ArcSight Review

Can pinpoint the story behind every virus or network attack to the environment

What is our primary use case?

Our primary use case is SIEM. It is a data lake for logs from all of our servers and devices (routers, switches, firewalls, wireless controllers, etc.).

How has it helped my organization?

It prevented my users from getting infected by ransomware. It can also pinpoint the story behind every virus or network attack to our environment.

What is most valuable?

ArcSight ESM: The module has user-defined rules capabilities. This feature lets us define almost any threat.

What needs improvement?

The product should include a lot more predefined scenarios so the adopted company will have knowledge and a broader skill set in security and network.

For how long have I used the solution?

Three to five years.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
1 Comment
Commercial Manager at a tech services company with 11-50 employeesReal UserTOP 5

Weinstein have projects in goverment sector

03 August 18

Sign Up with Email