ArcSight Enterprise Security Manager (ESM)

Security Information and Event Management (SIEM)

Tackle cyber threats in real time by using powerful, scalable, and efficient SIEM security software.

SIEM’s first distributed correlation solution

With ArcSight ESM 7.0, SOCs gain the agility to expand their cyber security footprint and respond faster to evolving threats at massive scale—up to 100,000 correlated events per second, per cluster—as well as solve a wider set of security use cases.

Discover Features
Micro Focus State of Security Operations Report finds SOCs finally turn corner

Annual SecOps study shows 12% improvement in SOC maturity citing the most significant shift in five years; Yet 20% of assessed SOCs continue to operate ad-hoc with serious gaps in security.

Get Report
Micro Focus State of Security Operations Report finds SOCs finally turn corner
Network 1
Powerful distributed real-time data correlation

Collect data and correlate events in real-time—up to 100,000 events per second—to escalate threats that violate the internal rules within the platform. Easily scale SIEMs up by adding correlation nodes with the industry’s leading distributed correlation engine.

Workflow automation, security orchestration

Empower your SOC monitoring teams to triage detected alerts through the ArcSight ESM integration commands - 3rd party integrations with the ability to execute commands on external devices with ArcSight ActionConnectors.

Cloud gear
Community-driven security content

Benefit from security rule-sets, dashboards and reports developed by SOC experts from Micro Focus and the ArcSight Community. ArcSight Activate includes hundreds of use case solutions and ESM packages to solve your information event management security requirements.

Block based replication
Multi-Tenancy and unified permissions matrix

Leverage centralized management capabilities, including rule-based thresholds and a unified permissions roles, rights, and responsibilities matrix to separate all data and alerts at the customer level.

ArcSight Data Platform and Event Broker integration

Built for massive scale and speed, ArcSight ESM fully integrates with ADP Event Broker, the open, intelligent data ingestion and delivery bus for the modern SOC, supporting over 400 product connectors.

ArcSight Investigate integration

Integrate your SIEM with ArcSight Investigate, a companion next-generation hunt and investigation solution, to create extremely fast and intuitive search and data visualization within the security operations environment.

ArcSight’s best-in-class SIEM solution

As a leader in security event collection and management, ArcSight is able to deliver best-in-class solutions to its clients. Obrela uses ArcSight to enhance their cybersecurity and SecOps capabilities and offerings. ArcSight's open, scalable, and highly effective platform allows Obrela to provide top-level SecOps to its customers for critical cybersecurity needs. How could ArcSight help enhance your SOC and meet your cybersecurity needs?


ESM 7: more powerful, more scalable

With distributed correlation, ESM 7 brings increased EPS handling, and improved availability and redundancy. Sitting at the center of the intelligent SOC, ESM can scale to match the growing security data being generated keeping up with evolving cyber threats. What new SIEM packages should you now deploy?

release-rel-2018-12-1-1408 | Sun Dec 9 19:30:12 PST 2018
Sun Dec 9 19:30:12 PST 2018