Try our new research platform with insights from 80,000+ expert users

ArcSight Recon vs Sentinel comparison

ArcSight Recon and Sentinel are both solutions in the Security Information and Event Management (SIEM) category. ArcSight Recon is ranked #49 with an average rating of 8.0, while Sentinel is ranked #16 with an average rating of 8.2. ArcSight Recon holds a 0.0% mindshare in SIEM, compared to Sentinel’s 3.5% mindshare. Additionally, 100% of ArcSight Recon users are willing to recommend the solution, compared to 81% of Sentinel users who would recommend it.
ArcSight Recon
Read 1 ArcSight Recon review
  • 92 Views
  • 31 Comparison Views
100% willing to recommend
Sentinel
Read 16 Sentinel reviews
  • 2,213 Views
  • 2,392 Comparison Views
81% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between ArcSight Recon and Sentinel based on real PeerSpot user reviews.

Find out what your peers are saying about Splunk, Wazuh, Microsoft and others in Security Information and Event Management (SIEM).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Security Information and Event Management (SIEM) Report (Updated: April 2025).
Buyer's Guide
Security Information and Event Management (SIEM)
April 2025
Download the complete report
Helped 850,747 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

ArcSight Recon
Ranking in Security Information and Event Management (SIEM)
49th
Average Rating
8.0
Reviews Sentiment
7.7
Number of Reviews
1
Ranking in other categories
No ranking in other categories
Sentinel
Ranking in Security Information and Event Management (SIEM)
16th
Average Rating
7.6
Reviews Sentiment
7.3
Number of Reviews
16
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of May 2025, in the Security Information and Event Management (SIEM) category, the mindshare of ArcSight Recon is 0.0%, down from 0.0% compared to the previous year. The mindshare of Sentinel is 3.5%, up from 1.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
 

Featured Reviews

Nagendra Nekkala. - PeerSpot reviewer
A stable and scalable solution that can be used for log management and analytics
Two admins are managing the solution in our organization. Firstly, you need to prioritize the security threats you are looking for. You also need to know the incident response and compliance activities you are looking for. That can help your organization to have a proper ROI. Overall, I rate ArcSight Recon an eight out of ten.
Read full review
JaideepSingh - PeerSpot reviewer
An automated solution that helped me detect threats in less than half the time it used to take
Sentinel gave us logs to tell us what's going right and wrong in your environment so we could secure the network. We also got multiple kinds of logs. By running some queries from the logs, we could find and fix the anomalies in the environment. Sentinel's threat visibility was great at telling us if we had something going on in our environment. We had to set up alerts in our environment based on the logs. If we had the right alerts set up, we got notified about threats and where security was lacking, so we could also take care of that. Sentinel's threat intelligence helped us prepare and take proactive steps for potential threats before they hit. Having preparation before a threat has helped our security operations. When I was using it, I used to keep going into my dashboards and looking for any threats on a weekly basis, or maybe two or three times a week. Based on that, we would recommend certain changes to the server and infrastructure teams to block or allow some ports. Sentinel's threat intelligence helped plan security against risks.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Since ArcSight Recon gives proper log management for us, it helps me with my compliance purposes and any forensic investigation."
"One of the most valuable features is the business intelligence engine. It's very important because it keeps track of everything that's happening and alerts us if something is different than expected. The first time I used it, I was shocked at how well it performed. Another valuable feature that I think makes this product worth the price you pay for it is that it connects to basically every system that provides some form of logging, and it's very easy to set up what triggers this."
"We can do advanced hunting queries and modify SQL queries to get desired results based on the rules triggering over the console."
"The solution's Kusto Query Language (KQL) execution time is pretty good."
"It makes everything easier by automating some tasks and growing with our needs."
"The tool is simple to use."
"Sentinel gave us logs to tell us what's going right and wrong in your environment so we could secure the network."
"The solution lets us get all the logs properly and regularly monitor customer infrastructure."
"The stability is phenomenal and we never had any issues with downtime or even had to restart."
More Sentinel pros
 

Cons

"The solution's speed has to be improved because more data analytics makes the application slower."
"There is a need for more flexibility in customization, especially when working with different vendors and platforms."
"I rate Sentinel a six out of ten for scalability."
"This product's connection to certain types of cloud systems could be improved. We can do Microsoft, Google, and Amazon, but there are a lot of other things happening in the cloud that we do not connect well enough to. This product could be improved with better connection to cloud-based solutions."
"You need a lot of Unix scripting knowledge in order to manage the tool, which is one of the main issues that we faced."
"The solution does not allow outsourced authorizations."
"It is an ancient product."
"I would like to see a better reporting work structure on the dashboard."
"Creating a drag-and-drop dashboard or workbook in Sentinel is a little more complex compared to other tools like LogRhythm and IBM QRadar."
More Sentinel cons
 

Pricing and Cost Advice

Information not available
"We inquired about getting support from the vendor, Micro Focus, but the cost was very high."
"Sentinel's slightly on the expensive side."
"We receive a pricing discount because of our ongoing partnership with Micro Focus."
"Sentinel is moderately priced."
"Sentinel is a subscription-based solution."
"The solution’s pricing is aligned with its competitors."
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
850,747 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Computer Software Company
14%
Financial Services Firm
10%
Government
7%
Manufacturing Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about ArcSight Recon?
Since ArcSight Recon gives proper log management for us, it helps me with my compliance purposes and any forensic investigation.
See all answers
What needs improvement with ArcSight Recon?
The solution's speed has to be improved because more data analytics makes the application slower. The application should work faster. For all the event data it collects, the false alarm should be f...
See all answers
What is your primary use case for ArcSight Recon?
ArcSight Recon will help us with log management and analytics. We can use ArcSight Recon to perform analytics on the existing data.
See all answers
What do you like most about NetIQ Sentinel?
The solution lets us get all the logs properly and regularly monitor customer infrastructure.
See all answers
What is your experience regarding pricing and costs for NetIQ Sentinel?
Sentinel is moderately priced.
See all answers
What needs improvement with NetIQ Sentinel?
There are still a few vendor-specific devices for which Sentinel needs to work on integration, such as Netskope devices. Also, we often face region-wise outages during operation due to product team...
See all answers
 

Comparisons

No data available
Google Chronicle Suite vs Sentinel Logo
Google Chronicle Suite vs Sentinel
Compared 21% of the time
Splunk Enterprise Security vs Sentinel Logo
Splunk Enterprise Security vs Sentinel
Compared 19% of the time
IBM Security QRadar vs Sentinel Logo
IBM Security QRadar vs Sentinel
Compared 19% of the time
Wazuh vs Sentinel Logo
Wazuh vs Sentinel
Compared 17% of the time
Cortex XSIAM vs Sentinel Logo
Cortex XSIAM vs Sentinel
Compared 4% of the time
More Sentinel Competitors
 

Product Reports

Buyer's Guide
Security Information and Event Management (SIEM)
April 2025
ArcSight Recon reportDownload ArcSight Recon product report
Buyer's Guide
Sentinel
April 2025
Sentinel reportDownload Sentinel product report
 

Also Known As

No data available
NetIQ Sentinel, Novell SIEM
 

Overview

ArcSight Recon is ideal for log management and analysis, aiding in real-time threat detection and security monitoring. It supports compliance reporting, advanced querying, and data aggregation from multiple sources, efficiently handling large data volumes.

ArcSight Recon offers efficient log management, robust threat detection, and comprehensive reporting capabilities. Advanced analytics streamline security operations, and customizable dashboards enhance monitoring. The platform's scalability accommodates different environments, and seamless integration with other tools improves the overall security posture. Regulatory compliance support is highly appreciated, with capabilities for real-time alerts and historical data analysis significantly boosting its effectiveness in identifying and mitigating security threats.

What are some of ArcSight Recon's most important features?
  • Efficient Log Management: Streamlines handling vast amounts of logs.
  • Robust Threat Detection: Utilizes advanced analytics for identifying threats.
  • Comprehensive Reporting: Enhances visibility with detailed reports.
  • Customizable Dashboards: Tailor monitoring views for specific needs.
  • Scalability: Supports environments of different sizes.
  • Seamless Integration: Works well with other security tools.
  • Regulatory Compliance: Provides requisite support for compliance needs.
  • Real-time Alerts: Notify users instantly of potential threats.
  • Historical Data Analysis: Assists in investigating past incidents.
What benefits or ROI should users look for in reviews?
  • Improved Security Posture: Enhanced threat detection capabilities.
  • Operational Efficiency: Streamlined security operations and monitoring.
  • Data Visibility: Comprehensive reporting and alerting mechanisms.
  • Compliance Support: Ease in meeting regulatory requirements.
  • Scalability: Flexibility to grow with organizational demands.

ArcSight Recon is implemented across industries such as finance, healthcare, and government sectors to enhance security measures. Each sector benefits from its efficient log management, robust threat detection capabilities, and comprehensive reporting, addressing unique security challenges without compromising on compliance and scalability needs.

OpenText

Sentinel is a full-featured Security Information and Event Management (SIEM) solution that simplifies the deployment, management and day-to-day use of SIEM, readily adapts to dynamic enterprise environments and delivers the true "actionable intelligence" security professionals need to quickly understand their threat posture and prioritize response.

OpenText
 

Sample Customers

Information Not Available
Faysal Bank, GaVI, Handelsbanken, ISC Mªnster, Lambeth Council, Swisscard, The Municipality of Siena, Tukes, University of Dayton, University of the Sunshine Coast
Buyer's Guide
Security Information and Event Management (SIEM)
April 2025
Download Free Report
Find out what your peers are saying about Splunk, Wazuh, Microsoft and others in Security Information and Event Management (SIEM). Updated: April 2025.
DOWNLOAD NOW
850,747 professionals have used our research since 2012.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.