We performed a comparison between ArcSight Analytics and Securonix Next-Gen SIEM based on real PeerSpot user reviews.
Find out in this report how the two User Entity Behavior Analytics (UEBA) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."ArcSight Analytics is used to get a deeper insight and threat analysis about the network."
"This solution allows us to identify connections for all users."
"The most valuable features are that you get lots of connectors, which make it easy to log in to my ASM, and lots of prebuilt roles from the company."
"ArcSight Analytics has improved our system and network policy monitoring."
"Less resource consumption in terms of memory and processing."
"This solution makes it easy to create use cases, and it is easy to move queries from use cases to the report to the dashboard."
"The features I have found most valuable are it capabilities for behavioral analytics and anomaly detection."
"The solution is easy to implement."
"When we were looking for products for our security monitoring needs, our biggest requirement was that we wanted something based on machine-learning and analytics. If you go with rules, it can raise a lot of noise. Securonix, with its UEBA capability, had the best analytics use-cases."
"The feature that is most valuable is the fact that it's an open platform, so it allows us to modify policies and tune policies as needed. There's also a feature called Data Insights which allows us to create different dashboards on specific things of interest for us."
"The user interface is easy to learn and navigate."
"The solution has proven to be stable so far...The solution is easy to scale up."
"The second feature is that within the SNYPR product there is a functionality called Spotter. We use that for link analysis diagrams and to run the stats command. That's extremely useful because it replaces a tedious, manual process we used to use, using Microsoft Excel and a couple of other methods, to bring data together."
"One of the most valuable features is the integration of all types of data sources to extract relevant information regarding events. It is a good solution when it comes to the correlations that it makes within all the data handled in our company."
"The two major features of this product we extensively use are the UEBA capability and the multi-tenant approach with the centralized data logs system. Customers are very happy with these features."
"The UEBA functionality indicates a lot about behaviors that are not found through a traditional SIEM. We have exploited that more than anything since we started using it."
"I would like to see integration with automation products, such as Phantom Automation."
"The customer service could be improved, and additional integrations with other APIs could be added."
"Inactive connections from servers, which are upgraded or downgraded within a VM, should be automatically revoked."
"It's a difficult product to navigate, it's complex."
"I faced stability issues with Windows Operating System. The installed connectors hang if they remain idle for a long period of time."
"Network integration is very crucial, and you need to have the knowledge to get it done."
"The GUI interface is not always intuitive and easy for non-technical users to work with."
"ArcSight's features that can be improved include anything related to its visualization capabilities and user friendliness."
"Securonix implements risk scores based on different policies that are triggered. We've seen some challenges with the risk scores and how they trigger. These are things that Securonix has recognized and they've been working with us to help improve things."
"The incident response area should be improved."
"It seems to me that within Securonix there is no option for completely visualizing the types of sources or if there is any loss of logs. I've heard that they have an additional module to validate those types of cases, but in terms of the platform itself only, I can only see how often it sends data but not any specific detail."
"There is room for improvement in the product's integration with ServiceNow and in the reporting features."
"Sometimes, there is instability in the data in terms of the customization of the time. I have sometimes observed discrepancies in the data, which is something they should work on. They should bring more stability to time customization. If we are seeing a particular data, when we change the time zone, there should be the same data. There should not be any discrepancy."
"One aspect that could be improved is the pricing of the product in Brazil."
"The technical support of the solution is an area with shortcomings and needs improvement."
"There is slight room for improvement in terms of the initial deployment. What I see is that Securonix is more focused on their product. They are expanding, in a big way, the number of customers. So there has to be a number of dedicated teams to jump on and speed up the deployment process."
ArcSight Analytics is ranked 16th in User Entity Behavior Analytics (UEBA) with 15 reviews while Securonix Next-Gen SIEM is ranked 7th in Security Information and Event Management (SIEM) with 27 reviews. ArcSight Analytics is rated 7.0, while Securonix Next-Gen SIEM is rated 8.6. The top reviewer of ArcSight Analytics writes "It has improved our system and network policy monitoring". On the other hand, the top reviewer of Securonix Next-Gen SIEM writes "Spotter tool has helped us eliminate many hours required to manually create link analysis diagrams". ArcSight Analytics is most compared with Securonix UEBA, whereas Securonix Next-Gen SIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Microsoft Sentinel, LogRhythm SIEM and Exabeam Fusion SIEM. See our ArcSight Analytics vs. Securonix Next-Gen SIEM report.
We monitor all User Entity Behavior Analytics (UEBA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.