Home > ManageEngine Log360 vs HP Arcsight

Looking for an alternative to
HP Arcsight

100000+ Technicians trust Log360 to manage their Windows environment

Try Log360

Thank you for downloading!

Your download should begin automatically in 15 seconds. If not, click here to download manually.

    Download fully functional
    30-days FREE trial!

  • By clicking 'Start a free trial', you agree to processing of personal data according to the Privacy Policy.

Thanks!

One of our solution experts will get in touch with you shortly

ManageEngine Log360 vs Micro Focus ArcSight Enterprise Security Manager (ESM)

  • ManageEngine Log360 is a comprehensive SIEM solution that helps enterprises of all sizes combat threats and mitigate attacks with its threat intelligence, event correlation, file integrity monitoring, network device auditing and user activity monitoring capabilities. On-premises, cloud, or both - Log360 has it covered. It is simple to deploy, has a centralized console to manage multiple environments, and licensed based on the pay only for what you use model.
  • Micro Focus ArcSight ESM is a security information and event management (SIEM) solution that analyses and correlates events that occurs across the organization including login, logoff, file access, database query, etc.
  • This document aims to compare the capabilities of Micro Focus ArcSight Enterprise Security Manager (ESM) with that of the capabilities of ManageEngine Log360.

Feature-wise comparison of Log360 and ArcSight Enterprise Security Manager (ESM) :

ManageEngine Log360

Features ManageEngine Log360
Try now
ArcSight Enterprise Security Manager (ESM)
Log collection
Agent-less    
Agent-based    
Cross platform log collection    

Arc Sight ESM must be used in conjunction with ArcSight Data Platform or any collection system that uses Common Event Format(CEF)

Reports
File integrity monitoring    
Canned reports    
Custom reports    
Scheduled reports    
Report distribution via email    
Reports in PDF, CSV, and HTML formats    
Drill down to raw logs    
Filter using mouse gesture    
Management specific reports(Ask ME)    
Trend reports    
Privileged user activity monitoring reports    
Log search
Advanced search using Boolean, wildcards, grouped search, range search, phrase search    
Formatted logs search    
Raw logs search    
Compliance reports
Canned reports    

ESM optional package(Compliance Automation and Reporting)

Customizing existing reports    

ESM optional package(Compliance Automation and Reporting)

Creating new compliance reports    

ESM optional package(Compliance Automation and Reporting)

PCI-DSS    

ESM optional package(Compliance Automation and Reporting)

HIPAA    

ESM optional package(Compliance Automation and Reporting)

Heterogeneous server/ device support    
Import logs    
Periodical import of logs    
Log filter    
Custom log parsing and indexing    
Log collection and processing rate 20,000 logs/second with peak event handling capacity up to 25,000 logs/second. For Windows event logs the EPS is 2000 logs/second. Not specified
Log formats supported
Windows event log    
Syslog    
Any format – with custom log parsing and indexing    
Amazon Web Services (AWS) EC2 Instance    
Application logs supported
Proprietary applications
  • Microsoft IIS Web Server
  • FTP Server (W3C logs)
  • Apache Web Server
  • DHCP Windows
  • DHCP Linux
   
Database applications:
[Oracle Audit, MS SQL Server]
   
Any application – with custom log parsing and indexing    
Other devices supported
Custom devices [IBM AS400 (iSeries), VMware]    
Custom devices
  • Firewalls
  • Intrusion Detection System/ Intrusion Prevention System (IDS/IPS)
  • Anti-virus application
  • Mail and web application
  • Vulnerability Scanners
  • Unified threat management solutions
    • Symantec DLP Application
    • FireEye
    • Symantec Endpoint Solution
   
Alerts and notifications
Real-time alerts    
Notification- Email and SMS    
Run automated scripts as alert response    
Compliance alerts    
In-built incident management module    
Forward tickets to external help desk software    
Threat intelligence
Real-time alerts for global blacklisted IPs intruding the network.    
FISMA    

ESM optional package(Compliance Automation and Reporting)

SOX    

ESM optional package(Compliance Automation and Reporting)

GLBA    

ESM optional package(Compliance Automation and Reporting)

ISO 27001    

ESM optional package(Compliance Automation and Reporting)

Real-time event correlation
Event correlation    
Field-level filters to build correlation rules    
Pre-defined rules to detect various attacks, including ransomware, brute-force and more    
User session monitoring    
File Integrity Monitoring
Reports on file integrity monitoring    
Report scheduling    
Real-time alerts when critical changes are made to files/folders that are being monitored    
Audit trail on file/folder changes    
Log archiving
Flexible periodicity    
Flexible retention    
Secured (Encrypted)    
Service Provider feature
User based views    
User based dashboards    
Rebranding    
User Management
Realm & user based access.    
Active Directory (AD)based user authentication    
RADIUS server based user authentication.    
Other Key Features
Incident workflows    
UEBA    
Risk Assessment   Not specified
Advanced threat analytics    
Implementation
Easy to install    

(Requires optioanl packages for functionalities)

Web based Client    
Appliance based    
System Requirements
Bundled database (PostgreSQL/MySQL)   Not specified
Windows & Linux platforms support    
64 Bit support    
Pricing
Pricing basis Based on the number of servers, devices and applications. Not specified
Annual licensing model   Not specified
Perpetual licensing model   Not specified

Can the solution be considered value for money?

Component-based pricing model.
Starts at $595* per year

Conclusion

  • From the comparison, it can be concluded that both ManageEngine's Log360 and DNIF helps to understand what's happening in your network and to gain insights into potential threats and stop them before they turn into an attack by monitoring your logs.
  • Both the solutions support a wide range of devices and applications and provide an extensive number of reports.

customer-testimonial-logo

What customers say about us

  • CAMH will be able to save close to $26,000 a year on service desk calls related to Active Directory password resets and locked accounts, and will see a return on investment within the first six months of product implementation.

    Judy OlivierProject Manager, CAMH

About ManageEngine Log360

Log360 is a simple yet powerful security information and event management (SIEM) solution that can help enterprises overcome network security challenges and strengthen their cybersecurity posture. The solution helps you mitigate security threats, spot ongoing attack attempts, detect suspicious user activities, and comply with regulatory mandates.

For more information about Log360, please visit

www.manageengine.com/log-management/
Download
Demo

Thank you for downloading!

Your download should begin automatically in 15 seconds. If not, click here to download manually.

Download fully functional30-days FREE trial!

  •  
    By clicking 'Claim Your Free Trial', you agree to processing of personal data according to the Privacy Policy.

Thank you

Thank you for your interest in ManageEngine Log360. We have received your request for a personalized demo and will contact you shortly.

Schedule apersonalized web demo

  • By clicking 'Submit', you agree to processing of personal data according to the Privacy Policy.

Disclaimer: ManageEngine does not guarantee the accuracy of any information presented in this document, and there is no commitment, expressed or implied, on ManageEngine’s part to update or otherwise amend this document. The furnishing of this document does not provide any license to patents, trademarks, copyrights or other intellectual property rights owned or held by ManageEngine.