ArcSight - Enterprise Security Manager Review
May 23, 2022
ArcSight - Enterprise Security Manager Review
Score 8 out of 10
Vetted Review
Verified User
Overall Satisfaction with Arcsight Enterprise Security Manager (formerly HP Arcsight)
I use ArcSight ESM to provide security monitoring services to several customers cutting across different verticals like Finance, Oil and Gas, Retail to name a few. Our company is one of the largest Managed Security Services provider in the region and we use multiple SIEM tools to cater to the ever-growing MSSP market and ArcSight Enterprise Security Manager is one of them.
- Industry standard log parsing using CEF (Common Event Format)
- Excellent correlation capabilities
- Good overall vendor support when it comes to supporting on operational issues
- Search times are very slow and this is due to their archaic CORR database, an immediate overhaul is needed
- New plug-ins related to niche features are not rolled out timely, for example feature rich dashboards
- Featured like Machine Learning and Artificial Intelligence which are industry talks are completely missing
- The overall impact is neutral since it balances the investment and returns.
- Since it is less expensive compared to its competitors, it is fairly suited in an environment with less expectations and less budget.
- It does not fit in at all where the security monitoring is at an elevated level and there are routing threat hunting exercises that need to be performed daily.
Do you think Arcsight by OpenText delivers good value for the price?
Yes
Are you happy with Arcsight by OpenText's feature set?
No
Did Arcsight by OpenText live up to sales and marketing promises?
No
Did implementation of Arcsight by OpenText go as expected?
Yes
Would you buy Arcsight by OpenText again?
No