How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
ArcSight logger was used for storing your logs, long-term, in a structured way. You can search in it, you can structure your data in it, and you can generate simple reports.
We focus mainly on the enterprise market where the customers have the requirement for log management and compliance. And most of the time we propose ESM along with the logger for SIEM requirements. We have multiple Logger customers here in Sri Lanka where we've implemented and maintained solutions for them.
We use this solution for archiving log feeds.
We use the on-premise deployment model. Our primary use case is for monitoring.
We primarily use the solution for monitoring all of our perimeter - from critical assets to less critical ones. It covers IT assets, networks, databases, servers, endpoints, etc.
We are a service provider and this solution is deployed on-premises for some of our customers. It is primarily used for firewall and Windows events.
We use the on-premise version of ArcSight Logger.
We have several uses for this solution like retention storage. We use Logger for some queries since we are in Talco industries. We use it for IT, MSISDN, and mobile phone. For the SM we have communication for the infrastructures including security. Plus, we use ESM for prevention and for a couple of cases we use it for fraud prevention and some for the VIP members check.