We performed a comparison between ArcSight Logger and Splunk Enterprise Security based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution provides information about the risk factors."
"It's a robust, mature product and you can do some really complex operations and analytics."
"In terms of ArcSight Logger's most valuable feature, it is their scalability. ArcSight's real advantage is its scalability because they have two layers, including the logger layer."
"The technical support team is good...It is a scalable solution."
"The ESM use cases are the most valuable. It enables us to use the big data collection inside our company. We are able to create use cases for whatever it suits and I find that the most interesting part of any SIEM solution."
"The machine learning is a good feature."
"It is one of the best products available in the market."
"The most valuable feature is the search capability, which is simple to use."
"The correlation search functions that generate all the notables are valuable. That can get pretty complicated, and it handles that pretty well."
"It's the completeness of the solution that we like the most."
"There are a lot of third-party applications that can be installed."
"Splunk has give us the capability to easily track problems and their status."
"You can use it to gather syslog messages from anything."
"The most valuable features are the logs, which allow us to identify what happened and who interacted with the web repository."
"I like Splunk's data aggregation and search capabilities."
"We can present to our management in real time the security of the batch management for the PCs, security regarding the network equipment. We're currently working in the Azure Cloud project, so we can send any logs from the cloud to Splunk. We can monitor them and we can present to the managers and customers. It's a very good solution for reporting. We use Splunk for reporting and monitoring of any solution in the company."
"In the next release, I want to see more intelligence."
"I would rate the technical support only 5 out of 10. The technical support is not satisfactory."
"The platform is quite expensive. They should reduce its cost."
"It would be better if the product is cheaper."
"The solution should make it possible to integrate network analysis features."
"The console in older versions is not user-friendly."
"It is really difficult to work in ArcSight Logger, as it is very slow."
"I had some latency issues for two months. I had to increase our storage capacity significantly to reduce the latency."
"It needs integration with a configuration management solution."
"Not even Splunk's support guy, who came to our firm, could help with defining proper role management."
"There can be a bit of complexity around some fields during the initial setup."
"Most of my interaction is with the user community, which is how Splunk wants it. When I need help, that community is very hit or miss."
"Custom visualizations are real hard. While the default visualizations are good, creating enhanced visualizations are complex."
"I haven't found a way for me to create my own plugins and integrate them into Splunk, but this isn't necessarily a limitation; it could simply be a lack of knowledge on my part."
"Splunk needs local technical support."
"The product could be cheaper."
ArcSight Logger is ranked 28th in Log Management with 31 reviews while Splunk Enterprise Security is ranked 1st in Log Management with 240 reviews. ArcSight Logger is rated 7.8, while Splunk Enterprise Security is rated 8.4. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". ArcSight Logger is most compared with IBM Security QRadar, Elastic Security, Wazuh, LogRhythm SIEM and VMware Aria Operations for Logs, whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Elastic Security and Fortinet FortiAnalyzer. See our ArcSight Logger vs. Splunk Enterprise Security report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.