We performed a comparison between ArcSight Logger and USM Anywhere based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating."
"We haven't had any crashes or bugs. It is stable."
"The ESM use cases are the most valuable. It enables us to use the big data collection inside our company. We are able to create use cases for whatever it suits and I find that the most interesting part of any SIEM solution."
"I am impressed with the product's ability to pick up logs. It also has UEBA which has reduced the time to take charge of the events."
"Some of the most valuable features I really appreciate are the performance, how quick the solution is, and how easy it is to create a query."
"It's a brilliant log collection tool, and it can handle hundreds of thousands of servers in a single shot to ingest the data."
"The most valuable feature is the level of detail that you can see about certain events, even when they do not come up in the console."
"The technical support team is good...It is a scalable solution."
"It is my "security person" looking at irregularities and letting me know when something has occurred."
"Reports are customized, so you can present them to executives or engineers."
"The asset management functionality (active and passive scans) is also really important. You can't protect what you do not know about, so having an inventory of all your devices and software is critical to a security management program."
"Easy to use, scalable, stable, and very intuitive platform that provides protection against security threats."
"Any unusual behaviour, we can monitor. We have alerts set up to be sent when we receive signs of any unusual behaviour."
"The new cloud-based panel is excellent both for client review as well as for our SOC to review and respond to threats. It is much easier to configure and use than the previous solution from AlienVault."
"The other big selling feature for us was its integration capabilities with all the other security-based products."
"The USM is a work horse, no matter what devices or the number of logs we throw at it, the system processes them in real time, correlates the events, and alerts on only events that need human review."
"I had some latency issues for two months. I had to increase our storage capacity significantly to reduce the latency."
"We have had problems with archiving."
"We find that the search and access functionality is quite slow."
"The integration with other systems could be improved."
"It is really difficult to work in ArcSight Logger, as it is very slow."
"Using the ArcSight Logger dashboard is not particularly intuitive or efficient, so it is important to be trained in its use."
"The initial setup was a little bit complex."
"The solution must provide readymade connectors for different applications."
"It would be hard for any legitimate MSSP to use it."
"AT&T AlienVault USM can improve searchable data. It should be available for more than 90 days. If you need more than 90 days of data, you have to put a request and they give you raw data, which is not easy to search. A good addition would be to allow users to search data older than 90 days."
"Windows log collection works with HIDS, but documentation is sparse and confusing."
"Maybe logs are the problem, as the database query is too slow. If you want to search something, you need time to find it."
"The price of AT&T AlienVault USM could be reduced."
"Its reporting tools need improvements. It would be good if they can provide integration with other ticketing systems. Currently, we only have integration with Slack and Jira. It is also a bit slow, and its replication engine can be improved."
"The only room for improvement I can mention is the initial installation procedures. I found that the online installation instructions for the product were missing important details, they lacked necessary steps."
"The lack of mature functionality and expertise in any of those areas is a strong negative."
ArcSight Logger is ranked 29th in Log Management with 30 reviews while USM Anywhere is ranked 15th in Log Management with 113 reviews. ArcSight Logger is rated 7.8, while USM Anywhere is rated 8.4. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of USM Anywhere writes "Easy to use and affordable". ArcSight Logger is most compared with Splunk Enterprise Security, IBM Security QRadar, Elastic Security, Wazuh and LogRhythm SIEM, whereas USM Anywhere is most compared with Wazuh, AlienVault OSSIM, IBM Security QRadar, Splunk Enterprise Security and Microsoft Sentinel. See our ArcSight Logger vs. USM Anywhere report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.