ArcSight Enterprise Security Manager (ESM) and Exabeam are both market leaders in the security information and event management (SIEM) space. ArcSight ESM seems to have the upper hand with its robust feature set and reliability, while Exabeam is appreciated for its advanced analytics and user behavior insights.
Features: ArcSight ESM is valued for its extensive threat detection capabilities, flexibility, and integration with other tools. Exabeam is praised for its advanced analytics, user behavior tracking, and automation features.
Room for Improvement: Users of ArcSight ESM note the complexity of setting up and managing the system, along with a steep learning curve. Improvements in scalability and simplified configuration are also cited. For Exabeam, feedback often points to the need for enhanced documentation and support resources, as well as occasional issues with false positives in its analytics.
Ease of Deployment and Customer Service: ArcSight ESM's deployment is often described as challenging and time-consuming, with significant resources needed for configuration and ongoing management. Customer service is generally rated positively but could be more responsive. Exabeam offers a smoother deployment experience, aided by clearer documentation and a more intuitive setup process. Users report satisfactory customer support with prompt responses.
Pricing and ROI: ArcSight ESM is perceived as more expensive, with higher setup and operational costs. However, its comprehensive features justify the investment for large enterprises. Exabeam's pricing is seen as more competitive, providing significant value with its advanced analytics and automation capabilities, leading to a notable ROI.
Even with TAM support from Exabeam, many issues go unresolved.
Exabeam needs to improve its documentation and provide more customization for dashboards and case management.
These problems were not frequent, and the last six to eight months have been stable.
Exabeam's AI capabilities, like the natural language mode, convert natural language into Exabeam queries, enhancing ease of use.
ArcSight Enterprise Security Manager (ESM) is a powerful SIEM solution for analyzing, collecting, correlating, and reporting on security event information. ArcSight ESM analyzes information from all of your data sources while helping your organization maintain high security. In addition, the solution is very customizable and enables users to create their own company-specific rule sets to automatically trigger instant alerts.
ArcSight Enterprise Security Manager (ESM) Features
ArcSight Enterprise Security Manager (ESM) Benefits
Some of the benefits of using ESM include:
Reviews from Real Users
Below are some reviews and helpful feedback written by ArcSight Enterprise Security Manager (ESM) users.
A Head of Professional Services at a computer software company says, “The simplicity of the solution is the most valuable aspect of the product. The product is quite mature. It's been around for a long time. The integration is easy for the most part.”
A Managing partner at a tech services company states that the solution is “Good at consolidating logs, fairly stable, and can scale.”
PeerSpot user Abbasi P., Vice President Derivatives Ops IT at a financial services firm, explains, “The user interfaces are quite good and speedy, and I like the consoles too. The typology and the setup are also good.”
A Chief Technological Officer at a tech services company says, "It is a very useful tool for intelligence building because it has many use cases and many rule sets."
An Associate Vice President at a consumer goods company comments, “We primarily use the solution for its technology including its independent logs, and those types of things. The solution offers very good monitoring. The product's log management and event management capabilities are excellent. There are a lot of really good analytical components. It helps us focus on analysis.”
Exabeam Fusion is a cloud-delivered solution that that enables you to:
-Leverage turnkey threat detection, investigation, and response
-Collect, search and enhance data from anywhere
-Detect threats missed by other tools, using market-leading behavior analytics
-Achieve successful SecOps outcomes with prescriptive, threat-centric use case packages
-Enhance productivity and reduce response times with automation
-Meet regulatory compliance and audit requirements with ease
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.