The product could be improved in several areas; it currently requires significant enhancement. Compared to QRadar and Splunk, ArcSight Intelligence falls behind, placing it as the third choice among these software options.
ArcSight Intelligence is a bit slower, and its speed should be improved. As our business is growing, different types of logs are coming out. We need to build a connector for each log, which is difficult. It would be helpful if the solution could build connectors for new devices.
The dashboard is not user-friendly. Using the system requires specialized knowledge and training, as it includes three consoles, the logger, the central management center, and the ESM. The dashboard is not easy to use and requires a lot of commands, making it difficult for those new to the system. All of the commands may be overwhelming for those just learning the system. Making the dashboard more user-friendly and reducing the reliance on commands, perhaps by using plain English text for filters and searches, would be a great improvement. Everyone we ask would agree that the dashboard needs to be made more user-friendly. The scalability of the solution can be improved.
Principal Security Advisor at Symbiotic Consulting Group
Real User
2021-05-11T14:14:10Z
May 11, 2021
The frequency of the updates that we are getting can be improved because the number and types of incidents that are happening at the global level are far more than what we are receiving. The frequency of updates feeds related to our rules should be increased. There should be more frequent information about the new rules that are coming and the global threats that are happening. There should be better options for dashboard creation. At present, the dashboards are good, but there is scope to make them better.
Find out what your peers are saying about OpenText, Microsoft, Exabeam and others in Security Information and Event Management (SIEM). Updated: November 2024.
The product could be improved in several areas; it currently requires significant enhancement. Compared to QRadar and Splunk, ArcSight Intelligence falls behind, placing it as the third choice among these software options.
ArcSight Intelligence's pricing needs improvement.
ArcSight Intelligence is a bit slower, and its speed should be improved. As our business is growing, different types of logs are coming out. We need to build a connector for each log, which is difficult. It would be helpful if the solution could build connectors for new devices.
The dashboard is not user-friendly. Using the system requires specialized knowledge and training, as it includes three consoles, the logger, the central management center, and the ESM. The dashboard is not easy to use and requires a lot of commands, making it difficult for those new to the system. All of the commands may be overwhelming for those just learning the system. Making the dashboard more user-friendly and reducing the reliance on commands, perhaps by using plain English text for filters and searches, would be a great improvement. Everyone we ask would agree that the dashboard needs to be made more user-friendly. The scalability of the solution can be improved.
The frequency of the updates that we are getting can be improved because the number and types of incidents that are happening at the global level are far more than what we are receiving. The frequency of updates feeds related to our rules should be increased. There should be more frequent information about the new rules that are coming and the global threats that are happening. There should be better options for dashboard creation. At present, the dashboards are good, but there is scope to make them better.