We performed a comparison between ArcSight Logger and Elastic Security based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The log digestion features from threat intelligence platforms like Recorded Future or Talos are valuable."
"It is one of the best products available in the market."
"Our return on investment for implementing ArcSight Logger over the past 12 months has been positive."
"We check a lot of logs in ArcSight Logger because we're running a massive database platform."
"It's a robust, mature product and you can do some really complex operations and analytics."
"The ability to customize the solution in great detail is its most valuable features. We can customize the use cases and also have the ability to do scripting. We can personalize our dashboard as well. The scalability the solution offers is quite impressive."
"The most valuable feature is the search capability, which is simple to use."
"It's an efficient solution."
"Stability-wise, I rate the solution a ten out of ten."
"Elastic has a lot of beats, such as Winlogbeat and Filebeat. Beats are the agents that have to be installed on the terminals to send the data. When we install beats or Elastic agents on every terminal, they don't overload the terminals. In other SIEM solutions such as Splunk or QRadar, when beats or agents are installed on endpoints, they are very heavy for the terminals. They consume a lot of power of the terminals, whereas Elastic agents hardly consume any power and don't overload the terminals."
"The most valuable features of Elastic Security are it is open-source and provides a high level of security."
"The most valuable thing is that this solution is widely used for work management and research. It's easy to jump into the security use case with the same technology."
"The feature that we have found the most valuable is scalability."
"The most valuable feature is the machine learning capability."
"Elastic is straightforward, easy to integrate, and highly customizable."
"Enables monitoring of application performance and the ability to predict behaviors."
"We have had problems with archiving."
"I would like to see better scheduling in the next release of this solution."
"You have limited reporting capabilities and I wouldn't choose ArcSight Logger for this purpose."
"The initial setup was a little bit complex."
"Using the ArcSight Logger dashboard is not particularly intuitive or efficient, so it is important to be trained in its use."
"The platform is quite expensive. They should reduce its cost."
"The next release should have AI capabilities."
"I had some latency issues for two months. I had to increase our storage capacity significantly to reduce the latency."
"There are connectors to gather logs for Windows PCs and Linux PCs, but if we have to get the logs from Syslog then we have to do it manually, and this should be automated."
"We had issues with scalability. Logstash was not scaling and aggregation was getting delayed. We moved to Fluentd making our stack from ELK to EFK."
"We'd like to see some more artificial intelligence capabilities."
"I would like more ways to manage permissions and restrict access to certain users."
"Email notification should be done the same way as Logentries does it."
"The problem with ELK is it's difficult to administer. When you have a problem, it can be very, very difficult to rebuild indexes."
"This type of monitoring is not very mature just yet. We need more real-time information in a way that's easier to manage."
"Improvements in Elastic Security could include refining and normalizing queries to make them more user-friendly, enhancing the user experience with better documentation, and addressing any latency issues."
ArcSight Logger is ranked 29th in Log Management with 30 reviews while Elastic Security is ranked 5th in Log Management with 58 reviews. ArcSight Logger is rated 7.8, while Elastic Security is rated 7.6. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". ArcSight Logger is most compared with Splunk Enterprise Security, IBM Security QRadar, Wazuh, LogRhythm SIEM and VMware Aria Operations for Logs, whereas Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel and IBM Security QRadar. See our ArcSight Logger vs. Elastic Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.