We performed a comparison between ArcSight Analytics and Securonix Next-Gen SIEM based on real PeerSpot user reviews.
Find out in this report how the two User Entity Behavior Analytics (UEBA) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."This solution allows us to identify connections for all users."
"This solution makes it easy to create use cases, and it is easy to move queries from use cases to the report to the dashboard."
"One of the most valuable features is the alerts."
"The data collection and the integration with different products are valuable features."
"Allows multiple integrations with multiple systems in a stable and flexible fashion."
"The solution is easy to implement."
"ArcSight Analytics is used to get a deeper insight and threat analysis about the network."
"The ability to correlate different logs is the solution's most valuable feature."
"There aren't any positive aspects of the solution. It was a complete failure. There are no redeeming features."
"The solution is stable and scalable."
"Risk scoring was nice. We could exactly see which user had the highest risk score, and then we could pick it up and work on it."
"The UEBA functionality indicates a lot about behaviors that are not found through a traditional SIEM. We have exploited that more than anything since we started using it."
"The most valuable feature is that it works on user behavior and event rarities."
"The most valuable feature is what Securonix calls enrichment. Securonix is very powerful because of all the data it can process and automatically enrich. The actionable intelligence it provides is one of its benefits, due to the processing capacity it has."
"When we were looking for products for our security monitoring needs, our biggest requirement was that we wanted something based on machine-learning and analytics. If you go with rules, it can raise a lot of noise. Securonix, with its UEBA capability, had the best analytics use-cases."
"SNYPR has a bundle of features. It has the UEBA feature that tells you about the behavior of a person or entity. In the tool itself, there is an incident management feature, which is definitely valuable."
"Network integration is very crucial, and you need to have the knowledge to get it done."
"Currently, there are no compatible connectors for this solution, which means we have to depend on FlexConnectors."
"Their support team could be better."
"Inactive connections from servers, which are upgraded or downgraded within a VM, should be automatically revoked."
"I would like to see integration with automation products, such as Phantom Automation."
"The GUI interface is not always intuitive and easy for non-technical users to work with."
"The interactive dashboard is complicated and you need to have training in order to use it, so I think that it could be made easier to use."
"There is a GUI, but it is not complete and lacks functionality that needs to be performed using the console."
"It could be improved a little bit more for admin users. There should be more administrative options related to security for admin users. For example, for forensic purposes, the admin should be able to stop a specific user from erasing some information. I would be helpful in certain situations, such as during an internal fraud."
"One of the things they can improve on a little bit is the usability side, to make some things simpler... The tool does have a lot of knobs, you can turn a lot of things on and off and you can change things. Sometimes, it can become a little overwhelming. They should remove some confirmation options and make it simpler for the less mature customers and people who are still trying to grasp it."
"When they did upgrades or applied patches, sometimes, there was downtime, which required the backfill of data. There were times when we had to reach out and get a lot of things validated."
"The solution could provide more automation."
"Parsing needs to be improved. Every time we integrate a new, specific data source, we face a lot of problems in parsing, even for the old data source."
"A helpful feature would be an event export. A way to create more substantial summary reports would be nice."
"There is slight room for improvement in terms of the initial deployment. What I see is that Securonix is more focused on their product. They are expanding, in a big way, the number of customers. So there has to be a number of dedicated teams to jump on and speed up the deployment process."
"Regarding the analysis of security events on the SOC side, Securonix Next-Gen SIEM needs to improve its automation capabilities."
ArcSight Analytics is ranked 17th in User Entity Behavior Analytics (UEBA) with 15 reviews while Securonix Next-Gen SIEM is ranked 7th in Security Information and Event Management (SIEM) with 27 reviews. ArcSight Analytics is rated 7.0, while Securonix Next-Gen SIEM is rated 8.6. The top reviewer of ArcSight Analytics writes "It has improved our system and network policy monitoring". On the other hand, the top reviewer of Securonix Next-Gen SIEM writes "Spotter tool has helped us eliminate many hours required to manually create link analysis diagrams". ArcSight Analytics is most compared with Securonix UEBA, whereas Securonix Next-Gen SIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Microsoft Sentinel, LogRhythm SIEM and Exabeam Fusion SIEM. See our ArcSight Analytics vs. Securonix Next-Gen SIEM report.
We monitor all User Entity Behavior Analytics (UEBA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.