HPE ArcSight ESM Express All-in-one SIEM

Transcription

HPE ArcSight ESM Express All-in-one SIEM
Data sheet
HPE ArcSight ESM Express
All-in-one SIEM appliance
The all-in-one SIEM appliance combines the best of
log management and security event management. This
SIEM appliance gives you the insight and tools to identify
and prioritize threats so that you can enhance your
incident response.
Simplified deployment through a unified appliance
HPE ArcSight ESM Express appliance is an easy-to-deploy SIEM tool in an appliance form
factor. The ArcSight community helps you to get started quickly. Built-in optional report packs
give you powerful yet simple audit reports, compliance dashboards, and security
snapshots—reducing the time and effort required to keep your business protected.
Data sheet
Page 2
Answer who did? What? Where? When?
Highlights
• All-in-one SIEM appliance for universal
log management, compliance, and
event management
• Collect, store, and analyze your security
events through a single appliance
• Analyze billions of security events from
firewall, IPS, endpoint, apps, and flows
• Built-in optional audit reports to assist
in compliance
• Detect suspicious and malicious
behavior missed by your point
security devices
• Combat APTs, malware attacks, and
insider threats
Analyze and correlate security events from all security devices, applications, and infrastructure
items. Combining the analytics with a pre-built rule set of HPE ArcSight Express to report and
alert on the events that matter to you. The user data correlated with other security events helps
you answer questions such as who did? What? Where? When?
Flexible deployment options to scale linearly
Get started with an entry-level SIEM solution with your most critical device and scale as you
learn more about the security analytics. The SKUs start from 250 EPS sustained to all the way
up to 2,500 EPS sustained. You can scale by simply adding license keys on your appliance.
HPE ArcSight Express is also available as a virtual appliance, with term license bundled with
support. Express can be deployed in modular architecture starting with 250 EPS and in
multiples of 50 EPS. This gives you flexibility to use only the capacity you need.
• Protection against zero-day threats
Additional use cases widen your security net
Building your SIEM solution shouldn’t be a puzzle, so we’ve taken care of it for you.
HPE ArcSight Express includes access to HPE ArcSight Marketplace with trusted and certified
security packages. HPE ArcSight constantly updates its latest use cases depending on the
market threats so that you can focus on your business and not current threats.
Compliance reporting for multiple regulations
HPE ArcSight Express is compatible with HPE ArcSight Compliance Insight Package (CIP) and
can be used to deliver a set of common compliance monitoring controls that can be applied to
multiple regulations including Sarbanes-Oxley, PCI DSS, FISMA, ISO 27000, NERC, and HIPAA.
Data sheet
Page 3
Built-in dashboards for real-time security analytics
You can get built-in reports for malware activity, firewall, IPS, endpoint logs, and user activity.
These dashboards help you understand the threats and risks that enable you to make smart
decisions about where to focus your security team’s time and attention. Also included are
dashboards that monitor critical infrastructure, such as Cisco appliances, Microsoft® Windows®,
and Linux® servers to quickly report on business critical infrastructure.
About Hewlett Packard Enterprise Security
Hewlett Packard Enterprise Security is a leading provider of security and compliance solutions
for the modern enterprise that wants to mitigate risk in their environment and defend against
advanced threats.
Based on market leading products from HPE ArcSight, HPE Fortify, and HPE TippingPoint,
Hewlett Packard Enterprise Security uniquely delivers the advanced correlation, application
protection, and network defense to build the next-generation security operation center (SOC).
Hewlett Packard Enterprise services
HPE Global Services take a holistic approach to building and operating cyber security and
response solutions. These capabilities support the cyber threat management and regulatory
compliance needs of any enterprise through use-case-driven solutions.
Data sheet
Rate this document
© Copyright 2012–2015 Hewlett Packard Enterprise Development LP. The information contained herein is subject to change without
notice. The only warranties for Hewlett Packard Enterprise products and services are set forth in the express warranty statements
accompanying such products and services. Nothing herein should be construed as constituting an additional warranty.
Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein.
Microsoft and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other
countries. Linux is the registered trademark of Linus Torvalds in the U.S. and other countries.
4AA4-1163ENW, November 2015, Rev. 10