Nuwan ChathurangaTeam Lead - Network and Security at Connex Information Technologies
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The two most valuable features of this solution are its stability and scalability."
"This solution makes it easy to create use cases, and it is easy to move queries from use cases to the report to the dashboard."
"This solution allows us to identify connections for all users."
"Allows multiple integrations with multiple systems in a stable and flexible fashion."
"The ability to correlate different logs is the solution's most valuable feature."
"The most valuable feature is the log monitoring."
"The features I have found most valuable are it capabilities for behavioral analytics and anomaly detection."
"The solution's most valuable features are the graphical user interface and the reporting."
"It has a lot of features. It has file integration monitoring."
"The most valuable features are file activity monitoring and registry activity monitoring."
"There is a GUI, but it is not complete and lacks functionality that needs to be performed using the console."
"I would like to see integration with automation products, such as Phantom Automation."
"The interactive dashboard is complicated and you need to have training in order to use it, so I think that it could be made easier to use."
"The GUI interface is not always intuitive and easy for non-technical users to work with."
"The reporting and the way it is worded needs to be improved in future releases. The dashboards are quite poorly designed."
"ArcSight is not a user-friendly solution and the interface needs to be improved."
"ArcSight's features that can be improved include anything related to its visualization capabilities and user friendliness."
"The search feature needs to be improved."
"It should have better mitigation with other solutions and be tightly integrated with other solutions. It has to be improved."
"It would be helpful if there were more guidance provided for integrating with unsupported devices."
"It can range between $30,000 and $40,000 USD, and can go up to $500,000 and $600,000 USD."
"Licensing is on a yearly basis. It's not expensive compared to its competitors."
"The pricing is nice when compared to other products in the industry."
ArcSight User Behavior Analytics offers enterprises the ability to monitor and detect from internal and external security threats and fraud.
LogRhythm UEBA enables your security team to quickly and effectively detect, respond to, and neutralize both known and unknown threats. Providing evidence-based starting points for investigation, it employs a combination of scenario analytics techniques (e.g., statistical analysis, rate analysis, trend analysis, advanced correlation), and both supervised and unsupervised machine learning (ML).
ArcSight Analytics is ranked 8th in User Behavior Analytics - UEBA with 7 reviews while LogRhythm Enterprise UEBA is ranked 15th in User Behavior Analytics - UEBA with 3 reviews. ArcSight Analytics is rated 7.4, while LogRhythm Enterprise UEBA is rated 6.0. The top reviewer of ArcSight Analytics writes "A mature and well-regarded cyber security solution for big data, network security, and analytics". On the other hand, the top reviewer of LogRhythm Enterprise UEBA writes "Good file and registry activity monitoring capability, and the support team is helpful". ArcSight Analytics is most compared with Securonix UEBA and Varonis Datalert, whereas LogRhythm Enterprise UEBA is most compared with Darktrace, Cisco Stealthwatch, Splunk User Behavior Analytics, Trend Micro Deep Discovery Inspector and Vectra AI. See our ArcSight Analytics vs. LogRhythm Enterprise UEBA report.
See our list of best User Behavior Analytics - UEBA vendors.
We monitor all User Behavior Analytics - UEBA reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.