We performed a comparison between ArcSight Logger and Splunk Cloud Platform based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."ArcSight provides the basic information that we want."
"We have a trigger. So, Logger automatically blocks these IP addresses. We could have Logger put them on a blacklist."
"I am impressed with the product's ability to pick up logs. It also has UEBA which has reduced the time to take charge of the events."
"It's an efficient solution."
"We check a lot of logs in ArcSight Logger because we're running a massive database platform."
"ArcSight's robustness is its most valuable feature."
"It's a brilliant log collection tool, and it can handle hundreds of thousands of servers in a single shot to ingest the data."
"In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating."
"The log search capabilities are very good."
"The Splunk search is powerful compared to similar solutions. We get millions of data points within seconds."
"For my current requirements, the tool theme seems to be meeting my requirements, from a cost and requirements perspective."
"Splunk Cloud Platform's most valuable features are enterprise security and ticketing integration."
"In my organization, Splunk Cloud Platform has improved the issue revolving around transactions."
"The solution is user friendly and has extensive uses."
"Its interconnectivity with the cloud platforms, such as Azure and AWS, was valuable."
"Index manager is most valuable because we do not have to bother about internal storage. It is all managed by the Splunk team."
"The solution could be improved in maintenance settings."
"The solution must provide readymade connectors for different applications."
"In the next release, I want to see more intelligence."
"It would be better if the product is cheaper."
"We find that the search and access functionality is quite slow."
"The solution should make it possible to integrate network analysis features."
"I would rate the technical support only 5 out of 10. The technical support is not satisfactory."
"It's not a new product and is a bit complex. So, it requires a person dedicated to working on it and to know about it in and out. It is a huge product, and the search operation is a bit complicated for a new user or someone who has not used it for long. So for that person, it becomes a bit difficult."
"The search for bulk data needs to be improved. When we were looking for the flow, we had to search really hard. I wanted to request the Splunk team to add some features for better search because getting the flow of the bulk data was sometimes hard."
"Support is the bigger issue when we have a problem. When we need their help, it takes weeks or months to actually get resolved."
"The only thing that is missing from Splunk Cloud is the command-line interface."
"There could be better searches, but mainly, it needs to improve the performance with a vast amount of data. That will make it better and easier to use."
"The dashboards should be easier to customize."
"In the case of knowledge objects, even a Splunk admin does not have access to delete them. If we want to remove a knowledge object, we need to contact Splunk support and raise a case. After that, they delete it. They should give us access to delete knowledge objects."
"Splunk should offer various options for real-time monitoring."
"There can be more modules and more integration with other areas in the cloud and on-prem. I am not sure whether it includes network devices and things like that."
ArcSight Logger is ranked 20th in Log Management with 31 reviews while Splunk Cloud Platform is ranked 3rd in Data Visualization with 37 reviews. ArcSight Logger is rated 7.8, while Splunk Cloud Platform is rated 8.0. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of Splunk Cloud Platform writes "Does not require backend maintenance, is easily integrated and utilized". ArcSight Logger is most compared with Splunk Enterprise Security, IBM Security QRadar, Elastic Security, Wazuh and LogRhythm SIEM, whereas Splunk Cloud Platform is most compared with Wazuh, Splunk Enterprise Security, Fortinet FortiAnalyzer, AppInsights and Check Point Security Management. See our ArcSight Logger vs. Splunk Cloud Platform report.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
