We performed a comparison between ArcSight Logger and Splunk Cloud Platform based on real PeerSpot user reviews.
Find out in this report how the two Log Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution provides information about the risk factors."
"The ESM use cases are the most valuable. It enables us to use the big data collection inside our company. We are able to create use cases for whatever it suits and I find that the most interesting part of any SIEM solution."
"I am impressed with the product's ability to pick up logs. It also has UEBA which has reduced the time to take charge of the events."
"It's a brilliant log collection tool, and it can handle hundreds of thousands of servers in a single shot to ingest the data."
"The machine learning is a good feature."
"We haven't had any crashes or bugs. It is stable."
"It's a robust, mature product and you can do some really complex operations and analytics."
"The log digestion features from threat intelligence platforms like Recorded Future or Talos are valuable."
"It has end-to-end visibility into our cloud-native environment, which is pretty important for us. About 80% of our infrastructure is on AWS."
"Index manager is most valuable because we do not have to bother about internal storage. It is all managed by the Splunk team."
"Dashboards and alerting are the most valuable features. The dashboards let us see how the system looks in terms of anomalies, and the alerts trigger us to go and look at what possible problems are happening."
"We haven't had any limitations or problems connecting to our network devices."
"Splunk Cloud Platform's search modes are a powerful feature."
"The most valuable feature is we don't have to deal with any back-end server maintenance because the solution is cloud-based."
"For my current requirements, the tool theme seems to be meeting my requirements, from a cost and requirements perspective."
"I like the Cloud monitoring console feature."
"It would be better if the product is cheaper."
"The solution could be improved in maintenance settings."
"It's not a new product and is a bit complex. So, it requires a person dedicated to working on it and to know about it in and out. It is a huge product, and the search operation is a bit complicated for a new user or someone who has not used it for long. So for that person, it becomes a bit difficult."
"The console in older versions is not user-friendly."
"I would rate the technical support only 5 out of 10. The technical support is not satisfactory."
"We have had problems with archiving."
"I think the ArcSight team should try to simplify legacy products for the customers, because that product is not easy to use or to work with. It needs more more competency or appeal to use. We hope Micro Focus is trying to resolve this."
"Using the ArcSight Logger dashboard is not particularly intuitive or efficient, so it is important to be trained in its use."
"The current visuals on the dashboard could be more impactful."
"There can be more modules and more integration with other areas in the cloud and on-prem. I am not sure whether it includes network devices and things like that."
"Some of the implementation is challenging. They're not very proxy-aware."
"Support could be improved."
"Splunk Cloud Platform should improve its integrations and consider multiple integrations or direct integration with other platforms like Microsoft Azure, Google Cloud, or AWS."
"When it comes to the integrations with the other platforms, there is a little bit of a lag in the observability part, making it an area where improvements are required."
"When one of my customers needs an app, and I am able to find that app on the Splunk base, I have to create a ticket and wait for five days for them to download the app into the cloud environment. That is probably one of the main things. It is painful because I have to wait to get that app in the cloud."
"The training models can only be accessed for 30 days, even if it is paid training."
ArcSight Logger is ranked 28th in Log Management with 31 reviews while Splunk Cloud Platform is ranked 3rd in Data Visualization with 36 reviews. ArcSight Logger is rated 7.8, while Splunk Cloud Platform is rated 8.0. The top reviewer of ArcSight Logger writes "A scalable and stable solution that enables users to see all the event logs in one place". On the other hand, the top reviewer of Splunk Cloud Platform writes "Does not require backend maintenance, is easily integrated and utilized". ArcSight Logger is most compared with Splunk Enterprise Security, IBM Security QRadar, Elastic Security, Wazuh and LogRhythm SIEM, whereas Splunk Cloud Platform is most compared with Wazuh, Splunk Enterprise Security, Fortinet FortiAnalyzer, AppInsights and Check Point Security Management. See our ArcSight Logger vs. Splunk Cloud Platform report.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
