ArcSight Express - Security Expert “In a Box”
In the modern networked world, organizations of all sizes are at risk to attacks from both the inside and outside. Malware, breaches, and regulations (and associated penalties) continue to increase. Unfortunately for most mid-size firms, the security staff is not increasing, but in many cases is declining. These organizations do not have a dedicated staff of security administrators, and many firms have almost no security expertise on staff at all.
However, these firms, like their larger counterparts, must manage and secure valuable information such as financial records, private customer data, and intellectual property. These organizations are often subject to the same legal mandates as their larger competitors, who have bigger security and compliance budgets and more resources. A recent analysis by the Small Business Technology Institute showed that over half of the companies surveyed lack the funding, expertise, and dedicated resources to put good security practices in place.
For organizations struggling to improve security and compliance with reduced budgets and time, ArcSight Express delivers world-class security monitoring in a simple, cost-effective appliance solution.
ArcSight Express includes a set of rules, reports, alerts and dashboards that allow smaller security teams to gain visibility into their environment on the first day, with no rule/report development required. Already-stretched IT teams do not have to define and build extensive content on a development platform. ArcSight Express automates security incident detection, prioritization and resolution – operations that may otherwise require a staffed Security Operations Center (SOC) can be managed via email, SMS or pager notifications.
ArcSight Express acts as your Security Expert “In a Box” by addressing these and other key security and compliance challenges:
- Bots, Worms, and Viruses
- Hacker Detection
- Bandwidth Hogs and Policy Violation
- Unauthorized Application and System Access Detection
- VPN Sneak Attack Detection
- System and User Impact
- Compliance Audit Readiness
ArcSight Express addresses regulatory mandates through a set of common monitoring controls that can be applied to multiple regulations. With ArcSight Express’ pre-built rules, reports, alerts and dashboards, companies can demonstrate compliance with Sarbanes-Oxley, PCI DSS, Gramm-Leach-Bliley, FISMA, Basel II and HIPAA. ArcSight Express can also be extended with ArcSight Compliance Insight Packs, specialized solution modules designed to deliver full reporting against specific regulations.
ArcSight Express is available as a pre-configured appliance:
| Model | M7200-M | M7200-L | M7200-X | M7200-XL | L3200 |
|---|---|---|---|---|---|
| OS | Oracle Enterprise Linux 4 64-bit | ||||
| Compression | Up to 10:1 | ||||
| Max Network Devices | 50 | 100 | 250 | 500 | Same as M7200 |
| Max Desktops | 100 | 250 | 500 | 1,000 | Same as M7200 |
| Peak EPS | 500 | 1,000 | 2,500 | 5,000 | Same as M7200 |
| Max Assets | 5,000 | 10,000 | 25,000 | 50,000 | N/A |
| Web Users | Unlimited Users | ||||
| CPU | 2 x Intel Xeon E5504 Quad Core 2.0 GHz |
1 x Intel Xeon E5504 Quad Core 2.0 GHz |
|||
| Interfaces | 4 x 10/100/1000 | 2 x 10/100/1000 | |||
| RAM | 24GB | 12GB | |||
| Storage | 6 x 600GB - RAID 10 Effective 1.6TB |
2 x 1TB - RAID 1 Effective 8TB |
|||
| Chassis | 2U | 1U | |||
| Power | 2 x 870W 100-240 VAC | 1 x 480W 100-240 VAC | |||
| Dimensions (DxWxH) | 26.8” x 17.4” x 3.4” | 24.7” x 17.1” x 1.7” | |||
Actual performance will depend on factors specific to a user’s environment.
