We performed a comparison between ArcSight Logger and LogRhythm SIEM based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature is the search capability, which is simple to use."
"We haven't had any crashes or bugs. It is stable."
"It is one of the best products available in the market."
"The machine learning is a good feature."
"In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating."
"We have a trigger. So, Logger automatically blocks these IP addresses. We could have Logger put them on a blacklist."
"I am impressed with the product's ability to pick up logs. It also has UEBA which has reduced the time to take charge of the events."
"It's a robust, mature product and you can do some really complex operations and analytics."
"We integrated Azure logs with it and that makes it simpler. Rather than having to log into the portal, we can just check everything in one place. We can compare those to our Windows and host logs to see if any problems correlate between them."
"The log analysis feature is valuable."
"We now have a central point of monitoring for all potential threats."
"Technical support is very helpful and responsive."
"In terms of security, LogRhythm NextGen SIEM is great."
"Compliance reporting is another great feature of this product. It has built in reports right out of the box."
"NextGen SIEM's most valuable feature is its user-friendliness."
"We have NetFlow information going into it, so we can examine a lot of traffic patterns and anomalies, especially if something stands out and is not the baseline. This helps a lot."
"In the next release, I want to see more intelligence."
"The console in older versions is not user-friendly."
"We find that the search and access functionality is quite slow."
"The initial setup was a little bit complex."
"The solution must provide readymade connectors for different applications."
"ArcSight has been sold two or three times, and the quality has decreased."
"I would like to see better scheduling in the next release of this solution."
"The platform is quite expensive. They should reduce its cost."
"Right now there is the concern about being able to gather all of the data into the system."
"It's not easy for someone new to the solution."
"NextGen SIEM has separate rules for AI, advanced intelligence, and MP rules - it would be better to have a centralized way to write the rules and create alarms."
"We had a little bit of difficulty implementing a disaster recovery situation because it was leveraging only Microsoft native DNS and it wouldn't work with our Infoblox DNS deployment that we use in our environment. They've been working on that behind the scenes."
"Scalability misses the mark sometimes, especially when you have an integrated disaster recovery built into the solution."
"The installation was a bit complex because we are running a virtual infrastructure."
"The built-in functionality of the solution for NDR, SOAR, SIEM, and EDS has room for improvement."
"Only area I can think of to improve on is the proof reading and using the guides before releasing them. Out the the 20+ guides I used one had issues with wrong information in it."
ArcSight Logger is ranked 28th in Log Management with 31 reviews while LogRhythm SIEM is ranked 7th in Log Management with 166 reviews. ArcSight Logger is rated 7.8, while LogRhythm SIEM is rated 8.4. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of LogRhythm SIEM writes "The solution reduced our investigation time from days to hours and assists in managing our workflows". ArcSight Logger is most compared with Splunk Enterprise Security, IBM Security QRadar, Elastic Security, Wazuh and VMware Aria Operations for Logs, whereas LogRhythm SIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Microsoft Sentinel, Wazuh and LogRhythm Axon. See our ArcSight Logger vs. LogRhythm SIEM report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.