Try our new research platform with insights from 80,000+ expert users

ArcSight Analytics vs Securonix UEBA comparison

 

Comparison Buyer's Guide

Executive Summary
 

Categories and Ranking

ArcSight Analytics
Ranking in User Entity Behavior Analytics (UEBA)
14th
Average Rating
7.0
Reviews Sentiment
6.6
Number of Reviews
15
Ranking in other categories
No ranking in other categories
Securonix UEBA
Ranking in User Entity Behavior Analytics (UEBA)
15th
Average Rating
10.0
Number of Reviews
3
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of November 2024, in the User Entity Behavior Analytics (UEBA) category, the mindshare of ArcSight Analytics is 1.5%, up from 1.4% compared to the previous year. The mindshare of Securonix UEBA is 2.8%, down from 5.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
User Entity Behavior Analytics (UEBA)
 

Featured Reviews

Syed Ubaid Ali Jafri - PeerSpot reviewer
It has improved our system and network policy monitoring
They should improve on the following: * Timely resolution of issues and proper support once a ticket has been generated. * Systems appearing on the network which are not part of the domain controller. These should be monitored. * Inactive connections from servers, which are upgraded or downgraded within a VM, should be automatically revoked. * Logger monitoring should be separated from ESM monitoring. * Ability to integrate with cloud-based applications and monitor cloud-based events. * Ability to log and notify tailored rules via SMS/email. * Provide more ArcSight training and workshops.
reviewer1330110 - PeerSpot reviewer
Inbuilt detection algorithms, attentive technical support, and reasonably priced
In terms of scalability, we tested 180,000 events per second with no problems. It is not calculated based on the number of users. In terms of scalability, we calculate security platforms based on events per second. It can be one of the factors, but it is not the determining factor for scalability. Scalability is determined by the number of events that can be processed per second. When looking at enterprise users who are connected to the SOC. An organization can have 100,000 employees, contractors, or staff, but that is not how the same solutions are allocated. In that organization, based on assets, end users, endpoint network devices, and so on and so forth, the result will be events per second. In terms of the same tool usage, the same tool or Securonix tool will be used only by the number of SOC analysts who are monitoring the entire environment. Nobody else uses it. The data for all employees and staff in that organization is consolidated. That is one way of looking at it, and it is not proportional. The number of employees and security events per second is not a direct correlation factor. We are an MSSP. We use it based on the needs of our customers. We are not using it for our own internal purposes. Based on our customer's requirements we deploy it.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"This solution makes it easy to create use cases, and it is easy to move queries from use cases to the report to the dashboard."
"The solution is easy to implement."
"The data collection and the integration with different products are valuable features."
"The correlation engine is good."
"ArcSight Analytics is used to get a deeper insight and threat analysis about the network."
"One of the most valuable features is the alerts."
"This solution allows us to identify connections for all users."
"Allows multiple integrations with multiple systems in a stable and flexible fashion."
"Their user and entity behavior analysis algorithms are the most valuable features."
"One of the most valuable features is UEBA. It's pretty helpful for us to make sure of our thresholds for any of our clients."
"The feature dashboard is very well organized and intuitive to use. It organizes information on a timeline which is exactly what we need for insider threat future-analysis."
 

Cons

"I faced stability issues with Windows Operating System. The installed connectors hang if they remain idle for a long period of time."
"Network integration is very crucial, and you need to have the knowledge to get it done."
"It's a difficult product to navigate, it's complex."
"Currently, there are no compatible connectors for this solution, which means we have to depend on FlexConnectors."
"The customer service could be improved, and additional integrations with other APIs could be added."
"The reporting and the way it is worded needs to be improved in future releases. The dashboards are quite poorly designed."
"The interactive dashboard is complicated and you need to have training in order to use it, so I think that it could be made easier to use."
"Inactive connections from servers, which are upgraded or downgraded within a VM, should be automatically revoked."
"There is room for improvement in the algorithms. Although I said that we have a very solid starting point - our existing library is already very comprehensive - we constantly find areas where we need to develop new algorithms. That is common across platforms. Any vendor with a solid starting point would still need to continue to evolve."
"When compared to others, if you look at the integration aspect, I believe that some aspects of integration can be enhanced."
"The area that needs improvement is reporting."
 

Pricing and Cost Advice

"My customers pay a yearly licensing fee for ArcSight Analytics."
"ArcSight Analytics is a bit expensive compared with other tools in terms of licensing costs, training, hardware implementation, and support."
"The monthly licensing fee is around $20,000. There aren't any costs in addition to the standard licensing fee."
"This solution is expensive."
"In addition to the costs of standard licensing fees, there is the cost of labor for maintenance."
"It can range between $30,000 and $40,000 USD, and can go up to $500,000 and $600,000 USD."
"When compared to other solutions, it is less expensive."
"Their pricing is pretty comfortable. They will work with you on the cost."
report
Use our free recommendation engine to learn which User Entity Behavior Analytics (UEBA) solutions are best for your needs.
816,406 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Financial Services Firm
13%
Manufacturing Company
11%
Insurance Company
11%
Computer Software Company
11%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What do you like most about ArcSight Analytics?
ArcSight Analytics is used to get a deeper insight and threat analysis about the network.
What is your experience regarding pricing and costs for ArcSight Analytics?
My customers pay a yearly licensing fee for ArcSight Analytics.
What are the biggest differences between Securonix UEBA, Exabeam, and IBM QRadar?
It mostly depends on your use-cases and environment. Exabeam and Securonix have a stronger UEBA feature set, friendlier GUI and are not licensed based on capacity (amount of logs and information in...
 

Also Known As

ArcSight User Behavior Analytics, ArcSight UBA
Securonix User and Entity Behavior Analytics
 

Learn More

Video not available
 

Overview

 

Sample Customers

Information Not Available
Pfizer, McKesson, BNY Mellon, New York Life
Find out what your peers are saying about ArcSight Analytics vs. Securonix UEBA and other solutions. Updated: October 2024.
816,406 professionals have used our research since 2012.