ArcSight Enterprise Security Manager (ESM) Review

Good visibility into end-to-end communications helps discover security threats


What is our primary use case?

Flexibility, high ingestion rate, and complexity of use cases.

How has it helped my organization?

ArcSight gives us better visibility into threats that were unknown earlier. We now have an ability to assess end-to-end communications, as well as alerts from various security solutions along the path.

What is most valuable?

The most valuable features are lists, correlation, escalation matrix, and customers.

What needs improvement?

The following needs to be improved:

  1. We would like the ability to easily identify either unused resources or those that are being used sub-optimally.
  2. ESM should make usage of variables and other such deep customizations, highly intuitive.
  3. User behavior analytics is too pricey but an essential tool.

For how long have I used the solution?

We have been using ArcSight for eight years.

**Disclosure: I am a real user, and this review is based on my own experience and opinions.
More ArcSight Enterprise Security Manager (ESM) reviews from users
...who work at a Financial Services Firm
...who compared it with Splunk
Learn what your peers think about ArcSight Enterprise Security Manager (ESM). Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
457,459 professionals have used our research since 2012.
Add a Comment
Guest