ArcSight is a leading provider of security and compliance management solutions that intelligently identify and mitigate business risk for enterprises, MSSPs and government agencies. Designed with the needs of highly complex, geographically dispersed and heterogeneous business and technology infrastructures in mind, ArcSight provides the industry’s only vendor-neutral solution for intelligent identification, prioritisation and network response to external security attacks, insider threats and compliance breaches.
Much like a "mission control center," ArcSight's award-winning ESM solution intelligently collects and distils millions of enterprise-wide events down to the most critical information necessary for organisations to make informed decisions to protect their businesses. It does this through an open platform which integrates hundreds of point/individual security and networking products to find risks that would otherwise go undetected, and inherently enhances the business value of point technology investments.
The resulting real time and historic view across heterogeneous infrastructures, augmented by ArcSight's complementary solutions for high performance log management – ArcSight Logger, network configuration management – ArcSight NCM and threat response management – ArcSight TRM, offers the industry’s only complete solution suite with a closed-loop process for addressing both security and compliance requirements.
|
|
ArcSight connectors insulate your security and compliance analysis from your technology choices. By collecting logs in native device formats, then normalising this data into a common format, ArcSight Connectors produce a single structure for searching, correlating, and reporting on event information. As a result, your analysis platform is future-proofed against new network technologies. Swap out one vendor’s firewall for another, and all of your correlation and compliance reports will continue to work as defined. Connectors are available as installable software, data centre appliances, or small branch-office/store appliances.
In the modern networked world, organisations of all sizes are at risk to attacks from both the inside and outside. Malware, breaches, and regulations (and associated penalties) continue to increase. Unfortunately for most mid-size firms, security staff are not increasing, but in many cases is declining. These organisations do not have a dedicated staff of security administrators, and many firms have almost no security expertise on staff at all.
ArcSight’s log management product, ArcSight Logger, is a self contained appliance for storing, managing, and reporting against enterprise log data. A single appliance can effectively store up to 35 TB of log information, without the need for tuning or optimisation. ArcSight Logger offers search and reporting, as well as alerting via email, SNMP, or a web console.
ArcSight’s market-leading real time correlation product, ArcSight ESM, provides advanced analysis of log event data to discover potential threats before they spread.
|
