We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"The data collection and the integration with different products are valuable features."
"One of the most valuable features is the alerts."
"The two most valuable features of this solution are its stability and scalability."
"This solution makes it easy to create use cases, and it is easy to move queries from use cases to the report to the dashboard."
"This solution allows us to identify connections for all users."
"Allows multiple integrations with multiple systems in a stable and flexible fashion."
"The ability to correlate different logs is the solution's most valuable feature."
"The most valuable feature is the log monitoring."
"The feature dashboard is very well organized and intuitive to use. It organizes information on a timeline which is exactly what we need for insider threat future-analysis."
"[There is] complexity in maintaining it and managing it. It's not easy to use. It requires a lot of training."
"I would like to see orchestration."
"It's a difficult product to navigate, it's complex."
"There is a GUI, but it is not complete and lacks functionality that needs to be performed using the console."
"I would like to see integration with automation products, such as Phantom Automation."
"The interactive dashboard is complicated and you need to have training in order to use it, so I think that it could be made easier to use."
"The GUI interface is not always intuitive and easy for non-technical users to work with."
"The reporting and the way it is worded needs to be improved in future releases. The dashboards are quite poorly designed."
"There is room for improvement in the algorithms. Although I said that we have a very solid starting point - our existing library is already very comprehensive - we constantly find areas where we need to develop new algorithms. That is common across platforms. Any vendor with a solid starting point would still need to continue to evolve."
"The monthly licensing fee is around $20,000. There aren't any costs in addition to the standard licensing fee."
"In addition to the costs of standard licensing fees, there is the cost of labor for maintenance."
"It can range between $30,000 and $40,000 USD, and can go up to $500,000 and $600,000 USD."
Earn 20 points
ArcSight User Behavior Analytics offers enterprises the ability to monitor and detect from internal and external security threats and fraud.
Securonix User and Entity Behavior Analytics (UEBA) leverages sophisticated machine learning and behavior analytics to analyze and correlate interactions between users, systems, applications, IP addresses, and data. Light, nimble, and quick to deploy, Securonix UEBA detects advanced insider threats, cyber threats, fraud, cloud data compromise, and non-compliance. Built-in automated response playbooks and customizable case management work flows allow your security team to respond to threats quickly, accurately, and efficiently
ArcSight Analytics is ranked 11th in User Behavior Analytics - UEBA with 9 reviews while Securonix UEBA is ranked 9th in User Behavior Analytics - UEBA with 1 review. ArcSight Analytics is rated 6.6, while Securonix UEBA is rated 10.0. The top reviewer of ArcSight Analytics writes "A mature and well-regarded cyber security solution for big data, network security, and analytics". On the other hand, the top reviewer of Securonix UEBA writes "Algorithms surface the exact indicators we need for insider threat detection". ArcSight Analytics is most compared with , whereas Securonix UEBA is most compared with ArcSight Interset / Intelligence, IBM QRadar User Behavior Analytics, Rapid7 InsightIDR, ManageEngine Log360 and Exabeam.
See our list of best User Behavior Analytics - UEBA vendors.
We monitor all User Behavior Analytics - UEBA reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.