ArcSight Logger Reviews

Filter by:Reset all filters
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Hassan_MOUSSAFIR
Real User
Chief Information Security Officer at Groupe Wafa Assurance
Jan 27 2020

What is most valuable?

The solution offers very good performance and is efficient. The provider offered excellent training to help us successfully launch the project. The interface is user-friendly. The solution passed compliance thresholds and standard… more»

What needs improvement?

The console in older versions is not user-friendly. At one point, we experienced an RMA. However, they sent an expert to do an SDN check. Someone came to the company to verify the hardware and try to access the log just to verify what the… more»

What's my experience with pricing, setup cost, and licensing?

In our case, we bought a license for a three year period. The technology itself is expensive.

What other advice do I have?

Arcsight was a technology we used for CM security information event management. We deployed it when I was an Information Security Senior Engineer in a company that provided electricity and water for Casablanca and neighboring cities… more»

Which other solutions did I evaluate?

At the time we were evaluating other solutions, we looked at Splunk and LogLogic. ArcSight was the first one that positioned itself as a market leader, which was a big reason we chose it.
Igor Dzakula
Real User
Vulnerability Assessor at Telenor Common Operation
Mar 12 2019

What is most valuable?

The ESM use cases are the most valuable. It enables us to use the big data collection inside our company. We are able to create use cases for whatever it suits and I find that the most interesting part of any SIEM solution.

What needs improvement?

The speed of Logger indexing and searching for certain bugs for some queries that we provide could be improved. It can handle a huge number of logs but it can be improved. They should improve the speed of the indexing and queries being dumped. Technical support's response time could also be slightly improved. Although these two issues are not something bad, it's just the only things that I think… more»

What other advice do I have?

I would rate it a nine out of ten. I wouldn't give any solution a perfect ten.
Find out what your peers are saying about Micro Focus, Elastic, Splunk and others in Log Management. Updated: February 2020.
398,567 professionals have used our research since 2012.
Techconslt67
Consultant
Technical Consultant at a tech services company with 11-50 employees
Aug 19 2019

What is most valuable?

In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating.

What needs improvement?

I think the ArcSight team should try to simplify legacy products for the customers, because that product is not easy to use or to work with. It needs more more competency or appeal to use. We hope Micro Focus is trying to resolve this. A lot of people that compare this solution with QRadar or McAfee… more»

What's my experience with pricing, setup cost, and licensing?

ArcSight Logger is very expensive compared to their competitors, but when we talk to the customer and explain what the features are and how we can scale, they understand. Still, ArcSight is more expensive than the competition.

What other advice do I have?

I would rate this solution as ten out of ten. Whenever I talk about the product I tell the user to start easy, not to take the whole package and to try to use it quickly. Start with the basics, then you can ramp up fluidly. Sometimes the client or customer wants to take it urgently so at that moment… more»
Kalana Liyanage
Reseller
Team Lead at a tech services company with 51-200 employees
Feb 21 2020

What is most valuable?

Various log collecting methods helps customers to route logs from almost every application or device.In terms of ArcSight Logger's most valuable feature, it is their scalability and flexible log collecting options. ArcSight's real advantage is its scalability because they have two layers, Logger… more»

What needs improvement?

A concern is that after their merger with Micro Focus I have some doubts. I don't see much development of the road map on ArcSight itself. The reason why I'm saying this is because we had a situation here in Sri Lanka which concerned us, where Arcsight suddenly decided to discontinue IBM as… more»

What's my experience with pricing, setup cost, and licensing?

We have an annual subscription license. I'd say the pricing is okay.

What other advice do I have?

I would advise anyone looking to implement this solution to have a good understanding of your infrastructure and to verify your architecture. You should be able to get an idea of their road map for the next five years to just verify what sort of effect it will be making on your system. On a scale of… more»
Real User
Founder & CEO at a security firm with 10,001+ employees
Feb 24 2020

What is most valuable?

It's a robust, mature product and you can do some complex operations and analytics. For correlation and structuring data, it's very good. It's a secure platform.

What needs improvement?

ArcSight Logger is an outdated product. It hasn't been changed in the last ten years. I think that it's a product that will disappear and there are better platforms that you can use. You have limited reporting capabilities and I wouldn't choose ArcSight Logger for this purpose. I would prefer to go with Elastic or Splunk. You can do reporting but it's not up to date in terms of interactive reports… more»

What other advice do I have?

We are involved with technology that allows us to solve problems for clients that they cannot solve themselves. These are often complex environments. This solution has still been in use over the past year. We have a client who has the full ArcSight Suite. We are working on a solution to phase out Logger in the coming year and replace it with Elastic or Splunk. We can replace ArcSight entirely by… more»
CISO67
Real User
CISO at a financial services firm with 1,001-5,000 employees
Sep 16 2019

What is most valuable?

The ability to customize the solution in great detail is its most valuable feature. We can customize the use cases and also have the ability to do scripting. We can personalize our dashboard as well. The scalability the solution offers is… more»

What needs improvement?

They should enhance and improve everything related to the graphical user interface. It needs to be more fluid and easy to use. Many think that ArcSight is complex and difficult. This is not something that my team feels but that's because we… more»

Which solution did I use previously and why did I switch?

We didn't previously use a different solution.

What other advice do I have?

We are using the on-premises deployment model. There are people who say "Oh, ArcSight is losing its position and it's complex or it's not a good solution." I do not agree. I know that the biggest companies in the world are still working… more»

Which other solutions did I evaluate?

We evaluated QRadar before we implemented this solution.
Ademayokun Daini
Real User
SOC Analyst at a tech services company with 11-50 employees
Aug 20 2019

What is most valuable?

The most valuable feature is the level of detail that you can see about certain events, even when they do not come up in the console. The searching is very good, where you can search for the larger part of the event.

What needs improvement?

I would like to see better scheduling in the next release of this solution. It would improve the solution if some of the features available in the console were implemented within the search. More things can be done in the console, while the… more»

Which solution did I use previously and why did I switch?

We evaluated Splunk and IBM QRadar before choosing this solution.

What other advice do I have?

This is a solution that is straightforward and easy to use. It is user-friendly and not complex. I would rate this solution an eight out of ten.

Which other solutions did I evaluate?

We did not use another solution prior to this one, although we have upgraded versions.
Real User
User at a government with 201-500 employees
Sep 25 2019

What do you think of ArcSight Logger?

What is our primary use case?

We use the on-premise deployment model. Our primary use case is for monitoring. 

What needs improvement?

In the next release, I want to see more intelligence. 

For how long have I used the solution?

I have been using Arcsight Logger for three years.

What do I think about the stability of the solution?

We haven't had any crashes or bugs. It is stable.

How are customer service and technical support?

Their technical support is good. 

How was the initial setup?

We have a support group that helps with this. The setup isn't easy. The deployment took a month. 

What other advice do I have?

I would rate it an eight out of ten. 

Articles

User Assessments By Topic About ArcSight Logger

Find out what your peers are saying about Micro Focus, Elastic, Splunk and others in Log Management. Updated: February 2020.
398,567 professionals have used our research since 2012.

ArcSight Logger Questions

What is ArcSight Logger?

HPE ArcSight Data Platform (ADP) offers a future-ready data solution that enriches data in real time and supports open standards for better threat detection. Using security data connectors, ADP collects data and enriches it in real-time to give analysts organized information that can be acted upon instantly.
Also known as
Micro Focus Arcsight Logger, HPE Arcsight Logger
ArcSight Logger customers
China Merchants Bank, Bank AlJazira, Banca Intesa
BUYER'S GUIDE
Download our free Log Management Report and find out what your peers are saying about Micro Focus, Elastic, Splunk, and more!