

NetWitness Platform and ArcSight Logger compete in security and event management. ArcSight Logger seems to have the upper hand due to its enhanced handling of large data volumes and advanced analytics functions.
Features: NetWitness Platform offers scalable threat detection, comprehensive visibility, and efficient incident response. ArcSight Logger excels with advanced log management, powerful analytics capabilities, and superior integration with external systems.
Room for Improvement: NetWitness Platform could improve in user interface design, cost efficiency, and customization options. ArcSight Logger can enhance its initial deployment process, refine its user training materials, and reduce the need for ongoing investments.
Ease of Deployment and Customer Service: NetWitness Platform provides streamlined deployment with strong integration resources. ArcSight Logger offers flexible deployment but may require more initial configuration. Both provide robust support, but ArcSight Logger’s centralized service model allows for easier management.
Pricing and ROI: NetWitness Platform generally involves higher upfront costs but delivers a favorable ROI through its threat intelligence capabilities. ArcSight Logger's lower setup costs demand ongoing investments for scaling and upgrades, showing cost-effectiveness over time due to its strong data handling and analytics performance.
| Product | Mindshare (%) |
|---|---|
| ArcSight Logger | 0.9% |
| NetWitness Platform | 1.1% |
| Other | 98.0% |
| Company Size | Count |
|---|---|
| Small Business | 8 |
| Midsize Enterprise | 9 |
| Large Enterprise | 17 |
| Company Size | Count |
|---|---|
| Small Business | 8 |
| Midsize Enterprise | 7 |
| Large Enterprise | 20 |
ArcSight Logger effectively manages vast log data volumes, streamlining complex query execution and data compression while supporting various devices to meet compliance needs.
ArcSight Logger, known for scalability, simplifies handling extensive log data and executes complex queries swiftly. Its data compression features, coupled with versatile device support, allow for smooth security analytics and log collection. Users appreciate its real-time network insights and intuitive interface. However, improvements are needed in indexing speed, user navigation simplification, enhanced system integration, advanced analytics, and comprehensive threat management. Companies leverage ArcSight Logger for on-premises log management, vital for IT asset event monitoring and compliance within telecom and enterprise sectors.
What are the key features?In industries like telecom and enterprise, ArcSight Logger facilitates on-premises deployments to manage logs, process queries, and integrate with security tools, essential for incident response. It aids in retaining logs, monitoring Windows events, overseeing communications, and is employed in fraud prevention and security monitoring involving syslog servers.
NetWitness Platform provides seamless threat intelligence integration and robust log/packet ingestion. It enhances network visibility and incident management through automated threat detection, ideal for enterprises seeking scalability and security intelligence.
NetWitness Platform offers a comprehensive suite of tools designed to tackle security challenges within Security Operations Centers. It integrates data from endpoints, networks, and other sources, ensuring in-depth security analysis. By supporting features like XDR and UEBA, it grants a unified view of security events. Its capabilities extend to threat hunting, malware analysis, and network forensics, assisting organizations in managing incidents, ensuring compliance with regulations like GDPR, and detecting cyber threats. Users appreciate its ease of deployment, flexibility, and threat prediction capabilities, although improvements in integration, documentation, and AI are desired.
What are the key features of NetWitness Platform?In finance and health sectors, NetWitness Platform aids significantly by providing comprehensive threat analysis, ensuring compliance, and facilitating rapid incident management. Enterprises in these industries benefit by maintaining robust security postures and meeting regulatory demands.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.