ArcSight Review
Enables you to create a dashboard for analytics and set alerts.


What is most valuable?

It is easy to use when we created some dashboards for analytics. ArcSight allows you to create a dashboard and provides an on-the-fly filter.

How has it helped my organization?

It makes things easy when I create a new alert.

What needs improvement?

They need to improve the Web UI, similar to how it is done with Splunk.

ArcSight is still using a Java app to do analytics.

ArcSight Express is using HTML5, which is good. However, the capabilities of ArcSight Express are not good when the data grows.

What do I think about the stability of the solution?

I did not have any issues with stability.

What do I think about the scalability of the solution?

I did not have any issues with scalability.

How is customer service and technical support?

Technical support responds quickly.

Which solutions did we use previously?

We previously used RSA enVision. We had issues with the report generation.

How was the initial setup?

The installation is very easy.

What's my experience with pricing, setup cost, and licensing?

The licensing should come with EPS format, and not with EPD format.

What other advice do I have?

You need to first know the SIEM concept. SIEM can grow significantly, so you need to understand how to use a collector properly.

Disclosure: I am a real user, and this review is based on my own experience and opinions.

Add a Comment

Guest
Why do you like it?

Sign Up with Email