ArcSight

4,1 (12)
Donnez votre avis !
Logiciel d'analyse des vulnérabilités et de veille des menaces

En savoir plus sur ArcSight

ArcSight est un logiciel d'analyse des vulnérabilités qui aide les entreprises à utiliser la technologie de machine learning pour détecter les menaces, gérer les enquêtes, créer des listes d'événements prioritaires, etc., sur une plateforme centralisée. Il permet aux membres du personnel d'extraire des entités à partir de fichiers journaux et d'observer les événements et le comportement des utilisateurs, des adresses IP, des serveurs et des machines.

Grâce à ArcSight, les administrateurs peuvent identifier les vulnérabilités et les menaces, telles que l'utilisation abusive des comptes de privilèges, l'activité des employés licenciés, le transfert de données, l'exfiltration des e-mails, le tunneling malveillant et le mooching. La vue chronologique permet aux employés d'afficher les alertes d'entité dans l'ordre chronologique, optimisant ainsi les opérations d'évaluation des risques. Elle permet également aux professionnels de l'informatique d'examiner le contexte des alertes générées avec des détails, tels que les entités associées ou encore le modèle qui a déclenché l'alerte.

ArcSight propose également une API (Application Programming Interface) qui permet aux entreprises d'intégrer la plateforme à plusieurs solutions tierces. Le logiciel permet aux superviseurs de planifier des rapports, de surveiller le comportement des entités, de créer des organigrammes personnalisés, de gérer la conformité réglementaire, etc.


Images

ArcSight Logiciel - 1
ArcSight Logiciel - 2
ArcSight Logiciel - 3
En voir 3 de plus
ArcSight Logiciel - 1
ArcSight Logiciel - 2
ArcSight Logiciel - 3

ArcSight ne vous convainc pas tout à fait ? Comparer avec une alternative populaire

ArcSight

4,1 (12)
VS.
Le plus évalué

À partir de

Prix introuvable
15,00 $US
mois

Prix

Version gratuite
Version d'essai gratuite
Version gratuite
Version d'essai gratuite

Fonctionnalités

14
119

Intégrations

Intégrations introuvables
183

Simplicité d’utilisation

3,8 (12)
4,2 (242)

Rapport qualité-prix

4,0 (12)
4,1 (242)

Service client

3,7 (12)
4,2 (242)
Les jauges horizontales vertes représentent le logiciel le plus apprécié selon la note globale qui lui a été attribuée ainsi que le nombre d'avis.

Alternatives

Datadog

4,6
Alternative n° 1 à ArcSight
Sécurisez votre pile technologique avec la détection des menaces en temps réel de Datadog Security Monitoring....

Invicti

4,7
Alternative n° 2 à ArcSight
Netsparker Security Scanner identifie automatiquement les vulnérabilités XSS, Injection SQL et autres dans les sites,...

Acunetix

4,4
Alternative n° 3 à ArcSight
Acunetix est une solution de scanner de sécurité web offrant une technologie de test de sécurité web automatique...

IBM Security QRadar

4,5
Alternative n° 4 à ArcSight
IBM QRadar SIEM est un logiciel de gestion des informations et des événements de sécurité permettant aux équipes de...

Avis

Note globale

4,1 /5
(12)
Rapport qualité-prix
4/5
Fonctionnalités
4,3/5
Simplicité d'utilisation
3,8/5
Support client
3,7/5

Vous avez déjà ArcSight ?

Les acheteurs de logiciels ont besoin de vous ! Les avis utilisateurs nous aident tous à prendre de meilleures décisions.

5 avis affichés sur 12
Alexander
Alexander
Note globale
  • Secteur d'activité : Informatique et sécurité réseau
  • Taille de l'entreprise : 11–50 employés
  • Logiciel utilisé toutes les semaines pendant 6 à 12 mois
  • Provenance de l'avis

Note globale

  • Rapport qualité-prix
  • Simplicité d'utilisation
  • Support client
  • Probabilité de recommander le produit 10.0 /10

Heart of the SOC

Publié le 05/12/2019

Our company and our partners facing a lot incidents masked as a normal events. The SIEM helped us...

Our company and our partners facing a lot incidents masked as a normal events. The SIEM helped us to be protected and to prioritize the events, based of the security risk. Automations of the responses is the other feauture that is a key differentiator.

Avantages

Very powerful SIEM with plenty of predefined corellation scenarios. Could be integrate easily with almost everything.

Inconvénients

For new users could be a little difficult to play with, but there are a lot of training materials and courses.

Alternatives envisagées 

IBM Security QRadar
Utilisateur vérifié
Note globale
  • Secteur d'activité : Banque
  • Taille de l'entreprise : 5 001–10 000 employés
  • Logiciel utilisé tous les jours pendant plus de deux ans
  • Provenance de l'avis

Note globale

  • Rapport qualité-prix
  • Simplicité d'utilisation
  • Support client
  • Probabilité de recommander le produit 8.0 /10

It provides powerful features to make every operation with received logs.

Publié le 04/05/2019

I have been using this product for about 3 years. We use ESM and Logger products. As a SIEM...

I have been using this product for about 3 years. We use ESM and Logger products. As a SIEM solution, we are able to host this product in our environment. We monitor the alarm and correlation rules, abnormal activities and cyber threats, which we write through the logs we receive from various security products and applications in our environment and monitor our incident response processes.

Avantages

ArcSight supports functions such as processing, categorizing, normalizing, converting alarms and correlations and receiving reports on SIEM with very powerful search and filter operators. The product also supports making and running trend reports. It offers very powerful features for SIEM. It has features that provide great flexibility on logs. My favorite feature is the trend report. With this feature, real-time logs over the logs of the report to match the results of the report with a different database to get instant reports to access the report provide quick access.

Inconvénients

Ticket management feature is one of the least favorite features. It does not have an interface that can be easily adapted and applied according to your environment. If you want to use this feature, you need professional support and software support.

Alternatives envisagées 

IBM Security QRadar et Logsign Unified SO Platform

Pourquoi passer à ArcSight

Especially because of the aforementioned features that I have mentioned above. We have chosen to buy this product because the product seamlessly supports superior features such as processing, categorizing, interpreting, analyzing, alarming and correlating logs, and successfully performing the desired actions on logs.

Réponse de OpenText

Thank you for the 4-star review, it is very much appreciated. We did note your comments about your `least favorite feature? and this certainly helps us build a better product. ArcSight has Case Management; that is different from Ticket Management. Ticket Management is more of a support function / ITSM issue; and while ArcSight does have connectors for ServiceNow, we know it's been problematic for some customers. As you point out, we typically recommend that Professional Services be engaged as each implementation has its idiosyncrasies. That said, improving this area is a KPI for us and we will be looking at options as we move to advance the ?Open? portion of our strategy in late 2019. We'd be happy to hear your thoughts / recommendations in more depth.

Utilisateur vérifié
Note globale
  • Secteur d'activité : Services financiers
  • Taille de l'entreprise : 1 001–5 000 employés
  • Logiciel utilisé tous les jours pendant plus de deux ans
  • Provenance de l'avis

Note globale

  • Rapport qualité-prix
  • Simplicité d'utilisation
  • Support client
  • Probabilité de recommander le produit 8.0 /10

Arcsight - Good but complex SIEM solution

Publié le 22/01/2021

Arcsight ESM is a powerful but complex tool that needs deep knowledge of the product.

Arcsight ESM is a powerful but complex tool that needs deep knowledge of the product.

Avantages

We are using Arcsight ESM and Logger for event logging and correlation. Events correlation is done at the ESM level and provides better visibility on organizations' security posture. Dashboards and reports can be generated on ESM and further, it facilitates case management so we can open a case on the tool itself. Arcsight was one of the most demanding tools at the time we implemented the tool. ESM's log supporting surface is very high and almost all the types of logs are supported which is one of the best features of the tool. Further logs can be routed through the smart connectors and through these connectors EPS count can be managed which is a good option when it comes to licensing. I like the option of Flex connectors which can be used for integrating non supporting devices or logs.

Inconvénients

Arcsight Smart connector setup needs deep knowledge of the tool and configuration is a bit hectic task. Flex connector configuration and correlation configuration is another complex task that cannot be done without product knowledge. Further case management tools need more features with a simple view. First level support should have a technically savvy team. Most of the time the first level support team provides generic solutions and references to knowledge-based articles rather than studying the case.

Sebnem
Note globale
  • Secteur d'activité : Services financiers
  • Taille de l'entreprise : 10 000+ employés
  • Logiciel utilisé tous les jours pendant plus de deux ans
  • Provenance de l'avis

Note globale

  • Rapport qualité-prix
  • Simplicité d'utilisation
  • Support client
  • Probabilité de recommander le produit 8.0 /10

Micro Focus ArcSight SIEM

Publié le 25/02/2020

We have a lot of security products and applications. We gather all logs from these products and we...

We have a lot of security products and applications. We gather all logs from these products and we can easily manage our logs according to rules. Reporting module and dashboard are the best feature of this product.

Avantages

We have been using Arcsight SIEM tool in Information Security department in our organization since 2013. We can integrated this product with all other security management products such as Firewall, IPS, Antivirus, Web Filtering etc. also in house softwares easily. We can gather all logs from these products and create rules and manage logs according to rules. Dashboard and alarm mechanism are done well.

Inconvénients

Sometimes we have some problems with search mechanism, it needs some improvements. Because of our big organization and large products which gather logs sometimes we have problems with troubleshooting issues that is little bit hard for us.

Alternatives envisagées 

IBM Security QRadar

Pourquoi passer à ArcSight

This product enables the detection and prevention of attacks by establishing connections between the logs (correlation). Normalization and correlation features are the best of this product.

Réponse de OpenText

My name is Michael Mychalczuk, and I am the Director Of Product Management for Micro Focus' Security Operations portfolio which includes ArcSight. I would like to personally take a moment, and thank you for the review you provided. We are thrilled that you were able to find the product feature rich, easy to use, and find value in the solution. We do agree that there is more we can do in making the product easier to use, and we are working to make that happen in the near future. In fact, any suggestions you might have to improve ArcSight, please do not hesitate to submit them to the Idea Exchange: https://community.microfocus.com/t5/ArcSight-Idea-Exchange/idb-p/ArcSightIdeas. Speaking for the entire ArcSight product team nothing makes us happier than finding someone who is very likely to recommend us to other.

Utilisateur vérifié
Note globale
  • Secteur d'activité : Banque
  • Taille de l'entreprise : 5 001–10 000 employés
  • Logiciel utilisé tous les jours pendant plus de deux ans
  • Provenance de l'avis

Note globale

  • Rapport qualité-prix
  • Simplicité d'utilisation
  • Support client
  • Probabilité de recommander le produit 9.0 /10

World of Data

Publié le 17/05/2019

The ArcSight product is seen as one of the leaders and leaders in the Safety Information and Event...

The ArcSight product is seen as one of the leaders and leaders in the Safety Information and Event Management category, according to Gartner's Magic Quadrant report.

ArcSight's approach is to create a single point of communication for observation and control. Gathers all appropriate event data and puts it into a standard form. It collects at a central location for analysis. As a result, the company allows you to easily monitor and, if necessary, take measures. This increases your compliance with your legal requirements and business continuity.

Avantages

The most important feature of Arcsight is that it is the only point of communication for observation and control. collects all appropriate data and puts it into a standard form. these data are stored on a hard disk and are expected to be analyzed. With arcsight, it is monitored with the help of side applications and with the help of monitoring tool (see arcsight esm).

Inconvénients

The ESM platform is Java. This causes slowness and excessive welding in intensive processes.

Afficher 5 avis sur 12 Lire tous les avis

ArcSight - FAQ

Voici quelques-unes des questions fréquentes sur ArcSight.

Types de licences disponibles pour ArcSight :

  • Version d’essai gratuite : Non disponible

Utilisateurs habituels du logiciel ArcSight :

Auto-entrepreneur, 2–10, 11–50, 51–200, 201–500, 501–1 000, 1 001–5 000

Langues dans lesquelles ArcSight est disponible :

anglais

Appareils pris en charge par ArcSight :

Nous n'avons pas d'informations sur les intégrations offertes par ArcSight.

Ressources d'aide disponibles pour ArcSight :

Service client/e-mail, Base de connaissances, Support téléphonique

Catégories connexes

Consultez toutes les catégories de logiciels trouvées pour ArcSight.