Try our new research platform with insights from 80,000+ expert users
ArcSight Enterprise Security Manager (ESM) Logo

ArcSight Enterprise Security Manager (ESM) pros and cons

Vendor: OpenText
3.9 out of 5
6,333 followers
Post review

Pros & Cons summary

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

ArcSight ESM offers enhanced visibility into previously unknown threats, improving overall network security.
The solution provides robust log analysis capabilities and effective real-time monitoring for threat detection.
Users benefit from ArcSight ESM's advanced event correlation and the ability to customize rules and alerts to meet specific security needs.
ArcSight ESM integrates well with third-party products, enhancing its usability in diverse IT environments.
The stability and scalability of ArcSight ESM are well-regarded, ensuring reliable performance in various operational contexts.

CONS

ArcSight Enterprise Security Manager (ESM) needs a user-friendly cloud version.
ArcSight Enterprise Security Manager (ESM) requires improved integration with external threat intelligence and machine learning.
ArcSight Enterprise Security Manager (ESM) has high bandwidth consumption for local server pulls.
ArcSight Enterprise Security Manager (ESM) faces stability issues and occasional problems.
ArcSight Enterprise Security Manager (ESM) often experiences delays in support resolutions.
 

ArcSight Enterprise Security Manager (ESM) Pros review quotes

DB
Dec 8, 2022
Some of the benefits of using this solution are rapid correlation and near-time response on alerts.
Ramnesh  Dubey - PeerSpot reviewer
Feb 14, 2024
I would rate the ease of use for new users an eight out of ten, with ten being easy to use. It is a good tool.
AbhishekMishra - PeerSpot reviewer
Apr 27, 2022
Usability is the most valuable feature. The accessibility is quite good.
Learn what your peers think about ArcSight Enterprise Security Manager (ESM). Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,106 professionals have used our research since 2012.
Irfan Ali - PeerSpot reviewer
Feb 13, 2024
It gives better overall visibility. Before, we didn't have a unified system for managing security alerts. ArcSight introduced various alerts, giving us a better visibility of potential problems.
reviewer1370811 - PeerSpot reviewer
Aug 3, 2020
The product is quite mature. It's been around for a long time.
reviewer1501149 - PeerSpot reviewer
Feb 12, 2021
The solution is pretty stable.
Abbasi Poonawala - PeerSpot reviewer
Feb 14, 2022
The user interfaces are quite good and speedy.
Gaurav Ranade - PeerSpot reviewer
Sep 12, 2024
The most valuable feature is the correlation of different logs that are collected.
Anand-Dutta - PeerSpot reviewer
Jul 4, 2022
What I found most valuable in ArcSight Enterprise Security Manager (ESM) is its good integration with third-party products. The solution also has good core capabilities.
reviewer1751472 - PeerSpot reviewer
Dec 22, 2021
It is a very useful tool for intelligence building because it has many use cases and many rule sets.
 

ArcSight Enterprise Security Manager (ESM) Cons review quotes

DB
Dec 8, 2022
ArcSight is incredibly complex when configuring and deploying, and if your organization doesn't know what they want and what they need, ArcSight will be a challenge for them.
Ramnesh  Dubey - PeerSpot reviewer
Feb 14, 2024
The first limitation is with the ArcSight Data Storage Manager (ADSM). ArcSight's total capacity is currently capped at 12 TB. This becomes an issue if a customer needs a longer real-time data retention period, such as exceeding 90 days or reaching a year or even ten months. Increasing the disk space beyond 12 TB is not currently possible.
AbhishekMishra - PeerSpot reviewer
Apr 27, 2022
The visualization is not very good compared to Splunk.
Learn what your peers think about ArcSight Enterprise Security Manager (ESM). Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,106 professionals have used our research since 2012.
Irfan Ali - PeerSpot reviewer
Feb 13, 2024
The correlation engine effectively connects different events, significantly improving our detection reach. However, limitations exist with non-default alerts, where additional costs arise for integration.
reviewer1370811 - PeerSpot reviewer
Aug 3, 2020
The biggest requirement is that there is no cloud solution for this product yet. They need to create a cloud version. It's the biggest thing they can do to make the solution better.
reviewer1501149 - PeerSpot reviewer
Feb 12, 2021
The way that scaling is set up isn't very cost-effective.
Abbasi Poonawala - PeerSpot reviewer
Feb 14, 2022
Deployment typology could be improved. Difficult to scale across all the different lines of businesses.
Gaurav Ranade - PeerSpot reviewer
Sep 12, 2024
The only concern is that AI needs to be integrated
Anand-Dutta - PeerSpot reviewer
Jul 4, 2022
What could be improved in ArcSight Enterprise Security Manager (ESM) is its analytics feature. That feature should be more powerful and have more correlation in terms of AI/ML, though MicroFocus has done a good job in adding analytics to ArcSight Enterprise Security Manager (ESM) which has become a big draw to customers. What I'd like to see in the next release of the solution is the addition of AI/ML features.
reviewer1751472 - PeerSpot reviewer
Dec 22, 2021
It is quite complex and could use a better UI. So the improvement would be a simplification. It is pretty complicated to use. The architecture is not complex but the setup and use are.