Try our new research platform with insights from 80,000+ expert users

ArcSight Enterprise Security Manager (ESM) vs Exabeam comparison

OpenText and Exabeam are both solutions in the Security Information and Event Management (SIEM) category. OpenText is ranked #14 with an average rating of 7.1, while Exabeam is ranked #12 with an average rating of 7.7. OpenText holds a 1.2% mindshare in SIEM, compared to Exabeam’s 1.1% mindshare. Additionally, 88% of OpenText users are willing to recommend the solution, compared to 70% of Exabeam users who would recommend it.
ArcSight Enterprise Securit...
Read 96 ArcSight Enterprise Security Manager (ESM) reviews
  • 3,830 Views
  • 1,817 Comparison Views
88% willing to recommend
Exabeam
Read 17 Exabeam reviews
  • 3,282 Views
  • 1,701 Comparison Views
70% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

ArcSight Enterprise Security Manager (ESM) and Exabeam are both market leaders in the security information and event management (SIEM) space. ArcSight ESM seems to have the upper hand with its robust feature set and reliability, while Exabeam is appreciated for its advanced analytics and user behavior insights.

Features: ArcSight ESM is valued for its extensive threat detection capabilities, flexibility, and integration with other tools. Exabeam is praised for its advanced analytics, user behavior tracking, and automation features.

Room for Improvement: Users of ArcSight ESM note the complexity of setting up and managing the system, along with a steep learning curve. Improvements in scalability and simplified configuration are also cited. For Exabeam, feedback often points to the need for enhanced documentation and support resources, as well as occasional issues with false positives in its analytics.

Ease of Deployment and Customer Service: ArcSight ESM's deployment is often described as challenging and time-consuming, with significant resources needed for configuration and ongoing management. Customer service is generally rated positively but could be more responsive. Exabeam offers a smoother deployment experience, aided by clearer documentation and a more intuitive setup process. Users report satisfactory customer support with prompt responses.

Pricing and ROI: ArcSight ESM is perceived as more expensive, with higher setup and operational costs. However, its comprehensive features justify the investment for large enterprises. Exabeam's pricing is seen as more competitive, providing significant value with its advanced analytics and automation capabilities, leading to a notable ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed ArcSight Enterprise Security Manager (ESM) vs. Exabeam Report (Updated: October 2024).
Buyer's Guide
ArcSight Enterprise Security Manager (ESM) vs. Exabeam
October 2024
Download the complete report
Helped 814,763 peers since 2012
 

Categories and Ranking

ArcSight Enterprise Securit...
Ranking in Security Information and Event Management (SIEM)
14th
Average Rating
7.8
Number of Reviews
96
Ranking in other categories
No ranking in other categories
Exabeam
Ranking in Security Information and Event Management (SIEM)
12th
Average Rating
7.8
Reviews Sentiment
6.0
Number of Reviews
17
Ranking in other categories
User Entity Behavior Analytics (UEBA) (2nd), Security Incident Response (5th), Threat Intelligence Platforms (8th), Security Orchestration Automation and Response (SOAR) (8th), AI-Powered Cybersecurity Platforms (5th)
 

Mindshare comparison

As of November 2024, in the Security Information and Event Management (SIEM) category, the mindshare of ArcSight Enterprise Security Manager (ESM) is 1.2%, down from 1.8% compared to the previous year. The mindshare of Exabeam is 1.1%, down from 1.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
 

Featured Reviews

Ramnesh Dubey - PeerSpot reviewer
Feb 14, 2024
Allows for monitoring logs according to industry standards within ESM but has a total capacity capped at 12 TB, limiting real-time data retention periods
The first limitation is with the ArcSight Data Storage Manager (ADSM). ArcSight's total capacity is currently capped at 12 TB. This becomes an issue if a customer needs a longer real-time data retention period, such as exceeding 90 days or reaching a year or even ten months. Increasing the disk space beyond 12 TB is not currently possible. So, increasing the storage capacity is one area for improvement. Additionally, the real-time data retention is limited due to the 12 TB restriction. Depending on the Events Per Second (EPS) you receive, you might only be able to retain data for seven to ten days. Overall, the 12 TB limit is the main issue we face in terms of maximizing real-time data storage. Moreover, there are a few improvements I would like to see in future releases. My main suggestion for ArcSight is to simplify the deployment process. Currently, the installation process is quite complex. There are various components involved, including transformations, multiple installations, and containerization for various components. Ideally, I'd recommend that ArcSight allow the entire installation, including the ESM and database, to be completed within a single unified setup process for a streamlined experience. Additionally, having readily available and well-organized documentation for the step-by-step installation process would be incredibly helpful. I would also like to see better support.
Read full review
Stephen-Armstrong - PeerSpot reviewer
Sep 11, 2024
The SIEM provides a user-friendly UI experience
I use Exabeam for it's end-to-end detection and it's user event behavioural Analytics, i find it a useful SIEM for investigating unusual behaviour by clicking into an incident from the main dashboard. From here we can go into the details of the incident, which are shown by the individual risk…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The webpage algorithm is the most valuable feature because it was the fastest feature for searching the logs, events, and correlation."
"It gives better overall visibility. Before, we didn't have a unified system for managing security alerts. ArcSight introduced various alerts, giving us a better visibility of potential problems."
"The solution offers very good monitoring."
"SmartConnector: Normalization parses raw logs and converts them into CEF (common event format). This is the core of the product."
"I am satisfied with the solution's stability."
"​It is a vital tool for live monitoring and helps us to understand the traffic alerts of any major issue on the network, thereby reducing hacking attempts."
"What I found most valuable in ArcSight Enterprise Security Manager (ESM) is its good integration with third-party products. The solution also has good core capabilities."
"For the typical malware or intrusion, this solution assists us by identifying the symptoms based on network traffic from the application servers."
More ArcSight Enterprise Security Manager (ESM) pros
"The way it can connect with AWS is very useful, and the integrations are pretty good."
"It is user-friendly and quite simple to use."
"The UI was very clean."
"Exabeam is very easy to use, with a straightforward platform and workflow, unlike other tools that require more expertise."
"The setup is not difficult. It was easy."
"The solution's automation capabilities are great."
"The user interface and the timelines they use are the most valuable features. The price model is very simple so that one can understand it easily and there are no surprises within it."
"The ThreatHunter in Advanced Analytics is the most valuable. It helps analyze compromised assets and provides analysis for any entity within my client's environment."
More Exabeam pros
 

Cons

"It is quite complex and could use a better UI. So the improvement would be a simplification. It is pretty complicated to use. The architecture is not complex but the setup and use are."
"ArcSight ESM needs to improve performance, user interface, and automation."
"The initial setup could be more straightforward."
"ArcSight is incredibly complex when configuring and deploying, and if your organization doesn't know what they want and what they need, ArcSight will be a challenge for them."
"The product should include a lot more predefined scenarios so the adopted company will have knowledge and a broader skill set in security and network."
"The user interface of ArcSight Enterprise Security Manager could improve. It is not very good. Additionally, they could integrate the web interface better."
"The centralized dashboard for the hybrid cloud environment needs to be more focused. It needs to be redefined because it's missing most of the information. It should be a little bit easy to use. Currently, integration with various applications and connectors is not that easy. Deployment is easy, but integration is not that easy. ArcSight also has a very high bandwidth consumption to pull the local servers. It should have some kind of better process or ability to transfer files from on-premises to the cloud, from the cloud to on-premises, and from a cloud to another cloud."
"When we need to consume old events, we have to wait for a long time. ArcSight should improve the database capability to reply to queries faster. It would also be interesting if they implemented network visibility. For example, they could add a feature like NetWitness with a model just for looking through the packets."
More ArcSight Enterprise Security Manager (ESM) cons
"We had a large volume right from the beginning and they weren't quite prepared for that. That's something that they should think about when it comes to customers that have a large volume to start off with."
"We still have questions surrounding hardware deployment."
"They should provide detailed information about detecting phishing emails."
"They need to focus on more of the MITRE ATT&CK Framework and coverage. They claim they cover about 70 to 80%. I'm not sure if it's really quite that much, however."
"Exabeam's reporting dashboard could have included a filtering option to filter by the most recent detection."
"The initial setup of Exabeam Fusion SIEM is complex because it needs to integrate with the SIEM solution, but after this is complete it is straightforward."
"The organzation is rigid and not flexible in the way they operate"
"One area for the solution's improvement is integration capabilities, particularly out-of-the-box integration which sometimes requires additional professional services."
More Exabeam cons
 

Pricing and Cost Advice

"ArcSight is pretty expensive compared with its competitors. I believe that is fine as it provides value."
"HPE ArcSight pricing might be more expensive than other SIEM solutions, but in my opinion it has powerful features and great flexibility in developing complex use cases."
"The product licenses are inexpensive."
"ArcSight can be a little bit expensive because of the area that we work in and the cost. Licensing is mostly on a yearly basis, not monthly."
"We're paying a fee for an MSSP, and the cost of the total cost of ArcSight ESM was approximately three to four million dollars a year. The price was less than similar solutions. We did not have additional fees."
"Pricing is good, I'd rate the pricing a seven out of ten, with ten being low price. It's better than Splunk and IBM QRadar because their pricing is based on EPS."
"​It is best to be an institutional buyer and directly contact the sales team, as they can provide over-the-top discounts for bulk orders.​"
"There is a license required for this solution."
More ArcSight Enterprise Security Manager (ESM) pricing and cost advice
"Exabeam Fusion SIEM's pricing is reasonable."
"The solution is expensive."
"Exabeam is not a cheap solution."
"The platform is not extremely expensive compared to its direct competitors; I would rate its pricing around six out of ten."
"They have a great model for pricing that can be based either on user count or gigabits per day."
"There is an annual license required to use Exabeam Fusion SIEM. The price of the solution should be reduced."
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
814,763 professionals have used our research since 2012.
 

Comparison Review

VS
Jun 28, 2015
Qradar vs. ArcSight
Continuing with the SIEM posts we have done at Infosecnirvana, this post is a Head to head comparison of the two Industry leading SIEM products in the market – HP ArcSight and IBM QRadar Both the products have consistently been in the Gartner Leaders Quadrant. Both HP and IBM took over niche SIEM…
Read full review
 

Top Industries

By visitors reading reviews
Financial Services Firm
19%
Computer Software Company
14%
Manufacturing Company
10%
Government
10%
Computer Software Company
15%
Financial Services Firm
12%
Manufacturing Company
9%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?
In my market, a lot of financial companies had or have an ArcSight installation. Just because in former times it was pretty good. Now a lot of them are looking for a more effective solution due to ...
See all answers
What do you like most about ArcSight Enterprise Security Manager (ESM)?
We utilize ArcSight ESM for real-time threat detection in our organization. We have custom rules that we've developed on top of the WAN services, along with scheduled licensing activities.
See all answers
What is your experience regarding pricing and costs for ArcSight Enterprise Security Manager (ESM)?
ArcSight is expensive.
See all answers
What are the biggest differences between Securonix UEBA, Exabeam, and IBM QRadar?
It mostly depends on your use-cases and environment. Exabeam and Securonix have a stronger UEBA feature set, friendlier GUI and are not licensed based on capacity (amount of logs and information in...
See all answers
What do you like most about Exabeam Fusion SIEM?
The solution's initial setup process is easy.
See all answers
What is your experience regarding pricing and costs for Exabeam Fusion SIEM?
I do not have much information about the pricing. However, I am aware that Exabeam is cheaper than Palo Alto based on discussions in meetings.
See all answers
 

Comparisons

Splunk Enterprise Security vs ArcSight Enterprise Security Manager (ESM) Logo
Splunk Enterprise Security vs ArcSight Enterprise Security Manager (ESM)
Compared 23% of the time
Trellix ESM vs ArcSight Enterprise Security Manager (ESM) Logo
Trellix ESM vs ArcSight Enterprise Security Manager (ESM)
Compared 13% of the time
IBM Security QRadar vs ArcSight Enterprise Security Manager (ESM) Logo
IBM Security QRadar vs ArcSight Enterprise Security Manager (ESM)
Compared 9% of the time
Elastic Security vs ArcSight Enterprise Security Manager (ESM) Logo
Elastic Security vs ArcSight Enterprise Security Manager (ESM)
Compared 8% of the time
More ArcSight Enterprise Security Manager (ESM) Competitors
Cortex XSIAM vs Exabeam Logo
Cortex XSIAM vs Exabeam
Compared 10% of the time
Splunk Enterprise Security vs Exabeam Logo
Splunk Enterprise Security vs Exabeam
Compared 9% of the time
Palo Alto Networks Cortex XSOAR vs Exabeam Logo
Palo Alto Networks Cortex XSOAR vs Exabeam
Compared 9% of the time
Splunk User Behavior Analytics vs Exabeam Logo
Splunk User Behavior Analytics vs Exabeam
Compared 9% of the time
IBM Security QRadar vs Exabeam Logo
IBM Security QRadar vs Exabeam
Compared 8% of the time
More Exabeam Competitors
 

Product Reports

Buyer's Guide
ArcSight Enterprise Security Manager (ESM)
November 2024
ArcSight Enterprise Security Manager (ESM) reportDownload ArcSight Enterprise Security Manager (ESM) product report
Buyer's Guide
Exabeam
November 2024
Exabeam reportDownload Exabeam product report
 

Also Known As

Micro Focus ArcSight, HPE ArcSight, ArcSight
No data available
 

Learn More

OpenText
Exabeam
 

Overview

ArcSight Enterprise Security Manager (ESM) is a powerful SIEM solution for analyzing, collecting, correlating, and reporting on security event information. ArcSight ESM analyzes information from all of your data sources while helping your organization maintain high security. In addition, the solution is very customizable and enables users to create their own company-specific rule sets to automatically trigger instant alerts.

ArcSight Enterprise Security Manager (ESM) Features

  • Real-time threat detection
  • Visualization and reporting capabilities
  • Patented log management
  • Personalized dashboards
  • Scalable event monitoring
  • Seamless integration with your existing SOC tools
  • Behavior profiling
  • Data and user monitoring
  • Application monitoring
  • Analytics
  • Deployment/support simplicity

ArcSight Enterprise Security Manager (ESM) Benefits

Some of the benefits of using ESM include:

  • Real-time information: ArcSight ESM can correlate data from any source in real-time to detect incidents before they become a breach.
  • Compliance: Optional compliance packs enable packaged reports for PCI, SOX, and IT Governance.
  • Security analytics: With ArcSight ESM, you can build and maintain a security operation center (SOC) through big data security analytics.
  • Integration: ArcSight ESM allows you to integrate SOC with network operations, service desk, CMDB, business intelligence, Hadoop, email security, application security, threat feeds, and more. 
  • Speed: ArcSight ESM provides excellent speed of event collection with patented log management tools. 
  • Advanced detection: ArcSight ESM can detect unusual or unauthorized activities as they occur, preventing business disruptions. 
  • Decrease threat exposure: By implementing ArcSight ESM, you reduce threat exposure because the solution detects threats in real time.  
  • Operational efficiency: ArcSight ESM makes it possible for you to automate responses with ArcSight’s native SOAR, which saves your organization time, and therefore increases your operational efficiency.

Reviews from Real Users

Below are some reviews and helpful feedback written by ArcSight Enterprise Security Manager (ESM) users.

A Head of Professional Services at a computer software company says, “The simplicity of the solution is the most valuable aspect of the product. The product is quite mature. It's been around for a long time. The integration is easy for the most part.”

A Managing partner at a tech services company states that the solution is “Good at consolidating logs, fairly stable, and can scale.” 

PeerSpot user Abbasi P., Vice President Derivatives Ops IT at a financial services firm, explains, “The user interfaces are quite good and speedy, and I like the consoles too. The typology and the setup are also good.”

A Chief Technological Officer at a tech services company says, "It is a very useful tool for intelligence building because it has many use cases and many rule sets."

An Associate Vice President at a consumer goods company comments, “We primarily use the solution for its technology including its independent logs, and those types of things. The solution offers very good monitoring. The product's log management and event management capabilities are excellent. There are a lot of really good analytical components. It helps us focus on analysis.”

Exabeam Fusion is a cloud-delivered solution that that enables you to:

-Leverage turnkey threat detection, investigation, and response
-Collect, search and enhance data from anywhere
-Detect threats missed by other tools, using market-leading behavior analytics
-Achieve successful SecOps outcomes with prescriptive, threat-centric use case packages
-Enhance productivity and reduce response times with automation
-Meet regulatory compliance and audit requirements with ease

 

Sample Customers

Lake Health, U.S. Department of Health and Human Services, Bank AlJazira, Banca Intesa, and Obrela.
Hulu, ADP, Safeway, BBCN Bank
Buyer's Guide
ArcSight Enterprise Security Manager (ESM) vs. Exabeam
October 2024
Free Report: ArcSight Enterprise Security Manager (ESM) vs. Exabeam
Find out what your peers are saying about ArcSight Enterprise Security Manager (ESM) vs. Exabeam and other solutions. Updated: October 2024.
DOWNLOAD NOW
814,763 professionals have used our research since 2012.
See our ArcSight Enterprise Security Manager (ESM) vs. Exabeam report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.