Arcsight Enterprise Security Manager (ESM)
Arcsight Enterprise Security Manager (formerly HP Arcsight)
Overview
Recent Reviews
Popular Features
View all 7 featuresEvent and log normalization/management (8)
7.8
78%
Custom dashboards and workspaces (8)
7.0
70%
Video Reviews
Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of Arcsight Enterprise Security Manager (ESM), and make your voice heard!
Pricing
View all pricingEntry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting / Integration Services
Would you like us to let the vendor know that you want pricing?
15 people want pricing too
Alternatives Pricing
Features Scorecard
Security Information and Event Management (SIEM)
7.9
79%
Product Details
What is Arcsight Enterprise Security Manager (ESM)?
Arcsight Enterprise Security Manager (formerly HP Arcsight) is security information and event management (SIEM) software, acquired from Hewlett-Packard Enterprise by Micro Focus and offered through the company's CyberRes division.
Arcsight Enterprise Security Manager (ESM) Technical Details
Operating Systems | Unspecified |
---|---|
Mobile Application | No |
Comparisons
View all alternativesCompare with
Frequently Asked Questions
What is Arcsight Enterprise Security Manager (ESM)?
Arcsight Enterprise Security Manager (formerly HP Arcsight) is security information and event management (SIEM) software, acquired from Hewlett-Packard Enterprise by Micro Focus and offered through the company's CyberRes division.
What is Arcsight Enterprise Security Manager (ESM)'s best feature?
Reviewers rate Integration with Identity and Access Management Tools highest, with a score of 8.7.
Who uses Arcsight Enterprise Security Manager (ESM)?
The most common users of Arcsight Enterprise Security Manager (ESM) are from Enterprises (1,001+ employees) and the Computer & Network Security industry.
Reviews and Ratings
 (21)
Reviews
(1-4 of 4)- Popular Filters
Companies can't remove reviews or game the system. Here's why
December 16, 2019
A good, but complex, SIEM tool
As a managed SOC provider, ArcSight is the base of our SOC team. We deploy event receivers (connectors and brokers) in each of our clients and the data is aggregated on our ESM. We then are able to monitor the client environment from our SOC and investigate incidents in the client environment.
- Really robust tool, as it can expand to millions of EPS.
- Support clustering.
- ArcSight is a really complex tool, but it's not that easy to implement and maintain.
- Troubleshooting issues on ArcSight can be hard if you have a large environment.
December 10, 2019
ArcSight - A better insight security solution
Arcsight is being used in the security department in our organization. It is used as a SIEM (Security Event and Incident Manager) tool in our organization. As any other SIEM tool, we used Arcsight Enterprise security manager for managing security on all of our endpoint devices, It was one of the best and demanding tool at the time we have implemented in our organization and provide a number of features which help us to have a quick check and easy handling of security event and incidents on all the endpoint devices. To be specific, Arcsight Enterprise security manager is used for integrating all endpoint safety management tool be it IPS, IDS, Firewall, Anti-virus etc. and help to reduce the redundant and false-positive alerts which may not be useful from the security perspective and help us to have a quick check of a lot devices in an effective way.
It also help us to check the complete activity that has been perform on any of the endpoint device integrated with it, creating own rule and filters and creating active channel dashboards that help us to keep a vigil watch in case any big event happens on any devices.
It also help us to check the complete activity that has been perform on any of the endpoint device integrated with it, creating own rule and filters and creating active channel dashboards that help us to keep a vigil watch in case any big event happens on any devices.
- Integration with smart logger and ESM to create rules and easy management of the same.
- Easy integration with all end point security management tool(IPS/IDS, Firewall, Anti-Virus) and their consolidated output at a single place to effectively rectifying true and false positives.
- There is a storage problem that should be improved for better management.
- There is need to improve the search mechanism.
October 22, 2019
Worth having SIEM Arcsight
Arcsight is used as a whole. Every piece of technology can be integrated with Arcsight & it can be used for monitoring from a security point of view. We can keep track of trends of alerts & configure rules as per our requirements. Whitelisting also can be done which is a very good feature. An overall good tool to work with. Customized connectors can also be built for software/tech that is not supported by HP.
- Data management.
- Security rules.
- Reports can be fetched & scheduled.
- User & role management.
- Storage.
- User console is a bit heavy & takes time for loading.
- Flex development of connector.
December 17, 2018
Arcsight needs to up its game.
Arcsight is currently being used in our SIOC department for the whole organization. It is a well rounded tool for standard event detection, logging, normalization and correlation. It does a fairly good job at freeing up analysts by providing real time correlation and helping detect events fast so they don't waste time hunting for a needle in a haystack.
- Good integration with IT infrastructure like ticketing systems, web applications and threat feeds etc.
- Real time correlation works very well.
- Dashboards and visualization is done well.
- Even though integration is good but not complete yet as there are a lot of new popular apps which Arcsight can't integrate with natively.
- UI can be improved.