a security information and event management (SIEM) solution that delivers actionable intelligence and integrations to prioritize, investigate, and respond to threats.

Your SIEM foundation

McAfee Enterprise Security Manager provides continuous visibility into threats and risk, actionable analysis to guide triage and speed investigations, and orchestration of security remediation.

Advanced threat intelligence

Prioritized alerts surface potential threats before they occur while analyzing data for patterns that may indicate a larger threat.

Embedded compliance framework

Built-in security use case content packs simplify analyst and compliance operations.

Dozens of partner integrations

An extensible and distributed design integrates with more than three dozen partners, hundreds of standardized data sources, and industry threat intelligence.

Enabling fast, risk-based decisions

Context and content awareness

Leverage contextual information, such as vendor threat feeds and indicators of compromise (IOCs), for a better understanding of how security events can impact real business processes.

Critical facts in minutes, not hours

Highly tuned appliances collect, process, and correlate log events from multiple years with other data streams, including STIX-based threat intelligence feeds. Store billions of events and flows, and quickly access long-term event data storage to investigate attacks.

Optimized security operations

An analyst-centric user experience offers increased flexibility, customization, and faster response to investigations. Analysts with any level of experience, from beginner to expert, will find it easier to prioritize, investigate, and respond to evolving threats.

A Gartner Magic Quadrant Leader

A Gartner Magic Quadrant Leader

McAfee is a leader in the latest Gartner Magic Quadrant for SIEM.

System requirements

McAfee Enterprise Security Manager (ESM) can be deployed with physical and virtual appliances. It can also be part of an all-in-one SIEM deployment that includes McAfee Enterprise Log Manager (ELM) and McAfee Event Receiver (ERC). McAfee SIEM appliance specifications and descriptions are provided for information only, subject to change without notice, and provided without warranty of any kind, expressed or implied.

Model Number Appliance Size Local Storage1 CPU Cores System Requirements
All-in-One SIEM: Enterprise Security Manager, Enterprise Log Manager & Event Receiver
ESM-ELM-ERC-VM-8 VM Recommended 250GB 8 VM (AWS, ESX, KVM), 8 processor cores, 4GB of memory
ESM-ELM-ERC-VM-12 VM Recommended 500GB+480GB SSD2 12 VM (AWS, ESX, KVM), 12 processor cores, 64GB of memory
ESM-ELM-ERC-5700 2U 32 TB + 800 GB SSD 20 N/A
ESM-ELM-ERC-6050 2U 40 TB +800 GB SSD 28 N/A
Enterprise Security Manager
ESM-VM-8 VM Recommended 250GB 8 VM (AWS, ESX, KVM), 4GB of memory
ESM-VM-12 VM Recommended 500GB+480GB SSD2 12 VM (AWS, ESX, KVM), 64GB of memory
ESM-VM-32 VM Recommended 2TB+800GB SSD2 32 VM (AWS, ESX, KVM), 96GB of memory
ETM-5700 2U 32 TB + 800 GB SSD 20 N/A
ETM-6050 2U 40 TB + 800 GB SSD 28 N/A
ETM-X7 2U 16 TB SSD + 2 TB SSD (PCle) 20 N/A
ETM-X9 2U 19 TB SSD + 8 TB SSD (PCle) 28 N/A
ETM-X11 2U 19 TB SSD + 8 TB SSD (PCle) 36 N/A

1Usable event and flow data storage capacity will vary by customer event types, event rates, software version, and other factors.
2Minimum 50K IOPS for SSD; additional storage should be a minimum of 100 IOPS.

Need additional technical resources? Visit the McAfee Expert Center >

SIEM-Integrated Partners

Automation & Orchestration

Ayehu
Demisto
Phantom

User & Entity Behavior Analytics

Exabeam
Fortscale
Gurucul
Interset
Niara
Securonix

Authentication & Encryption

Topia Technology
Vormetric

Application & Database Security

HyTrust
Invincea
LOGbinder
Prevoty
Proofpoint
Skycure

Risk & Compliance

Beyond Trust
CyberArk
Rapid7
Raz-Lee
ThreatConnect

Incident Response & Forensics

Niksun
PhishMe
ServiceNow
See All Partners

Learn more about McAfee Enterprise Security Manager

REPORT

Gartner: Critical Capabilities for Security Information and Event Management

As a companion to the Gartner Magic Quadrant for SIEM, the Gartner Critical Capabilities report for SIEM helps IT security organizations compare their requirements with the most common SIEM use cases. Discover in-depth how Gartner rates McAfee SIEM by critical capabilities.

Read Report >
DATA SHEET

McAfee Enterprise Security Manager

The McAfee Enterprise Security Manager SIEM solution delivers real-time understanding of threat data and reputation feeds and a view of systems, data, risks, and activities inside your enterprise.

Read Data Sheet >
WHITE PAPER

Sustainable Security Operations

Discover how to successfully adopt sustainable security operations with optimized processes and tools to compress decision-making and quickly detect, contain, and remediate attacks.

Read White Paper >
This remains the top SIEM available.
Read Product Review > SC Magazine

McAfee’s integrated approach enabled efficient, accurate detection and analysis of threats from all vectors.

Read Product Review > ESG

Recommended for you

Have Additional Questions?

We’re here to help. Contact us to learn about implementation, pricing, technical specifications, and more.

Contact Us

Register for a Free Trial

Get started now. Test drive McAfee Enterprise Security Manager in your environment.

Free Trial
Back to top