We performed a comparison between ArcSight Analytics and Securonix Next-Gen SIEM based on real PeerSpot user reviews.
Find out in this report how the two User Entity Behavior Analytics (UEBA) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The features I have found most valuable are it capabilities for behavioral analytics and anomaly detection."
"The most valuable feature is the log monitoring."
"The solution is easy to implement."
"The correlation engine is good."
"Less resource consumption in terms of memory and processing."
"The most valuable features are that you get lots of connectors, which make it easy to log in to my ASM, and lots of prebuilt roles from the company."
"The two most valuable features of this solution are its stability and scalability."
"This solution allows us to identify connections for all users."
"The feature that is most valuable is the fact that it's an open platform, so it allows us to modify policies and tune policies as needed. There's also a feature called Data Insights which allows us to create different dashboards on specific things of interest for us."
"The machine-learning algorithms are the most valuable feature because they're able to identify the 'needle in the haystack.'"
"The second feature is that within the SNYPR product there is a functionality called Spotter. We use that for link analysis diagrams and to run the stats command. That's extremely useful because it replaces a tedious, manual process we used to use, using Microsoft Excel and a couple of other methods, to bring data together."
"When we were looking for products for our security monitoring needs, our biggest requirement was that we wanted something based on machine-learning and analytics. If you go with rules, it can raise a lot of noise. Securonix, with its UEBA capability, had the best analytics use-cases."
"The feature that I have found most valuable is their analytics platform where they have the open security data-link, which they introduced. This is typically different from the other vendors."
"We can customize our use cases with the tools provided by Securonix. It is an excellent tool that can ingest data in different ways and is very flexible."
"The most valuable feature is what Securonix calls enrichment. Securonix is very powerful because of all the data it can process and automatically enrich. The actionable intelligence it provides is one of its benefits, due to the processing capacity it has."
"The most valuable feature is that it works on user behavior and event rarities."
"It needs more user analytics and aggregation user queries. And it's slow. When you query over ArcSight, it is very slow."
"The interactive dashboard is complicated and you need to have training in order to use it, so I think that it could be made easier to use."
"ArcSight is not a user-friendly solution and the interface needs to be improved."
"It's a difficult product to navigate, it's complex."
"I would like to see orchestration."
"The customer service could be improved, and additional integrations with other APIs could be added."
"ArcSight's features that can be improved include anything related to its visualization capabilities and user friendliness."
"The reporting and the way it is worded needs to be improved in future releases. The dashboards are quite poorly designed."
"There is room for improvement in the product's integration with ServiceNow and in the reporting features."
"One of the things they can improve on a little bit is the usability side, to make some things simpler... The tool does have a lot of knobs, you can turn a lot of things on and off and you can change things. Sometimes, it can become a little overwhelming. They should remove some confirmation options and make it simpler for the less mature customers and people who are still trying to grasp it."
"A helpful feature would be an event export. A way to create more substantial summary reports would be nice."
"Regarding the analysis of security events on the SOC side, Securonix Next-Gen SIEM needs to improve its automation capabilities."
"The analytics-driven approach for finding sophisticated threats and reducing false positives is positive and good, but the platform requires a more dynamic concept. Everything is a bit static."
"The incident response area should be improved."
"It could be improved a little bit more for admin users. There should be more administrative options related to security for admin users. For example, for forensic purposes, the admin should be able to stop a specific user from erasing some information. I would be helpful in certain situations, such as during an internal fraud."
"The solution could provide more automation."
ArcSight Analytics is ranked 17th in User Entity Behavior Analytics (UEBA) with 15 reviews while Securonix Next-Gen SIEM is ranked 7th in Security Information and Event Management (SIEM) with 27 reviews. ArcSight Analytics is rated 7.0, while Securonix Next-Gen SIEM is rated 8.6. The top reviewer of ArcSight Analytics writes "It has improved our system and network policy monitoring". On the other hand, the top reviewer of Securonix Next-Gen SIEM writes "Spotter tool has helped us eliminate many hours required to manually create link analysis diagrams". ArcSight Analytics is most compared with Securonix UEBA, whereas Securonix Next-Gen SIEM is most compared with IBM Security QRadar, Splunk Enterprise Security, Microsoft Sentinel, LogRhythm SIEM and Exabeam Fusion SIEM. See our ArcSight Analytics vs. Securonix Next-Gen SIEM report.
We monitor all User Entity Behavior Analytics (UEBA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
