ArcSight Express - Your Security Expert in a Box
Protect Better
Detect Sooner
React Faster
What is ArcSight Express?
ArcSight Express is the only family of security appliances that combines security event correlation, log management, IT search, NetFlow monitoring, compliance reporting and guided response into a single, easy to deploy and easy to use solution.
- OVERVIEW
- SPECS
- VIDEO
- RESOURCES
What It Does
ArcSight Express correlates seemingly unrelated events and NetFlow data from network devices using the most advanced real-time correlation techniques. By correlating disparate events and NetFlow data, it can detect even the most subtle attacks. As a result, organizations can cut through millions of activities to focus on the most critical incidents affecting the organization. This provides better security and faster response with fewer resources. ArcSight Express also includes the first log management solution to fully integrate field-based and raw text search across structured and unstructured log data.
How It's Different
As threats to the business become more sophisticated, detecting them requires broader visibility across networks, security devices, servers and applications. ArcSight Express is unique in its Universal Data Collection capability. Only ArcSight offers a FlexConnector collection architecture that allows organizations to include niche products and custom applications into their analysis in days instead of weeks. This results in true universal visibility across the enterprise.
What's New
- Integrated NetFlow and security monitoring for accurate incident prioritization
- Security against bots, worms, viruses, zero day attacks and hacking attempts
- Remote access monitoring for users on VPN accounts and remote access gateways
- IT Policy compliance for bandwidth usage and network resource allocation
- Regulatory compliance readiness for government and industry audits
Appliance Specifications
| Model | M7200-M | M7200-L | M7200-X | M7200-XL | L3200 |
|---|---|---|---|---|---|
| OS | Oracle Enterprise Linux 4 64-bit | ||||
| Compression | Up to 10:1 | ||||
| Peak EPS/Flows | 500 EPS/ 50K Flows |
1000 EPS/ 50K Flows |
2500 EPS/ 50K Flows |
5000 EPS/ 50K Flows |
Same as M7200 |
| Max Devices | 750 | 750 | 750 | 750 | Same as M7200 |
| Max Assets | 5,000 | 10,000 | 25,000 | 50,000 | N/A |
| Web Users | Unlimited Users | ||||
| CPU | 2 x Intel Xeon E5504 Quad Core 2.0 GHz |
1 x Intel Xeon E5504 Quad Core 2.0 GHz |
|||
| Interfaces | 4 x 10/100/1000 | 2 x 10/100/1000 | |||
| RAM | 24GB | 12GB | |||
| Storage | 6 x 600GB - RAID 10 Effective 1.6TB |
2 x 1TB - RAID 1 Effective 8TB |
|||
| Chassis | 2U | 1U | |||
| Power | 2 x 870W 100-240 VAC | 1 x 480W 100-240 VAC | |||
| Dimensions (DxWxH) | 26.8” x 17.4” x 3.4” | 24.7” x 17.1” x 1.7” | |||
Actual performance will depend on factors specific to a user’s environment.
ArcSight Express Product Overview
Aarij Khan, Director of Product Marketing at ArcSight, gives a brief overview the newest appliance-based Network Monitoring solution - ArcSight Express. ArcSight Express improves security by reducing threat volume, mitigates sophisticated threats, and helps you pass your audits with the lowest effort and cost. Watch the Video
ArcSight Case Study: Long Term Care Partners
Long Term Care Partners uses ArcSight Express on a daily basis to automatically review log files, monitor its network for suspicious incidents, demonstrate compliance more efficiently and understand exactly what is happening at all times. Watch the Video
ARCSIGHT EXPRESS RESOURCES
Product Briefs | Case Studies | Webinars | Whitepapers
PRODUCT BRIEFS
CASE STUDIES
WEBINARS
WHITEPAPERS
