ArcSight Pros and Cons

ArcSight Pros

Luthfiana Hudaya
User at NOOSC Global
For the typical malware or intrusion, this solution assists us by identifying the symptoms based on network traffic from the application servers.
View full review »
ArcSight677
Senior Officer IT at a financial services firm with 10,001+ employees
I think that the overall experience with this solution is good, but in particular, I think that the dashboards are quite interactive.
View full review »
Teguh Budyantara
IT Manager at Royal Cemerlang
When WannaCry attacks I can minimize the damage. My company had no protection at the time. We get alerts in ArcSight and then whenever a user got a copy of WannaCry and the WannaCry malware wants to connect to the mother ship, it alerts me in the ArcSight dashboard, and that helps us a lot. We then just go to the user and erase the malware.
View full review »
Find out what your peers are saying about Micro Focus, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: May 2020.
420,458 professionals have used our research since 2012.
Analyst0909
Analyst at a financial services firm with 10,001+ employees
We do consulting and I get feedback from our clients that the product really helped them with compliance, especially with GDPR.
View full review »
Filip Simeonov
Information Security and Business Data Protection Specialist at a comms service provider with 1,001-5,000 employees
The webpage algorithm is the most valuable feature because it was the fastest feature for searching the logs, events, and correlation.
View full review »
Utkarsh Srivastava
CISO and DPO at ValueLabs LLP
ArcSight gives us better visibility into threats that were unknown earlier.
View full review »
Hong Jinki
Security Manager at shinhan DS
This process has helped to improve our organization because we have centralized the intra-group security equipment logs.
View full review »

ArcSight Cons

Luthfiana Hudaya
User at NOOSC Global
The weakness in this system comes about because, with so many different logs, it is possible that the security analyst will lose information.
View full review »
ArcSight677
Senior Officer IT at a financial services firm with 10,001+ employees
It would be nice if the interface were more user-friendly, with, for example, a minimal number of tabs to navigate.
View full review »
Teguh Budyantara
IT Manager at Royal Cemerlang
In other products, I have found that they use some kind of GUI that is drag and drop. While in ArcSight they use still scripting. They should keep scripting because some people prefer scripting but they should have the option for those who prefer using drag and drop.
View full review »
Find out what your peers are saying about Micro Focus, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: May 2020.
420,458 professionals have used our research since 2012.
Analyst0909
Analyst at a financial services firm with 10,001+ employees
I would like for them to integrate mobile devices. Integration or any kind of functionality which will act as a substitute for IBM so that we can really track our mobile devices as well as look at SIEM.
View full review »
Filip Simeonov
Information Security and Business Data Protection Specialist at a comms service provider with 1,001-5,000 employees
The security area has room for improvement.
View full review »
Utkarsh Srivastava
CISO and DPO at ValueLabs LLP
We would like the ability to easily identify either unused resources or those that are being used sub-optimally.
View full review »
Hong Jinki
Security Manager at shinhan DS
There are several improvements that we would like to see, including: Building a system based on a log collection (SOC), a scenario for external encroachment, and Operator training.
View full review »
Find out what your peers are saying about Micro Focus, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: May 2020.
420,458 professionals have used our research since 2012.