ArcSight Logger vs Elastic Observability comparison

OpenText and Elastic are both solutions in the Log Management category. OpenText is ranked #45 with an average rating of 6.8, while Elastic is ranked #14 with an average rating of 8.7. OpenText holds a 0.9% mindshare in Log Management, compared to Elastic’s 1.2% mindshare. Additionally, 81% of OpenText users are willing to recommend the solution, compared to 88% of Elastic users who would recommend it.

ArcSight Logger

Read 32 ArcSight Logger reviews

1,430 Views
1,430 Comparison Views

81% willing to recommend

Elastic Observability

Read 29 Elastic Observability reviews

8,436 Views
2,025 Comparison Views

88% willing to recommend

ArcSight Logger

Elastic Observability

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 9, 2024

ArcSight Logger and Elastic Observability are two prominent solutions in the data monitoring and analysis category. Elastic Observability is often seen as superior due to its feature-rich offerings and flexibility, despite ArcSight Logger's notable security strengths.

Features: ArcSight Logger is known for strong security, compliance features, and seamless integration within large enterprises. Elastic Observability stands out with scalability, advanced search capabilities, and real-time analytics, offering agility across various situations. ArcSight focuses on security, whereas Elastic emphasizes flexibility and analytical depth.

Room for Improvement: ArcSight Logger could enhance integration with modern data sources and increase flexibility. Elastic Observability users mention the need for improved performance in large data environments and more user customization options. ArcSight's adaptation to new technologies and Elastic’s data performance optimization are key focus areas.

Ease of Deployment and Customer Service: ArcSight Logger has a structured deployment model, which some find complex but is backed by reliable customer service. Elastic Observability offers straightforward deployment with effective support, emphasizing ease over structure.

Pricing and ROI: ArcSight Logger has higher setup costs, with users reporting strong long-term ROI aligned with security benefits. Elastic Observability provides competitive pricing, offering robust ROI via data processing efficiency. ArcSight’s security benefits justify its costs, while Elastic offers cost-effective data management.

To learn more, read our detailed ArcSight Logger vs. Elastic Observability Report (Updated: December 2025).

Buyer's Guide

ArcSight Logger vs. Elastic Observability

December 2025

Download the complete report

Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

ROI

Sentiment score

1.0

ArcSight Logger is valued for ease of use, aiding fraud investigation, and seen as cost-effective despite licensing costs.

Sentiment score

6.5

Elastic Observability enhances cost-effectiveness by reducing incidents, automating fixes, and visualizing cloud operations, saving time and resources.

No quotes available

For more quotes and insights, download the ArcSight Logger report

Elastic Observability has saved us time as it's much easier to find relevant pieces across the system in one screen compared to our own software, and it has saved resources too since the same resources can use less time.

Stefan Decuypere

Technology Consultant at Hybrid software

For more quotes and insights, download the Elastic Observability report

Customer Service

Sentiment score

5.8

ArcSight Logger support is generally helpful, but technical assistance quality varies, with community reliance and time zone issues noted.

Sentiment score

7.6

Elastic Observability customers appreciate their helpful support, quick responses, and valuable documentation, despite some challenges in complex issue resolution.

We provide pre-implementation, implementation, and post-implementation support.

Mohammed Shoaib Abdulla

Sr. Cybersecurity Consultant IT/OT at EJADA

For more quotes and insights, download the ArcSight Logger report

Elastic support really struggles in complex situations to resolve issues.

Mohammed-Abdelalim

Assistant Vice President at QualityKiosk Technologies Pvt. Ltd.

Their excellent documentation typically helps me solve any issues I encounter.

Stefan Decuypere

Technology Consultant at Hybrid software

For more quotes and insights, download the Elastic Observability report

Scalability Issues

Sentiment score

6.2

ArcSight Logger offers scalable solutions for enterprises, though smaller setups may face performance and storage issues at high loads.

Sentiment score

7.2

Elastic Observability is praised for scalability and ease of deployment, despite potential complexities and internal process limitations.

No quotes available

For more quotes and insights, download the ArcSight Logger report

I rate the scalability of Elastic Observability as a ten, as we have never seen issues even with a lot of data coming in from more customers, provided we have the appropriate configuration.

Stefan Decuypere

Technology Consultant at Hybrid software

Elastic Observability seems to have a good scale-out capability.

Syed Waqar Uddin

Chief Cloud Architect at a tech services company with 11-50 employees

Elastic Observability is easy in deployment in general for small scale, but when you deploy it at a really large scale, the complexity comes with the customizations.

Mohammed-Abdelalim

Assistant Vice President at QualityKiosk Technologies Pvt. Ltd.

For more quotes and insights, download the Elastic Observability report

Stability Issues

Sentiment score

8.4

ArcSight Logger is mostly stable and reliable but experiences occasional disruptions during DDoS attacks and major upgrades.

Sentiment score

8.2

Elastic Observability is stable and reliable, with high user ratings, efficiently handling large data volumes with proper configuration.

No quotes available

For more quotes and insights, download the ArcSight Logger report

There are some bugs that come with each release, but they are keen always to build major versions and minor versions on time, including the CVE vulnerabilities to fix it.

Mohammed-Abdelalim

Assistant Vice President at QualityKiosk Technologies Pvt. Ltd.

It is very stable, and I would rate it ten out of ten based on my interaction with it.

Adelina Craciun

Product Owner at Swisscom

I would rate the stability of Elastic Observability as a ten, as we don't experience any issues.

Stefan Decuypere

Technology Consultant at Hybrid software

For more quotes and insights, download the Elastic Observability report

Room For Improvement

ArcSight Logger requires UI improvements, more connectors, enhanced analytics, better integration, indexing, scalability, and cost efficiency.

Elastic Observability needs automation, AI, and customization improvements, addressing complex deployment, market presence, metrics, licensing, and usability issues.

Splunk does much more than SIEM, including log analysis, user behavior analysis, threat intelligence, and customer behavior analysis.

Mohammed Shoaib Abdulla

Sr. Cybersecurity Consultant IT/OT at EJADA

For more quotes and insights, download the ArcSight Logger report

For instance, if you have many error logs and want to create a rule with a custom query, such as triggering an alert for five errors in the last hour, all you need to do is open the AI bot, type this question, and it generates an Elastic query for you to use in your alert rules.

Lakshmi Bodepu

Senior Consultant at Skillfield

It lacked some capabilities when handling on-prem devices, like network observability, package flow analysis, and device performance data on the infrastructure side.

reviewer708360

Senior Technical Sales at a tech vendor with 1,001-5,000 employees

Some areas such as AI Ops still require data scientists to understand machine learning and AI, and it doesn't have a quick win with no-brainer use cases.

Mohammed-Abdelalim

Assistant Vice President at QualityKiosk Technologies Pvt. Ltd.

For more quotes and insights, download the Elastic Observability report

Setup Cost

ArcSight Logger is costly and complex, yet valued for capabilities and scalability despite competitive pricing and setup challenges.

Elastic Observability provides competitive pricing, benefiting large enterprises with comprehensive licensing, but may be costly for smaller users.

No quotes available

For more quotes and insights, download the ArcSight Logger report

The license is reasonably priced, however, the VMs where we host the solution are extremely expensive, making the overall cost in the public cloud high.

Adelina Craciun

Product Owner at Swisscom

Elastic Observability is cost-efficient and provides all features in the enterprise license without asset-based licensing.

Syed Waqar Uddin

Chief Cloud Architect at a tech services company with 11-50 employees

Observability is actually cheaper compared to logs because you're not indexing huge blobs of text and trying to parse those.

Lakshmi Bodepu

Senior Consultant at Skillfield

For more quotes and insights, download the Elastic Observability report

Valuable Features

ArcSight Logger excels in scalability, performance, integration, and ease of use, providing powerful search and compliance features.

Elastic Observability excels with flexible integration, powerful search, scalability, real-time insights, affordability, and robust support, enhancing efficiency.

ArcSight Logger installs on very minimal resources with very few requirements

Mohammed Shoaib Abdulla

Sr. Cybersecurity Consultant IT/OT at EJADA

For more quotes and insights, download the ArcSight Logger report

The most valuable feature is the integrated platform that allows customers to start from observability and expand into other areas like security, EDR solutions, etc.

Syed Waqar Uddin

Chief Cloud Architect at a tech services company with 11-50 employees

the most valued feature of Elastic is its log analytics capabilities.

reviewer708360

Senior Technical Sales at a tech vendor with 1,001-5,000 employees

All the features that we use, such as monitoring, dashboarding, reporting, the possibility of alerting, and the way we index the data, are important.

Adelina Craciun

Product Owner at Swisscom

For more quotes and insights, download the Elastic Observability report

Categories and Ranking

ArcSight Logger

Ranking in Log Management

45th

Average Rating

7.6

Reviews Sentiment

5.8

Number of Reviews

Ranking in other categories

No ranking in other categories

Elastic Observability

Ranking in Log Management

14th

Average Rating

8.0

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Application Performance Monitoring (APM) and Observability (6th), IT Infrastructure Monitoring (9th), Container Monitoring (4th), Cloud Monitoring Software (7th)

Mindshare comparison

As of January 2026, in the Log Management category, the mindshare of ArcSight Logger is 0.9%, up from 0.8% compared to the previous year. The mindshare of Elastic Observability is 1.2%, down from 1.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Log Management Market Share Distribution
Product	Market Share (%)
Elastic Observability	1.2%
ArcSight Logger	0.9%
Other	97.9%

Log Management

Featured Reviews

Mohammed Shoaib Abdulla

Sr. Cybersecurity Consultant IT/OT at EJADA

Compliance and cost-effectiveness have improved while critical infrastructure security adapts to evolving needs

ArcSight Logger fulfills compliance requirements and passes audit requirements. It is one of the Aramco standards requirements and is recommended by Aramco for any implementation. Aramco, SABIC, water companies, and electricity companies are critical infrastructure with air-gapped networks. In an air-gapped network, there is no communication going out from that network area to the outside world, even to the corporate network. ArcSight Logger is installed on minimal resources with minimal requirements. There are not many upgrades or new features that come up frequently, though they do occur occasionally.

Read full review

Mohammed-Abdelalim

Assistant Vice President at QualityKiosk Technologies Pvt. Ltd.

Has provided powerful customization for unique monitoring needs but needs more out-of-the-box capabilities

In my opinion, the best features of Elastic Observability are their flexibility to integrate with other existing systems and the ability to build a unified monitoring tool that can integrate with existing ones and end-to-end user journeys which require a lot of customizations. The greatest feature in Elastic is the ability to customize. This is similar to my comments about customizable dashboards in Elastic because it's visible to the analyst. However, it's very great. Customizing these dashboards can meet the customer's specific use cases and specific stories that they have in their environment, their special environment that doesn't look like other environments. The dashboarding in Elastic is highly customizable to the level of logos. If the customer wants his company logo in the dashboard, it can be done.

Read full review

See which vendors are best for you

Use our free recommendation engine to learn which Log Management solutions are best for your needs.

See recommendations

881,082 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

13%

Computer Software Company

Manufacturing Company

Healthcare Company

Financial Services Firm

16%

Computer Software Company

14%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	8
Midsize Enterprise	10
Large Enterprise	16

By reviewers
Company Size	Count
Small Business	9
Midsize Enterprise	4
Large Enterprise	16

Questions from the Community

What do you like most about ArcSight Logger?

We have a trigger. So, Logger automatically blocks these IP addresses. We could have Logger put them on a blacklist.

See all answers

What is your experience regarding pricing and costs for ArcSight Logger?

The pricing isn't the problem. We have a lifetime license, so we don't pay a monthly fee.

See all answers

What needs improvement with ArcSight Logger?

This decision is made by higher management as they don't want to have multiple solutions for one solution. ArcSight Logger themselves don't provide good support, but companies such as ours provide ...

See all answers

What do you like most about Elastic Observability?

Elastic Observability significantly improves incident response time by providing quick access to logs and data across various sources. For instance, searching for specific keywords in logs spanning...

See all answers

What is your experience regarding pricing and costs for Elastic Observability?

The problem is their licensing model, which is a bit confusing. Many customers struggle to understand their total cost of ownership because Elastic licensing is not dependent on easy, quantifiable ...

See all answers

What needs improvement with Elastic Observability?

After careful consideration about areas for improvement in Elastic Observability, aspects such as pricing, customization, implementation, and scalability could be improved. As a user of the system,...

See all answers

Comparisons

Splunk Enterprise Security vs ArcSight Logger

Compared 25% of the time

IBM Security QRadar vs ArcSight Logger

Compared 23% of the time

Elastic Security vs ArcSight Logger

Compared 11% of the time

LogRhythm SIEM vs ArcSight Logger

Compared 6% of the time

Wazuh vs ArcSight Logger

Compared 6% of the time

More ArcSight Logger Competitors

Sentry vs Elastic Observability

Compared 8% of the time

Dynatrace vs Elastic Observability

Compared 7% of the time

New Relic vs Elastic Observability

Compared 7% of the time

Grafana vs Elastic Observability

Compared 7% of the time

Zabbix vs Elastic Observability

Compared 6% of the time

More Elastic Observability Competitors

Product Reports

Buyer's Guide

ArcSight Logger

January 2026

Download ArcSight Logger product report

Buyer's Guide

Elastic Observability

January 2026

Download Elastic Observability product report

Also Known As

Micro Focus Arcsight Logger, HPE Arcsight Logger

No data available

Overview

HPE ArcSight Data Platform (ADP) offers a future-ready data solution that enriches data in real time and supports open standards for better threat detection. Using security data connectors, ADP collects data and enriches it in real-time to give analysts organized information that can be acted upon instantly.

OpenText

Elastic Observability offers a comprehensive suite for log analytics, application performance monitoring, and machine learning. It integrates seamlessly with platforms like Teams and Slack, enhancing data visualization and scalability for real-time insights.

Elastic Observability is designed to support production environments with features like logging, data collection, and infrastructure tracking. Centralized logging and powerful search functionalities make incident response and performance tracking efficient. Elastic APM and Kibana facilitate detailed data visualization, promoting rapid troubleshooting and effective system performance analysis. Integrated services and extensive connectivity options enhance its role in business and technical decision-making by providing actionable data insights.

What are the most important features of Elastic Observability?

Centralized Logging: Streamlines the collection, analysis, and storage of log data.
Powerful Search: Provides robust search capabilities for quick access to relevant information.
Scalability: Supports growing data needs across diverse environments.
Real-time Telemetry: Ensures up-to-date insights and monitoring.
Platform Integration: Seamlessly connects with services like Teams and Slack.
Data Visualization: Enhances visibility with Elastic APM and Kibana.

What benefits and ROI should users explore in reviews?

Cost-effectiveness: Offers significant savings through efficient data management.
Rapid Incident Response: Minimizes downtime with quick troubleshooting tools.
Comprehensive Insights: Supports better business decisions with detailed data analysis.
Performance Tracking: Enables assessment of system effectiveness and improvements.

Elastic Observability is employed across industries for critical operations, such as in finance for transaction monitoring, in healthcare for secure data management, and in technology for optimizing application performance. Its data-driven approach aids efficient event tracing, supporting diverse industry requirements.

Elastic

Sample Customers

China Merchants Bank, Bank AlJazira, Banca Intesa

PSCU, Entel, VITAS, Mimecast, Barrett Steel, Butterfield Bank

Buyer's Guide

ArcSight Logger vs. Elastic Observability

December 2025

Free Report: ArcSight Logger vs. Elastic Observability

Find out what your peers are saying about ArcSight Logger vs. Elastic Observability and other solutions. Updated: December 2025.

DOWNLOAD NOW

881,082 professionals have used our research since 2012.

See our ArcSight Logger vs. Elastic Observability report.

See our list of best Log Management vendors.

We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.