The most valuable features are flexible setup of the architecture and large coverage of devices. Most devices deployed in enterprise environments are covered out-of-the-box by ArcSight. Unlike a few other solutions, the last-mile connectivity with ArcSight agent servers is free and flexible across all location deployments.
Solutions Architect- SIEM and Solutions with 1,001-5,000 employees
Most devices are covered out-of-the-box. I would like to see high-end, predictive analytics.
What is most valuable?
How has it helped my organization?
I have implemented it for a few organizations and they have benefited by early attack detection and usage of the right incident response mechanisms.
What needs improvement?
I would like to see high-end, predictive analytics. ArcSight ESM has some features that help in advanced correlation rules creation. However, intelligence around predictive analytics, understanding the current security posture and ability to map it with possible threats in the future is not something that is present in ArcSight at the moment.
For how long have I used the solution?
We’ve been using ArcSight for 3 years.
Buyer's Guide
ArcSight Enterprise Security Manager (ESM)
March 2025

Learn what your peers think about ArcSight Enterprise Security Manager (ESM). Get advice and tips from experienced pros sharing their opinions. Updated: March 2025.
842,672 professionals have used our research since 2012.
What do I think about the stability of the solution?
I have not had any issues with stability.
What do I think about the scalability of the solution?
I have not had any issues with scalability.
How are customer service and support?
I have never used technical support much, but will give it 3/5.
How was the initial setup?
The connectors are straightforward. The baselining is where the issues start.
What's my experience with pricing, setup cost, and licensing?
Licensing is straightforward, but the solution is fairly pricey.
Which other solutions did I evaluate?
We looked at QRadar and LogRhythm.
What other advice do I have?
Ensure your scope is very clear and so are the components.
Disclosure: I am a real user, and this review is based on my own experience and opinions.


Buyer's Guide
Download our free ArcSight Enterprise Security Manager (ESM) Report and get advice and tips from experienced pros
sharing their opinions.
Updated: March 2025
Product Categories
Security Information and Event Management (SIEM)Popular Comparisons
Microsoft Sentinel
Splunk Enterprise Security
IBM Security QRadar
Elastic Security
Rapid7 InsightIDR
Fortinet FortiSIEM
Sumo Logic Security
Securonix Next-Gen SIEM
Google Chronicle Suite
ManageEngine EventLog Analyzer
Buyer's Guide
Download our free ArcSight Enterprise Security Manager (ESM) Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?
- Exporting Nessus Data Logs to HP ArcSight ESM
- What Solution for SIEM is Best To Be NIST 800-171 Compliant?
- When evaluating Security Information and Event Management (SIEM), what aspect do you think is the most important feature to look for?
- What are the main differences between Nessus and Arcsight?
- What's The Best Way to Trial SIEM Solutions?
- Which is the best SIEM solution for a government organization?
- What is the difference between IT event correlation and aggregation?
- What Is SIEM Used For?
- RSA-EMC vs. other SIEM products?