ArcSight Review

It provides us with event correlations that are automated and prioritized according to level of security risk and compliance violation.


Valuable Features:

  • Real-time rules for threat detection
  • Event correlations that are automated and prioritized according to level of security risk and compliance violation

Improvements to My Organization:

It allows us to be in better compliance with security protocols. It also gives us a better global vision of what is happening in the organization in terms of security threats and how best to analyze and mitigate them.

Room for Improvement:

I would like to have native cluster for connectors as a software version and not as an appliance. It also needs a better disaster recovery procedure.

Use of Solution:

We've been using ArcSight since 2007.

Deployment Issues:

We've deployed it without any issues.

Stability Issues:

We haven't had any issues with instability.

Scalability Issues:

It's scaled fine for our needs.

Other Solutions Considered:

We chose ArcSight when they had no real competitor and we stayed with them.

Other Advice:

I'm pleased with the current capabilities.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
Guest

Sign Up with Email