We performed a comparison between ArcSight Logger and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating."
"It's an efficient solution."
"ArcSight's robustness is its most valuable feature."
"The machine learning is a good feature."
"Some of the most valuable features I really appreciate are the performance, how quick the solution is, and how easy it is to create a query."
"In terms of ArcSight Logger's most valuable feature, it is their scalability. ArcSight's real advantage is its scalability because they have two layers, including the logger layer."
"The solution provides information about the risk factors."
"We haven't had any crashes or bugs. It is stable."
"The most valuable feature of Splunk is the log monitoring."
"The additional vendors we've brought on board, particularly the elastic, have been quite beneficial."
"We have a one stop dashboard for health of some of our services where you can click in and it takes you to other dashboards that have custom near real-time metrics that show the application's health."
"Splunk gives my clients the ability to bring multiple, disparate types of data together, then correlate and report on them."
"Our clients are easily able to modify and evolve their implementations."
"The speed of the search engine"
"It is quite extensible. It is a platform that we can build our use instead of each case instead of each case being limited or restricted to each capability. This is probably the best feature."
"Splunk has helped improve our company's resilience level."
"The speed of Logger indexing and searching for certain bugs for some queries that we provide could be improved. It can handle a huge number of logs but it can be improved."
"I think the ArcSight team should try to simplify legacy products for the customers, because that product is not easy to use or to work with. It needs more more competency or appeal to use. We hope Micro Focus is trying to resolve this."
"Using the ArcSight Logger dashboard is not particularly intuitive or efficient, so it is important to be trained in its use."
"The console in older versions is not user-friendly."
"The next release should have AI capabilities."
"You have limited reporting capabilities and I wouldn't choose ArcSight Logger for this purpose."
"The solution must provide readymade connectors for different applications."
"I would rate the technical support only 5 out of 10. The technical support is not satisfactory."
"I would like some additional AI capabilities to provide additional information about things going wrong and things going well."
"We find that the maintenance process could be a lot better."
"AngularJS/ReactJS inclusion could be made easier in GUI."
"I would like Splunk to add more integration. QRadar has many indications with more products than Splunk."
"There are a lot of competitive products that are doing better than what Splunk is doing on the analytics side."
"You do need a lot of training and certification with this product."
"I would like to see future development in terms of ML (Machine Learning)."
"The threat detection system has room for improvement."
ArcSight Logger is ranked 28th in Log Management with 31 reviews while Splunk Enterprise Security is ranked 1st in Log Management with 228 reviews. ArcSight Logger is rated 7.8, while Splunk Enterprise Security is rated 8.4. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". ArcSight Logger is most compared with IBM Security QRadar, Elastic Security, Wazuh, LogRhythm SIEM and VMware Aria Operations for Logs, whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Fortinet FortiAnalyzer. See our ArcSight Logger vs. Splunk Enterprise Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.