The goal of a security analytics SIEM platform is to provide visibility across the enterprise by collecting event logs and machine-generated data from a variety of systems and sensors. Micro Focus ArcSight uniquely protects data while providing litigation quality of data in the collection, storage, archiving, and correlation of log data. ArcSight establishes chain of custody by appending a timestamp from each ArcSight component that processes the event.

·       ArcSight utilizes CEF, also known as Common Event Format. CEF addresses the NIST 800-92 requirement, which requires putting data into consistent formats that consist of 450+ fields in its schema that log data can be mapped to.

·       The ArcSight Data Platform (ADP) Event Broker and ADP Smart Connectors ingest data from wide-ranging sources, with coverage of more than 400 source types.

·       ArcSight not only provides litigation quality, trustworthy and dependable data, both in transit and at rest, but is also the only SIEM product that integrates with Voltage Format-Preserving Encryption to further encrypt and control what data is accessible, and to enable data privacy compliance across the threat analytics ecosystem.
 

Download the resource to learn more >>