ArcSight Room for Improvement

Karlo Luiten Crisc Cissp
Security Consultant at a tech services company with 5,001-10,000 employees
HPE ArcSight has a quite steep learning curve. If you get to know the product well, it is the most powerful product that I have worked with. It would be nice if new users could start using the product more easily. View full review »
Jordan French
Business Development Manager- Threat Management Services at a tech services company with 5,001-10,000 employees
The marketplace is a bit of a joke; steps should be taken to improve participation. Micro Focus desperately needs to improve their core offering rather than adding more "solutions" to the greater ArcSight portfolio. In other words, instead of selling a separate, slick, intuitive add-on (i.e., ArcSight Investigate), just make the console GUI better! Customer engagement and support could be improved across the board. View full review »
Luthfiana Hudaya
User at NOOSC Global
One of the problems for the security center is that there are many logs that need to be retrieved from a variety of network devices. The weakness in this system comes about because, with so many different logs, it is possible that the security analyst will lose information. I would like to have better support for wide-area data analytics. Ideally, I would like to see ArcSight have the ability to consume raw information, or raw data, without being dependent on a log file. View full review »
Find out what your peers are saying about Micro Focus, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: October 2019.
372,124 professionals have used our research since 2012.
Ssaurabh Kesari
Ex Senior Security Analyst and Onsite consultant at a tech services company with 1,001-5,000 employees
In certain cases, this product does have false positives, which the company should work on. They should also try to include business logic vulnerabilities in the SIEM tool. The analytics feature is not reliable and needs improvement for more detailed analysis. View full review »
ArcSight677
Senior Officer IT at a financial services firm with 201-500 employees
For somebody who is new and just starting with this product, they find it really tough. The software is quite big. It would be nice if the interface were more user-friendly, with, for example, a minimal number of tabs to navigate. A walkthrough that shows everything a normal user might do would be very helpful. I would like to see improvements on the Active Channel side of this solution. View full review »
Teguh Budyantara
IT Manager at Royal Cemerlang
In other products, I have found that they use some kind of GUI that is drag and drop. While in ArcSight they still use scripting. They should keep scripting because some people prefer scripting but they should have the option for those who prefer using drag and drop. They should do something similar to what Splunk is doing. They have Enterprise Security and ArcSight should include some use cases that concentrate on Enterprise Security. View full review »
Analyst0909
Analyst at a financial services firm with 10,001+ employees
They should make a user manual for the technical people. I would like for them to integrate mobile devices. Integration or any kind of functionality which will act as a substitute for IBM so that we can really track our mobile devices as well as look at SIEM. View full review »
Filip Simeonov
Information Security and Business Data Protection Specialist at a comms service provider with 1,001-5,000 employees
The security area has room for improvement. View full review »
Teguh Budyantara
IT Manager at Royal Cemerlang
The product should include a lot more predefined scenarios so the adopted company will have knowledge and a broader skill set in security and network. View full review »
Hong Jinki
Security Manager with 501-1,000 employees
There are several improvements that we would like to see, including: * Building a system based on a log collection (SOC) * A scenario for external encroachment * Operator training View full review »
Find out what your peers are saying about Micro Focus, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: October 2019.
372,124 professionals have used our research since 2012.
Sign Up with Email