Team Lead at a tech services company with 51-200 employees
Reseller
2020-02-16T08:27:00Z
Feb 16, 2020
In terms of ArcSight Logger's most valuable feature, it is their scalability. ArcSight's real advantage is its scalability because they have two layers, including the logger layer.
CISO at a financial services firm with 1,001-5,000 employees
Real User
2019-09-16T10:14:00Z
Sep 16, 2019
The ability to customize the solution in great detail is its most valuable features. We can customize the use cases and also have the ability to do scripting. We can personalize our dashboard as well. The scalability the solution offers is quite impressive.
Technical Consultant at a tech services company with 11-50 employees
Consultant
2019-08-11T06:27:00Z
Aug 11, 2019
In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating.
Vulnerability Assessor at Telenor Common Operation
Real User
2019-02-20T11:20:00Z
Feb 20, 2019
The ESM use cases are the most valuable. It enables us to use the big data collection inside our company. We are able to create use cases for whatever it suits and I find that the most interesting part of any SIEM solution.
HPE ArcSight Data Platform (ADP) offers a future-ready data solution that enriches data in real time and supports open standards for better threat detection. Using security data connectors, ADP collects data and enriches it in real-time to give analysts organized information that can be acted upon instantly.
We have a trigger. So, Logger automatically blocks these IP addresses. We could have Logger put them on a blacklist.
The machine learning is a good feature.
It is one of the best products available in the market.
The solution provides information about the risk factors.
It provides in-depth information on business activities once we log into the system.
I am impressed with the product's ability to pick up logs. It also has UEBA which has reduced the time to take charge of the events.
The technical support team is good...It is a scalable solution.
ArcSight's robustness is its most valuable feature.
The log digestion features from threat intelligence platforms like Recorded Future or Talos are valuable.
We check a lot of logs in ArcSight Logger because we're running a massive database platform.
It's a brilliant log collection tool, and it can handle hundreds of thousands of servers in a single shot to ingest the data.
ArcSight provides the basic information that we want.
It's a robust, mature product and you can do some really complex operations and analytics.
In terms of ArcSight Logger's most valuable feature, it is their scalability. ArcSight's real advantage is its scalability because they have two layers, including the logger layer.
The most valuable feature is the search capability, which is simple to use.
It's an efficient solution.
We haven't had any crashes or bugs. It is stable.
The ability to customize the solution in great detail is its most valuable features. We can customize the use cases and also have the ability to do scripting. We can personalize our dashboard as well. The scalability the solution offers is quite impressive.
The most valuable feature is the level of detail that you can see about certain events, even when they do not come up in the console.
In our country we are a little bit private in terms of solutions, so we are just starting to use the basic data capture. Now some users can start to use additional features that come with Micro Focus ArcSight like user behavior analytics for investigating.
The ESM use cases are the most valuable. It enables us to use the big data collection inside our company. We are able to create use cases for whatever it suits and I find that the most interesting part of any SIEM solution.