We just raised a $30M Series A: Read our story

Compare Arbor DDoS vs. RSA NetWitness Logs and Packets (RSA SIEM)

Cancel
You must select at least 2 products to compare!
Featured Review
Find out what your peers are saying about NETSCOUT, Cloudflare, Imperva and others in Distributed Denial of Service (DDOS) Protection. Updated: November 2021.
554,676 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"We use it not only for DDoS detection and protection, but we also use it for traffic analysis and capacity planning as well. We've also been able to extend the use of it to other security measures within our company, the front-line defense, not only for DDoS, but for any kind of scanning malware that may be picked up. It's also used for outbound attacks, which has helped us mitigate those and lower our bandwidth costs...""I like all the features together as a whole.""The most valuable features include the traffic categorization and control of the traffic. The filtering of the traffic is very precise. When you want to stop some traffic, you precisely stop that traffic.""The stability is okay and we have not encountered problems with the solution.""There were huge attacks in October, around 62 attacks at 30 gigabits per second, at one of our banks. We used Arbor DDoS to mitigate these attacks, and it performed great.""We have taken on the Arbor Cloud subscription, which is really useful because you secure yourself for anything beyond your current mitigation capacity. This is a really good feature of Arbor that is available.""Arbor DDoS is easy to use, provides effective blocking of DDoS attacks, and can be used for DNS, web, and main servers. Additionally, this solution is far easier to operate than others solutions, such as Fortinet DDoS.""It is fully mitigating the attacks. We've dealt with other ones where we didn't necessarily see that. The detection is very good. It's also very simple to use. Arbor is a single pane of glass, whereas with other solutions you might have a detection pane of glass and then have to go to a separate interface to deal with the mitigation. That single pane of glass makes it much simpler."

More Arbor DDoS Pros »

"Performance and reporting are very good.""The newer 11.5 version that my team is using has found it to have good mapping.""What we are mainly using are the RSA concentrator, RSA Decoder, Archiver, Broker, and Log Decoder.""The solution is really scalable for the high-end power, enterprise customer.""Offers a good wireless feature.""The most valuable features are the integration and ease of use.""The most valuable features are the packet decoder, log decoder, and concentrator.""The packet capture aspect of it is a valuable feature because it is quite different from a traditional SIEM solution that only carries out investigations based on captured logs."

More RSA NetWitness Logs and Packets (RSA SIEM) Pros »

Cons
"When it comes to some false positives, we need to tweak the system from time to time. There is room for improvement when it comes to the actual mitigation because of some false positives.""On the application layer, they could have a better distributed traffic flow. They could improve that a bit. For network data it is very effective, but the application layer can be improved.""Implementation could be better.""We need a SaaS model for the solution.""The regional support here in African could improve, such as marketing and account managers.""They should improve the reporting section and make it a little bit more detailed. I would like to have much better and more detailed reports.""The upgrade process is mildly complex requiring treatment of the custom embedded OS separately from the application. The correlation of the underling OS to the application version can be easily missed.""I would also like more visibility into their bad actor feeds, their fingerprint feeds. We try to be good stewards of the internet, so if there are attacks, or bad actors within our networks, if there were an easier way for us to find them, we could stop them from doing their malicious activity, and at the same time save money."

More Arbor DDoS Cons »

"Lots of competing products have vulnerability protection built into their products, and this solution would be improved by including that support.""The initial setup is complex. There are other solutions that are easier to implement.""It is not so easy to customize this product.""Technical support could be improved.""The user interface is a little bit difficult for new users and it needs to be improved.""Security needs improvement.""There are instances where you try to run the reports and then it does not give you the desired outcome.""The initial setup is very complex and should be simplified."

More RSA NetWitness Logs and Packets (RSA SIEM) Cons »

Pricing and Cost Advice
"The licensing of a complete Arbor solution, including fire-walling and unified site management, can get expensive.""Arbor is striking a good balance between pricing and what they deliver.""You need to find a way to get a good offering from Arbor by negotiating a price. That is the challenge.""Arbor DDoS is quite expensive, but all these solutions are expensive because they deal with confidential information.""We do not use the Arbor Cloud DDoS solution because it is too costly.""The price of this solution is a little high in the African market, it should be lower.""The solution is a bit costly if you're a small organization, but I think it's worth the price that they are charging.""There is room for improvement with the pricing. It is an expensive solution. The issue with the pricing is more the way it is built. Right now we're paying per router, and there's a limitation there. I would like to see bundle-pricing where there is an overall solution cost."

More Arbor DDoS Pricing and Cost Advice »

"Our license is for one year.""There is a licensing fee and the customer can choose whether he wishes this to be subscription-based or perpetual.""Many clients are not able to purchase the packet capability because there is a huge amount of data, and the cost depends on the number of EPS (Events per second), as well as the number of gigabytes of data per day.""We are on an annual license for the use of the solution."

More RSA NetWitness Logs and Packets (RSA SIEM) Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Distributed Denial of Service (DDOS) Protection solutions are best for your needs.
554,676 professionals have used our research since 2012.
Questions from the Community
Top Answer: Arbor DDoS is easy to use, provides effective blocking of DDoS attacks, and can be used for DNS, web, and main servers. Additionally, this solution is far easier to operate than others solutions, such… more »
Top Answer: The price of this solution is a little high in the African market, it should be lower.
Top Answer: They should improve the reporting section and make it a little bit more detailed. I would like to have much better and more detailed reports.
Top Answer: It would help if they could provide the malware analytics in the core package as that would make the cost more reasonable. Licensing is paid annually and I believe the cost is somewhere between 12,000… more »
Top Answer: I believe they could improve their support, there are often delays. The price of the solution could be reduced, it's very costly.
Ranking
Views
10,618
Comparisons
6,445
Reviews
12
Average Words per Review
1,090
Rating
8.7
Views
6,035
Comparisons
4,015
Reviews
12
Average Words per Review
510
Rating
7.8
Comparisons
Also Known As
Arbor Networks SP, Arbor Networks TMS, Arbor Cloud for ENT
RSA Security Analytics
Learn More
Overview

Arbor Networks, the security division of NETSCOUT, is driven to protect the infrastructure and ecosystem of the internet. It is the principle upon which we were founded in 2000; and remains the common thread that runs through all that we do today. Arbor’s approach is rooted in the study of network traffic. Arbor’s suite of visibility, DDoS protection and advanced threat solutions provide customers with a micro view of their network enhanced by a macro view of global internet traffic and emerging threats through our ATLAS infrastructure. Sourced from more than 300 service provider customers, ATLAS delivers intelligence based on insight into approximately 1/3 of global internet traffic. Supported by Arbor’s Security Engineering & Response Team (ASERT), smart workflows and rich user context, Arbor’s network insights help customers see, understand and solve the most complex and consequential security challenges facing their organizations.

If you’re relying on log data to detect and prevent cyber threats, you’re in trouble. Attackers increasingly evade detection of log-centric security and network monitoring tools. But logs combined with full packet, endpoint NetFlow data are proven to provide the essential details for early threat detection. Here’s a closer look at our solution.

Offer
Under Attack?
Invest in better cybersecurity for your business. Find out how Arbor DDoS can help protect your network from DDoS threats.
Learn more about RSA NetWitness Logs and Packets (RSA SIEM)
Sample Customers
Xtel Communications
Los Angeles World Airports, Reply
Top Industries
REVIEWERS
Comms Service Provider60%
Financial Services Firm15%
Computer Software Company10%
Security Firm5%
VISITORS READING REVIEWS
Comms Service Provider32%
Computer Software Company26%
Financial Services Firm7%
Government4%
REVIEWERS
Comms Service Provider31%
Financial Services Firm23%
Computer Software Company23%
Healthcare Company8%
VISITORS READING REVIEWS
Computer Software Company28%
Comms Service Provider22%
Financial Services Firm8%
Government7%
Company Size
REVIEWERS
Small Business33%
Midsize Enterprise20%
Large Enterprise48%
VISITORS READING REVIEWS
Small Business45%
Midsize Enterprise9%
Large Enterprise46%
REVIEWERS
Small Business27%
Midsize Enterprise14%
Large Enterprise59%
Find out what your peers are saying about NETSCOUT, Cloudflare, Imperva and others in Distributed Denial of Service (DDOS) Protection. Updated: November 2021.
554,676 professionals have used our research since 2012.

Arbor DDoS is ranked 1st in Distributed Denial of Service (DDOS) Protection with 12 reviews while RSA NetWitness Logs and Packets (RSA SIEM) is ranked 7th in Security Information and Event Management (SIEM) with 13 reviews. Arbor DDoS is rated 8.8, while RSA NetWitness Logs and Packets (RSA SIEM) is rated 7.8. The top reviewer of Arbor DDoS writes "With automatic flow specs we're able to drop that traffic before it even enters into our network". On the other hand, the top reviewer of RSA NetWitness Logs and Packets (RSA SIEM) writes "Economical with good technical support and is easily scalable". Arbor DDoS is most compared with Radware DefensePro, Cloudflare, Palo Alto Networks WildFire, Corero and AWS Shield, whereas RSA NetWitness Logs and Packets (RSA SIEM) is most compared with IBM QRadar, Splunk, RSA enVision, LogRhythm NextGen SIEM and AWS Security Hub.

We monitor all Distributed Denial of Service (DDOS) Protection reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.