ArcSight Analytics

ArcSight Analytics

software/siem-big-data-security-analytics | Why | h1h2

ArcSight Analytics

An advanced analytics solution giving enterprises visibility into their users, network, data, and applications. ArcSight Analytics makes it much easier to gain information and anticipate, recognize, and mitigate threats.

software/siem-big-data-security-analytics | Why | Overview Text

Advanced Security Analytics You Can Trust

ArcSight analytics solutions enable enterprises to detect advanced cyber attacks in real-time, giving security teams the insights needed to investigate and remediate threats quickly. Working symbiotically with SIEM technology, our solutions analyze and correlate every event across your IT environment, prioritize the highest risks, and display the resulting data in a customizable dashboard.

Key Features

User and Entity Behavior-Based Anomaly Detection

Discover unknown or hidden threats based on user and entity behavior

Real-time Threat Detection

Proactively detect zero-day attacks, insider threats, and malware infections in real-time

Reduced False Positives

Increase productivity and efficiency by spending less time on faulty intelligence and more time identifying true threats

Threat Risk Scoring

Prioritize the most suspicious and abnormal activities across users and entities and concentrate on real, high-risk threats to the organization

Out-of-the-box Security Use Cases

Respond to threats intelligently without complex queries or manual customization

  • A fresh interface that delivers increased usability

    Dashboards, violation timelines, point-and-click filtering, and search capabilities to quickly refine data and logs down to the most relevant information.


A fresh interface that delivers increased usability

Dashboards, violation timelines, point-and-click filtering, and search capabilities to quickly refine data and logs down to the most relevant information.

User and Entity Behavior Based Anomaly Detection

Protect your organization against persistent cyber-threats with a solution that gives visibility into user and entity-based threats by detecting anomalies in behavior patterns. Mitigate insider threats to lower the risk and impact of cyberattacks.

(PDF 1200 KB)

DNS Malware Analytics for Network Visibility

Detect and identify hosts infected with malware, bots or other unknown threats, and are trying to contact Command and Control Servers or exfiltrate data. ArcSight DNS Malware Analytics extracts malware data from DNS logs to detect breaches before damage is done.

(PDF 231 KB)

Gain Visibility into Your Applications

Unmonitored applications leave gaping holes in your defenses that many adversaries can exploit. Lose your application blind spots and get clear visibility into your applications by leveraging security analytics.

(PDF 141 KB)


Data Sheet

ArcSight DNS Malware Analytics


(PDF 231 KB)

Data Sheet

See threats: ArcSight Application View


(PDF 141 KB)

Data Sheet

ArcSight User Behavior Analytics


(PDF 1200 KB)


What to do when ‘good’ users go bad


How hunt teams can unmask hidden attackers

Online Assessment

How Mature Are Your Security Operations?

Related Products, Solutions and Services

Data Collection

ArcSight Data Platform

Collect, store, monitor and report machine data through this Big Data platform.


ArcSight ESM

Prioritize security events, so you can protect your business. 


ArcSight Investigate

Hunt and defeat unknown threats, and decrease the impact of security incidents.

ArcSight Apps

ArcSight Marketplace

Explore ArcSight apps, documentation, community sharing for ArcSight SIEM best practices.

SIEM Appliance

ArcSight Express

SIEM appliance for mid-market that helps combat APTs and insider threats.

SIEM Use Cases

ArcSight Activate Framework

Deploy modular content and standardized use cases to implement ArcSight quickly and effectively. 

Enterprises Security Services

ESP Global Services

Make the most of your HPE security investments with proven methodologies.

Engage with our HPE Security Community

Protect Your Assets Blog

Get IT security insights to protect your business ahead of attackers anywhere in the world.

Security Research Blog

Get innovative research, observations and updates to help you proactively identify threats and manage risk.

Protect724 Community

Join the HPE Security community to share, search, collaborate for solutions and gain feedback.

HPE Security on Twitter

Get the latest tweets on hybrid environment risks and defending against advanced threats.

HPE Security on LinkedIn

Connect with experts and discuss the latest info on new threats and risk in hybrid environments.

HPE Software on Facebook

Join with peers and experts to discuss how to make your HPE software work for you.

HPE Software on Google+

Discuss the latest on how to make your enterprise applications and information work for you.

HPE Business Insights

Gain strategic insights from IT leaders who help others define, measure and achieve better IT performances.