A good, but complex, SIEM tool
December 16, 2019
A good, but complex, SIEM tool
Score 6 out of 10
Vetted Review
Verified User
Overall Satisfaction with Arcsight Enterprise Security Manager (formerly HP Arcsight)
As a managed SOC provider, ArcSight is the base of our SOC team. We deploy event receivers (connectors and brokers) in each of our clients and the data is aggregated on our ESM. We then are able to monitor the client environment from our SOC and investigate incidents in the client environment.
- Really robust tool, as it can expand to millions of EPS.
- Support clustering.
- ArcSight is a really complex tool, but it's not that easy to implement and maintain.
- Troubleshooting issues on ArcSight can be hard if you have a large environment.
- ArcSight allows us to monitor all of our clients in a centralized environment.
- We had to hire two engineers just to maintain/troubleshoot the Arcsight environment.
Do you think Arcsight by OpenText delivers good value for the price?
Yes
Are you happy with Arcsight by OpenText's feature set?
Yes
Did Arcsight by OpenText live up to sales and marketing promises?
No
Did implementation of Arcsight by OpenText go as expected?
No
Would you buy Arcsight by OpenText again?
No