ArcSight Analytics Reviews

Filter by:Reset all filters
industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
rating
Loading...
Filter Unavailable
SenrSyseng67
Reseller
Senior Systems Engineer at a tech services company with 501-1,000 employees
Aug 22 2019

What is most valuable?

All the features are valuable for us because we use all of them. It's like any other ESM (Enterprise Service Management) solution. You can use how you want to. It depends on the reports, on the… more»

How has it helped my organization?

Our organization has improved because ArcSight allows multiple integrations with multiple systems which we did not do before using the product. There can be multiple integrations with different parts… more»

What needs improvement?

The product might be improved in comparison with other products. For example, they need to work with the flexibility of the GUI. It is sometimes considered complex by some of our customers. Also, the… more»

If you previously used a different solution, which one did you use and why did you switch?

We sometimes use different solutions. We have RSA and ArcSight implementations. We use RSA to do networking and the use of ArcSight depends on the need of the customer. Sometimes there are customers… more»

What other advice do I have?

Advice that I would give to other people who are considering using this product is that they need to have a good working knowledge of the system. They might want to consider training. They need to be… more»

Which other solutions did I evaluate?

We did not evaluate other solutions as through research we could tell the product was well accepted and had the solutions we needed.
Syed Ubaid Ali Jafri
Consultant
Head of Cyber Security at KPMG Pakistan
Sep 04 2018

What is most valuable?

I have found the following features extremely useful: * Automatic log parsing and sorting. * Individual command monitoring across the network by the SAP database admin. *… more»

How has it helped my organization?

ArcSight Analytics has improved our system and network policy monitoring. It comes with an option to generate and escalate a ticket. We can forward the ticket to the… more»

What needs improvement?

They should improve on the following: * Timely resolution of issues and proper support once a ticket has been generated. * Systems appearing on the network which are not… more»

What's my experience with pricing, setup cost, and licensing?

ArcSight Analytics is a bit expensive compared with other tools in terms of licensing costs, training, hardware implementation, and support.

If you previously used a different solution, which one did you use and why did you switch?

I implemented different open source solutions before switching to ArcSight Analytics. Open source solutions were not able to meet the requirements in terms of event… more»

What other advice do I have?

They should conduct more training, seminars, demonstrations, and workshops to reach more IT professionals.

Which other solutions did I evaluate?

I assessed SAP, Sybase, Db2, AIX, and MDM before switching to ArcSight Analytics.
Find out what your peers are saying about Micro Focus, Microsoft, Securonix Solutions and others in User Behavior Analytics - UEBA. Updated: September 2019.
371,917 professionals have used our research since 2012.
Ahmed Naguib, Ccie Voice
Real User
Cyber Security Manager at Malomatia
Sep 23 2019

What is most valuable?

The ability to correlate different logs is the solution's most valuable feature.

What needs improvement?

The reporting and the way it is worded needs to be improved in future releases. The dashboards are quite poorly designed. The ecosystem needs improvement. It's not only in the planning though, but it's also just the ecosystem overall. Nowadays, it's not about security, and not only about analytics… more»

What's my experience with pricing, setup cost, and licensing?

If you compare it to even a few years ago, pricing seems to have improved a lot. However, it's still one of the most expensive solutions available on the market.

What other advice do I have?

I would rate the solution seven out of ten. The solution is much more suited to complex use cases. If it's a very simple use case, then ArcSight is not the right choice for you.
Bechara Abou Rahal
Real User
Software Engineer at BMB
Aug 18 2019

What is most valuable?

The two most valuable features of this solution are its stability and scalability.

How has it helped my organization?

This product improves visibility, whereas prior to implementing this solution there is no visibility. This solution facilitates compliance because it is able to generate reports to see which users or servers are not compliant with specific… more»

What needs improvement?

The pricing of this solution should be improved. The UX for the SOC analyst does not match that of the competitors, and therefore needs improvement. There is a GUI, but it is not complete and lacks functionality that needs to be performed… more»

What's my experience with pricing, setup cost, and licensing?

Pricing for this solution depends on the size of the environment. It can range between $30,000 and $40,000 USD, and can go up to $500,000 and $600,000 USD.

What other advice do I have?

The biggest lesson that I have learned from using this product is that the tool is not the most important component. The tool is important, but the intelligence that you put into it is even more so. I would rate this solution an eight out… more»
Real User
Founder at a tech services company with 1-10 employees
Mar 26 2019

What is most valuable?

The data collection and the integration with different products are valuable features.

How has it helped my organization?

We have seen a measurable decrease in the mean time to detect and respond to threats. It has also definitely added to what our customer had. We are integrating a lot of… more»

What needs improvement?

I would like to see some advanced analytics.

What's my experience with pricing, setup cost, and licensing?

The monthly licensing fee is around $20,000. There aren't any costs in addition to the standard licensing fee.

If you previously used a different solution, which one did you use and why did you switch?

We did not switch. This is the first time we have done such an installation.

What other advice do I have?

You can use this solution for limited use cases. But for more advanced use cases, there are other solutions which are better than ArcSight. I would rate this solution at… more»

Which other solutions did I evaluate?

We looked at Splunk and HelpSystems. There were a few more vendors but I don't recollect all their names. Because of the number of integrations that ArcSight has, it was… more»
Nono Bonnet
Real User
Analyst at Orange
Aug 21 2019

What is most valuable?

This solution allows us to identify connections for all users. We can see the name, login time, IP address, and other information for each connection to each server.

How has it helped my organization?

We have specific use cases for our platform and it helps us to monitor connexion to applications and investigation.

What needs improvement?

The interactive dashboard is more complicated comparing to his concurrent Qradar and you need to have training in order to do complexe configuration, so I think that it could be made easier to use. It's very powerful, stable, but not very… more»

If you previously used a different solution, which one did you use and why did you switch?

We used previouly Loglogic. We acquired it for investigation purposes so that we can learn more about who is connected to the server.

What other advice do I have?

This solution has taught me a lot about log files, including what types of network information is contained in them. I would rate this solution an eight out of ten.
Real User
Senior Information Security Analyst at a tech services company with 501-1,000 employees
Aug 19 2019

What is most valuable?

This solution makes it easy to create use cases, and it is easy to move queries from use cases to the report to the dashboard. The parallel logic to create queries is very helpful.

What needs improvement?

The GUI and dashboards are very basic and need to be improved. The product does not have continuous updates. I would like to see easy integration with the Intelligence Suite. I would like to see integration with automation products, such as Phantom Automation.

If you previously used a different solution, which one did you use and why did you switch?

We did not use another solution prior to this one.

What other advice do I have?

This is a solution that I recommend. I would rate this solution a seven out of ten.
Real User
SOC Engineer at a transportation company with 1,001-5,000 employees
Mar 26 2019

What is most valuable?

One of the most valuable features is the alerts.

How has it helped my organization?

We're leveraging it to detect incidents and attacks. We have seen a measurable decrease, by about 20 percent, in the mean time to detect and respond to risks. It has also helped to increase staff… more»

What needs improvement?

I would like to see orchestration.

What's my experience with pricing, setup cost, and licensing?

In addition to the costs of standard licensing fees, there is the cost of labor for maintenance.

If you previously used a different solution, which one did you use and why did you switch?

This is the first solution of its kind that we deployed.

What other advice do I have?

Understand your data first and then find a solution that handles the data you have. I rate the solution at four out of ten because of the complexity and the lack of ability to capture large amounts of… more»

Articles

User Assessments By Topic About ArcSight Analytics

Find out what your peers are saying about Micro Focus, Microsoft, Securonix Solutions and others in User Behavior Analytics - UEBA. Updated: September 2019.
371,917 professionals have used our research since 2012.

ArcSight Analytics Questions

What is ArcSight Analytics?

ArcSight User Behavior Analytics offers enterprises the ability to monitor and detect from internal and external security threats and fraud.

Also known as
ArcSight User Behavior Analytics, ArcSight UBA
BUYER'S GUIDE
Download our free User Behavior Analytics - UEBA Report and find out what your peers are saying about Micro Focus, Microsoft, Securonix Solutions, and more!
Sign Up with Email