We performed a comparison between ArcSight Logger and Elastic Security based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It's a robust, mature product and you can do some really complex operations and analytics."
"In terms of ArcSight Logger's most valuable feature, it is their scalability. ArcSight's real advantage is its scalability because they have two layers, including the logger layer."
"The solution provides information about the risk factors."
"We have a trigger. So, Logger automatically blocks these IP addresses. We could have Logger put them on a blacklist."
"ArcSight provides the basic information that we want."
"The log digestion features from threat intelligence platforms like Recorded Future or Talos are valuable."
"In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating."
"It provides in-depth information on business activities once we log into the system."
"Stability-wise, I rate the solution a ten out of ten."
"The most valuable feature is the search function, which allows me to go directly to the target to see the specific line a customer is searching for."
"What customers found most valuable in Elastic Security feature-wise is the search capability, in particular, the way of writing the search query and the speed of searching for results."
"I use the stack every morning to check the errors and it's just so clear. I don't see any disadvantage to using Logstash."
"The most valuable feature for me is Discover."
"ELK Logstash is easy and fast, at least for the initial setup with the out of box uses."
"The most valuable thing is that this solution is widely used for work management and research. It's easy to jump into the security use case with the same technology."
"The most valuable feature of Elastic Security is that you can install agents, and they are not separately licensed."
"I think the ArcSight team should try to simplify legacy products for the customers, because that product is not easy to use or to work with. It needs more more competency or appeal to use. We hope Micro Focus is trying to resolve this."
"The console in older versions is not user-friendly."
"I would rate the technical support only 5 out of 10. The technical support is not satisfactory."
"It is really difficult to work in ArcSight Logger, as it is very slow."
"We find that the search and access functionality is quite slow."
"The next release should have AI capabilities."
"In the next release, I want to see more intelligence."
"The solution could be improved in maintenance settings."
"The price of this product could be improved, especially the additional costs. I would also like to see better-quality graphics."
"In terms of what could be improved with Elastic, in some use cases, especially on the advanced level, they are not ready made, so you'll have to write some scripts."
"Elastic Security can be a bit difficult to use if a person only has experience in SMBs with tools like Zoho. The product can also be difficult for those who have never dealt with query language."
"Upgrades currently released as stacks when it should be a plugin or an extension to save removal and reinstallation."
"There are connectors to gather logs for Windows PCs and Linux PCs, but if we have to get the logs from Syslog then we have to do it manually, and this should be automated."
"With Elastic Security, the challenge arises from the fact that there is a learning curve in relation to queries and understanding the query language provided to extract usable data."
"Their visuals and graphs need to be better."
"We set up a cron job to delete old logs so that we wouldn't hit a disk space issue. Such a feature should be available in the UI, where old logs can be deleted automatically. (Don’t know if this feature is already there)."
ArcSight Logger is ranked 28th in Log Management with 31 reviews while Elastic Security is ranked 5th in Log Management with 59 reviews. ArcSight Logger is rated 7.8, while Elastic Security is rated 7.6. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". ArcSight Logger is most compared with Splunk Enterprise Security, IBM Security QRadar, Wazuh, LogRhythm SIEM and VMware Aria Operations for Logs, whereas Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, IBM Security QRadar and Rapid7 InsightIDR. See our ArcSight Logger vs. Elastic Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
