Coming October 25: PeerSpot Awards will be announced! Learn more
2019-02-03T08:25:00Z
Julia Frohwein - PeerSpot reviewer
Senior Director of Delivery at PeerSpot (formerly IT Central Station)
  • 0
  • 1

What is your experience regarding pricing and costs for ArcSight?

Hi,

We all know it's really hard to get good pricing and cost information.

Please share what you can so you can help your peers.

3
PeerSpot user
3 Answers
LH
User at NOOSC Global
Real User
2019-06-16T07:23:00Z
16 June 19

The cost of the solution is not very high, although hiring a qualified analyst to work with the product is expensive.

Teguh Budyantara - PeerSpot reviewer
IT Manager at Royal Cemerlang
Real User
2019-02-20T11:20:00Z
20 February 19

The pricing is great compared to others.

AN
Analyst at a financial services firm with 10,001+ employees
Real User
2019-02-03T08:25:00Z
03 February 19

Pricing is average.

Learn what your peers think about ArcSight Enterprise Security Manager (ESM). Get advice and tips from experienced pros sharing their opinions. Updated: September 2022.
633,952 professionals have used our research since 2012.
Related Questions
MV
User at First Abu Dhabi Bank P.j.s.c
Nov 16, 2021
I work at mid-sized enterprise bank. I am researching SIEM solutions. Which is the best tool for security information and event management: Arcsight or Securonix?
2 out of 11 answers
JS
Sales & Commercial Director - EMEA with 51-200 employees
24 June 20
To be upfront  I am a security vendor and we are the authors and developers of Snare our SIEM-agnostic Enterprise solution for log collection and log management.  We work with lots of Siem vendors and Snare deploys and integrates with all major SIEM platforms e.g. Arcsight, Qradar, Splunk, RSA. We have over 500 Banks and financial services companies using Snare Agents and Snare central where we have been able to contain and reduce their Siem ingestion charges by up to 60% where the Siem vendor charges for log data ingestion by EPS, GB or any metered basis - https://www.youtube.com/channel/UCr8sLTVcI7oivIjEQBfu7UA. Snare collaborates and compliments SIEM solutions. Snare Agents provide Granular Filtering @ Source, Truncation of Noise out of logs @ Source in a lightweight Agent. Snare Central provides dashboard analytics to monitor log traffic from windows, Linux, Unix, OSX, Syslog feeds etc.while also providing "Out of the Box Compliance Reporting, Alerts" and ability to reflect logs to multiple destinations simultaneously.  From our experience, Arcsight is a good SIEM, very feature-rich but does require a lot of resources and is generally very expensive one-time and ongoing ingestion of logs into Arcsight (unless you have Snare). Arcsight connectors provide an agentless collection process but this has many issues as it is not as secure as Agents and can invite log tampering, no encryption, unable to set group policy etc... I have lots of my customers using Snare Agents with logs going to Arcsight and can provide a reference point if required. My largest financial services customer has over 100,000 Snare agents filtering, reflecting logs to Arcsight. Please take a look at https://www.snaresolutions.com/siem-integration/
Angel Rivera Baez - PeerSpot reviewer
Information Systems Director with 501-1,000 employees
24 June 20
We didn’t use any of the products but I include you a link to Gartner comparison. https://www.gartner.com/review.
PeerSpot user
Computer & Network Systems Administrator at a aerospace/defense firm with 1,001-5,000 employees
Mar 13, 2019
My organization has one last piece to the puzzle in our completion for NIST 800-171 compliance. I know nothing about Network Security and Event Management. I have a team of two Systems and Network Admins that already spend a lot of time ensuring the organization is running smooth, dealing with any technical issues, and ensuring the infrastructure is performing well. What solution is recommended...
2 out of 39 answers
PeerSpot user
Senior Consultant at Redrock IT & Security Solutions
28 March 18
There are many good SIEM products on the market today. Our company evaluated several SIEM products, LogRhythm, Splunk, AlienVault, Fortinet, and EventTracker. They all are great products. We settled on EventTracker and purchase the licenses through a 3rd party. Because these companies have internal teams of trained security analysts. They take on the heavy lifting of reviewing alerts, threat analysis, etc. The required manpower is a critical piece when evaluating SIEMs.
it_user420948 - PeerSpot reviewer
Sales Leader with 1,001-5,000 employees
28 March 18
amongst SIEM solutions marketed by editors, the leading products are Splunk, Qradar both solutions offer a complete NIST compliance. what is the most important to know is to what extent these solutions are able to communicate with other solutions and applications this is mainly what qualifies Qradar as the leader in the SIEM field, since on top of being an IBM product as a guarantee in itself, IBM Qradar has a great list of connectors to third party solutions and finds itself in the heart of a wide portfolio of security products ans solutions. the lask of technical resources is not a problem when adopting a Qradar solution, IBM proposes it in SaaS mode which can be advantageous to multiple customers and for those who are not yet adopting a cloud-based solution they ca still have their own in-premises implementation but managed remotely from Qradar Experts with very attractive monthly fees.
Download Free Report
Download our free ArcSight Enterprise Security Manager (ESM) Report and get advice and tips from experienced pros sharing their opinions. Updated: September 2022.
DOWNLOAD NOW
633,952 professionals have used our research since 2012.