We performed a comparison between ArcSight Logger and LogRhythm SIEM based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."ArcSight provides the basic information that we want."
"ArcSight's robustness is its most valuable feature."
"It's a robust, mature product and you can do some really complex operations and analytics."
"It provides in-depth information on business activities once we log into the system."
"The technical support team is good...It is a scalable solution."
"The most valuable feature is the level of detail that you can see about certain events, even when they do not come up in the console."
"It is one of the best products available in the market."
"The solution provides information about the risk factors."
"The security operation center is excellent."
"Compliance reporting is another great feature of this product. It has built in reports right out of the box."
"The initial setup is pretty easy."
"Currently, we are in the implementation phase. LogRhythm is better than QRadar from the point of view of collecting Windows events. It has a much higher view. You can enable monitoring by default."
"It seems like it will scale easily with the way our environment is set up."
"The most valuable feature is that we can alternate incident automations."
"The user interface is good."
"It's positively affected our overall rate of efficiency."
"I would like to see better scheduling in the next release of this solution."
"The speed of Logger indexing and searching for certain bugs for some queries that we provide could be improved. It can handle a huge number of logs but it can be improved."
"We find that the search and access functionality is quite slow."
"It would be better if the product is cheaper."
"I would rate the technical support only 5 out of 10. The technical support is not satisfactory."
"It is really difficult to work in ArcSight Logger, as it is very slow."
"ArcSight has been sold two or three times, and the quality has decreased."
"It's not a new product and is a bit complex. So, it requires a person dedicated to working on it and to know about it in and out. It is a huge product, and the search operation is a bit complicated for a new user or someone who has not used it for long. So for that person, it becomes a bit difficult."
"Sometimes the error-logging is not altogether helpful. For example, on an upgrade, a systems data processor, a Windows box, was throwing an error code like 1083. Then it just stopped and it died right out of the installer and nobody looked. We searched through Google and what it means is the Windows Firewall wasn't turned on so that it could create a rule for the product. Why wouldn't they bubble up that description so that I wouldn't have to call support and I could just know, "Okay, the firewall wasn't turned on. Turn it back on. Re-run the installer and keep going.""
"Sometimes the Platform Manager crashes because it's built around Windows."
"For our market, the solution is quite expensive. It would be ideal if they could work on and improve their existing pricing plans to help make it more affordable in our country."
"LogRhythm's SOAR and NDR features don't stack up well against competitors. maybe integrating theme functionality as the other do. But in general, it's okay."
"Appliance-based setups can sometimes pose scalability issues"
"My biggest issue - I know that they say they're doing it - is that the API-building is extremely important. They keep saying it's coming, it's coming. It's not coming fast enough. I don't care if they need to double their team size to get it out there quicker, the world is already in the cloud and we can't monitor it. That's a big problem for us. My boss keeps coming to me about it. That's an issue."
"The user interface needs improvement. The more the user can slide around and know what's going on, the better it will be."
"I think there is room for improvement because the system is still running on the Windows Server platform. The problem with running on Windows is that it is not that good for scaling and providing for big deployment environments."
ArcSight Logger is ranked 28th in Log Management with 31 reviews while LogRhythm SIEM is ranked 7th in Log Management with 166 reviews. ArcSight Logger is rated 7.8, while LogRhythm SIEM is rated 8.4. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of LogRhythm SIEM writes "The solution reduced our investigation time from days to hours and assists in managing our workflows". ArcSight Logger is most compared with Splunk Enterprise Security, IBM Security QRadar, Elastic Security, Wazuh and VMware Aria Operations for Logs, whereas LogRhythm SIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Microsoft Sentinel, Wazuh and LogRhythm Axon. See our ArcSight Logger vs. LogRhythm SIEM report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.