We performed a comparison between ArcSight Logger and Elastic Security based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The log digestion features from threat intelligence platforms like Recorded Future or Talos are valuable."
"The ESM use cases are the most valuable. It enables us to use the big data collection inside our company. We are able to create use cases for whatever it suits and I find that the most interesting part of any SIEM solution."
"The solution provides information about the risk factors."
"In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating."
"ArcSight's robustness is its most valuable feature."
"The ability to customize the solution in great detail is its most valuable features. We can customize the use cases and also have the ability to do scripting. We can personalize our dashboard as well. The scalability the solution offers is quite impressive."
"The most valuable feature is the search capability, which is simple to use."
"It is one of the best products available in the market."
"It's not very complicated to install Elastic."
"The most valuable features are the speed, detail, and visualization. It has the latest standards."
"The most valuable feature is the scalability. We are in Indonesia, more engineers understand Elastic Security here. So it is easier to scale and also develop. In features, the discovery to query all the logs is very important to us. It is very easy, especially with the query function and the feature to generate alerts and create tools. Sometimes we use the alert security dashboard to monitor our clients."
"Elastic is straightforward, easy to integrate, and highly customizable."
"We've found the initial setup to be quite straightforward."
"The solution is quite stable. The performance has been good."
"What customers found most valuable in Elastic Security feature-wise is the search capability, in particular, the way of writing the search query and the speed of searching for results."
"ELK Logstash is easy and fast, at least for the initial setup with the out of box uses."
"I would like to see better scheduling in the next release of this solution."
"The next release should have AI capabilities."
"You have limited reporting capabilities and I wouldn't choose ArcSight Logger for this purpose."
"We have had problems with archiving."
"It is really difficult to work in ArcSight Logger, as it is very slow."
"The console in older versions is not user-friendly."
"The integration with other systems could be improved."
"The platform is quite expensive. They should reduce its cost."
"The interface could be more user friendly because it is sometimes hard to deal with."
"Its documentation should be a bit better. I have to spend at least a couple of hours to find the solution for a simple thing. When we buy Elastic, training is not included for free with Elastic. We have to pay extra for the training. They should include training in the price."
"The biggest challenge has been related to the implementation."
"There should be a simulation environment to check whether my Elastic implementation is functioning perfectly fine. Other solutions have their own Android and iOS applications that I can install on my mobile so that I am continuously connected to the SIEM."
"The solution does not have a UI and this is one of the reasons we are looking for another solution."
"It's a little bit of a learning curve to understand the logic of searching for things and trying to find what you're looking for in Elastic Security."
"We had issues with scalability. Logstash was not scaling and aggregation was getting delayed. We moved to Fluentd making our stack from ELK to EFK."
"I would like more ways to manage permissions and restrict access to certain users."
ArcSight Logger is ranked 28th in Log Management with 31 reviews while Elastic Security is ranked 5th in Log Management with 59 reviews. ArcSight Logger is rated 7.8, while Elastic Security is rated 7.6. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of Elastic Security writes "A stable and scalable tool that provides visibility along with the consolidation of logs to its users". ArcSight Logger is most compared with Splunk Enterprise Security, IBM Security QRadar, Wazuh, LogRhythm SIEM and VMware Aria Operations for Logs, whereas Elastic Security is most compared with Wazuh, Splunk Enterprise Security, Microsoft Sentinel, IBM Security QRadar and Rapid7 InsightIDR. See our ArcSight Logger vs. Elastic Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
