Worth having SIEM Arcsight
October 22, 2019
Worth having SIEM Arcsight
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with Arcsight Enterprise Security Manager (formerly HP Arcsight)
Arcsight is used as a whole. Every piece of technology can be integrated with Arcsight & it can be used for monitoring from a security point of view. We can keep track of trends of alerts & configure rules as per our requirements. Whitelisting also can be done which is a very good feature. An overall good tool to work with. Customized connectors can also be built for software/tech that is not supported by HP.
- Data management.
- Security rules.
- Reports can be fetched & scheduled.
- User & role management.
- Storage.
- User console is a bit heavy & takes time for loading.
- Flex development of connector.
- It's a good SIEM solution. Doesn't have much negative impact.
- Customization is the best part.
- Good reporting features.
- Does require good hardware configuration.
Multiple platforms are already supported by Arcsight. Support is good. Scripts can be used to get data from multiple threat intel sources & the same can be used in correlation rules to detect any suspicious activity. Reporting features are good & you can check any backdated information within new clicks.
Do you think Arcsight by OpenText delivers good value for the price?
Yes
Are you happy with Arcsight by OpenText's feature set?
Yes
Did Arcsight by OpenText live up to sales and marketing promises?
Yes
Did implementation of Arcsight by OpenText go as expected?
Yes
Would you buy Arcsight by OpenText again?
Yes