We changed our name from IT Central Station: Here's why

Arbor DDoS vs RSA NetWitness Logs and Packets (RSA SIEM) comparison

Cancel
You must select at least 2 products to compare!
Featured Review
Find out what your peers are saying about NETSCOUT, Imperva, Cloudflare and others in Distributed Denial of Service (DDOS) Protection. Updated: January 2022.
564,143 professionals have used our research since 2012.
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"I like all the features together as a whole.""It is fully mitigating the attacks. We've dealt with other ones where we didn't necessarily see that. The detection is very good. It's also very simple to use. Arbor is a single pane of glass, whereas with other solutions you might have a detection pane of glass and then have to go to a separate interface to deal with the mitigation. That single pane of glass makes it much simpler.""There were huge attacks in October, around 62 attacks at 30 gigabits per second, at one of our banks. We used Arbor DDoS to mitigate these attacks, and it performed great.""We have taken on the Arbor Cloud subscription, which is really useful because you secure yourself for anything beyond your current mitigation capacity. This is a really good feature of Arbor that is available.""The artificial intelligence feature is most appreciated. This solution can lower the throughput and clear the traffic, which is something really important for us. It also provides good protection. It is user-friendly, and its integration has also been really fast. We have many critical applications, and it was easy to integrate Arbor DDoS with our website, mobile application, and web banking.""The auto-mitigation, that signaling feature, where it automatically raises an alarm that a line is under attack, is important. The upstream service provider will then do something to reduce the load on our internet lines. The fact that it's automated means I don't have to sit and always be looking at threats coming through. It does it almost automatically, without any intervention by me.""Using standard BGP, NetFlow and SNMP ensure wide compatibility. There are also peering traffic reports that can help identify upstream peering opportunities. The ATLAS aggregation service allows us to contribute to the global DDoS data and benefit from overall trends.""We use it not only for DDoS detection and protection, but we also use it for traffic analysis and capacity planning as well. We've also been able to extend the use of it to other security measures within our company, the front-line defense, not only for DDoS, but for any kind of scanning malware that may be picked up. It's also used for outbound attacks, which has helped us mitigate those and lower our bandwidth costs..."

More Arbor DDoS Pros →

"Offers a good wireless feature.""The newer 11.5 version that my team is using has found it to have good mapping.""The most valuable features are the integration and ease of use.""The most valuable feature is the security that it provides.""The most valuable features are the packet inspection and the automated incident response.""The packet capture aspect of it is a valuable feature because it is quite different from a traditional SIEM solution that only carries out investigations based on captured logs.""The solution is really scalable for the high-end power, enterprise customer.""It's quite economical compared to other solutions in the market."

More RSA NetWitness Logs and Packets (RSA SIEM) Pros →

Cons
"They should improve the reporting section and make it a little bit more detailed. I would like to have much better and more detailed reports.""There is always room for improvement for any product or service. If we can bring in more agility when deploying services, that is definitely a scope which we can work towards. Nowadays, everything is being offered as a service model. It is not that we have to deploy the physical hardware, many things move up to the cloud, or even can be delivered in the VNS form in the customer's environment as well. So, in that space, if we can add more features to make it more seamless for customers to use and make it available through some marketplace, not only at the hyperscalers, but also for any on-prem deployment, that definitely would be a big plus.""We need a SaaS model for the solution.""When it comes to some false positives, we need to tweak the system from time to time. There is room for improvement when it comes to the actual mitigation because of some false positives.""Implementation could be better.""On the application layer, they could have a better distributed traffic flow. They could improve that a bit. For network data it is very effective, but the application layer can be improved.""I would also like more visibility into their bad actor feeds, their fingerprint feeds. We try to be good stewards of the internet, so if there are attacks, or bad actors within our networks, if there were an easier way for us to find them, we could stop them from doing their malicious activity, and at the same time save money.""An issue which needs to be addressed concerns information I received of attacks on the radar and Arbor, allegedly, not taking any action."

More Arbor DDoS Cons →

"The initial setup is very complex and should be simplified.""The user interface is a little bit difficult for new users and it needs to be improved.""The solution should have more integration capabilities with different platforms.""Security needs improvement.""Lots of competing products have vulnerability protection built into their products, and this solution would be improved by including that support.""The documentation is not as structured as I would like, personally, and I think that it can be improved and made much more user-friendly.""There are instances where you try to run the reports and then it does not give you the desired outcome.""The initial setup is complex. There are other solutions that are easier to implement."

More RSA NetWitness Logs and Packets (RSA SIEM) Cons →

Pricing and Cost Advice
  • "Arbor is striking a good balance between pricing and what they deliver."
  • "The solution is a bit costly if you're a small organization, but I think it's worth the price that they are charging."
  • "Arbor DDoS is quite expensive, but all these solutions are expensive because they deal with confidential information."
  • "We do not use the Arbor Cloud DDoS solution because it is too costly."
  • "You need to find a way to get a good offering from Arbor by negotiating a price. That is the challenge."
  • "There is room for improvement with the pricing. It is an expensive solution. The issue with the pricing is more the way it is built. Right now we're paying per router, and there's a limitation there. I would like to see bundle-pricing where there is an overall solution cost."
  • "The licensing of a complete Arbor solution, including fire-walling and unified site management, can get expensive."
  • "The price of this solution is a little high in the African market, it should be lower."
  • More Arbor DDoS Pricing and Cost Advice →

  • "Our license is for one year."
  • "There is a licensing fee and the customer can choose whether he wishes this to be subscription-based or perpetual."
  • "We are on an annual license for the use of the solution."
  • More RSA NetWitness Logs and Packets (RSA SIEM) Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Distributed Denial of Service (DDOS) Protection solutions are best for your needs.
    564,143 professionals have used our research since 2012.
    Questions from the Community
    Top Answer: 
    Arbor DDoS is easy to use, provides effective blocking of DDoS attacks, and can be used for DNS, web, and main servers. Additionally, this solution is far easier to operate than others solutions, such… more »
    Top Answer: 
    The price of this solution is a little high in the African market, it should be lower.
    Top Answer: 
    They should improve the reporting section and make it a little bit more detailed. I would like to have much better and more detailed reports.
    Top Answer: 
    It would help if they could provide the malware analytics in the core package as that would make the cost more reasonable. Licensing is paid annually and I believe the cost is somewhere between 12,000… more »
    Top Answer: 
    I believe they could improve their support, there are often delays. The price of the solution could be reduced, it's very costly.
    Ranking
    Views
    10,562
    Comparisons
    6,373
    Reviews
    12
    Average Words per Review
    1,090
    Rating
    8.7
    Views
    6,020
    Comparisons
    4,013
    Reviews
    12
    Average Words per Review
    510
    Rating
    7.8
    Comparisons
    Also Known As
    Arbor Networks SP, Arbor Networks TMS, Arbor Cloud for ENT
    RSA Security Analytics
    Learn More
    Overview

    Arbor Networks, the security division of NETSCOUT, is driven to protect the infrastructure and ecosystem of the internet. It is the principle upon which we were founded in 2000; and remains the common thread that runs through all that we do today. Arbor’s approach is rooted in the study of network traffic. Arbor’s suite of visibility, DDoS protection and advanced threat solutions provide customers with a micro view of their network enhanced by a macro view of global internet traffic and emerging threats through our ATLAS infrastructure. Sourced from more than 300 service provider customers, ATLAS delivers intelligence based on insight into approximately 1/3 of global internet traffic. Supported by Arbor’s Security Engineering & Response Team (ASERT), smart workflows and rich user context, Arbor’s network insights help customers see, understand, and solve the most complex and consequential security challenges facing their organizations.

    With Arbor DDoS you can automatically identify and stop all types of DDoS attacks and other cyber threats before they impact the availability of business-critical services.


    Arbor DDoS is an intelligently automated combination of in-cloud and on-premises DDoS attack protection that is continuously backed by global threat intelligence and expertise.

    Arbor DDoS Features and Benefits:

    • Global DDoS Protection: Arbor DDoS is an all-in-one solution offering carrier-agnostic, global DDoS protection that is backed by world-class security intelligence as well as industry leading DDoS protection products.
    • Worldwide scrubbing centers: Arbor DDoS offers comprehensive protection from the largest DDoS attacks.
    • Cloud Only and/or Hybrid Protection: The solution provides the flexibility to design comprehensive DDoS protection that fits your specific environment. It can be deployed as a cloud-only and/or an intelligent combination of in-cloud and on-premise DDoS protection.
    • Global Threat Intelligence: Arbor DDoS protection is continuously armed with the latest global threat intelligence from Netscout’s response team.
    • Automated DDoS Attack Detection and Mitigation: DDoS attacks can be automatically detected and routed to Arbor Cloud global scrubbing centers for mitigation.
    • Managed Services: To manage and optimize your on-premise DDoS protection, you can rely upon the industry-leading expertise of Arbor Networks.
    • Multi-layered Approach: As part of a layered approach to DDoS protection, Arbor Cloud provides in-cloud protection from advanced and high-volume DDoS attacks, all without interrupting access to your applications or services. Arbor Cloud’s automated or on-demand traffic scrubbing service defends against volumetric DDoS attacks that are too large to be mitigated on premises.

    Reviews from Real Users:

    Below are some of the many reasons why PeerSpot users are giving Arbor DDoS an 8 out of 10 rating:

    "We use it not only for DDoS detection and protection, but we also use it for traffic analysis and capacity planning as well. We've also been able to extend the use of it to other security measures within our company, the front-line defense, not only for DDoS, but for any kind of scanning malware that may be picked up. It's also used for outbound attacks, which has helped us mitigate those and lower our bandwidth costs.” - Roman L, Sr. Security Engineer at Rackspace

    "We have taken on the Arbor Cloud subscription, which is really useful because you secure yourself for anything beyond your current mitigation capacity. This is a really good feature of Arbor that is available.” - Assistant General Manager at a comms service provider

    “It is fully mitigating the attacks. We've dealt with other ones where we didn't necessarily see that. The detection is very good. It's also very simple to use. Arbor is a single pane of glass, whereas with other solutions you might have a detection pane of glass and then have to go to a separate interface to deal with the mitigation. That single pane of glass makes it much simpler." - Erik N., Product Manager, MSx Security Services at TPx Communications

    If you’re relying on log data to detect and prevent cyber threats, you’re in trouble. Attackers increasingly evade detection of log-centric security and network monitoring tools. But logs combined with full packet, endpoint NetFlow data are proven to provide the essential details for early threat detection. Here’s a closer look at our solution.

    Offer
    Under Attack?
    Invest in better cybersecurity for your business. Find out how Arbor DDoS can help protect your network from DDoS threats.
    Learn more about RSA NetWitness Logs and Packets (RSA SIEM)
    Sample Customers
    Xtel Communications
    Los Angeles World Airports, Reply
    Top Industries
    REVIEWERS
    Comms Service Provider60%
    Financial Services Firm15%
    Computer Software Company10%
    Security Firm5%
    VISITORS READING REVIEWS
    Comms Service Provider32%
    Computer Software Company25%
    Financial Services Firm7%
    Government5%
    REVIEWERS
    Comms Service Provider31%
    Financial Services Firm23%
    Computer Software Company23%
    Healthcare Company8%
    VISITORS READING REVIEWS
    Computer Software Company28%
    Comms Service Provider23%
    Financial Services Firm8%
    Government7%
    Company Size
    REVIEWERS
    Small Business33%
    Midsize Enterprise20%
    Large Enterprise48%
    VISITORS READING REVIEWS
    Small Business46%
    Midsize Enterprise10%
    Large Enterprise44%
    REVIEWERS
    Small Business27%
    Midsize Enterprise14%
    Large Enterprise59%
    Find out what your peers are saying about NETSCOUT, Imperva, Cloudflare and others in Distributed Denial of Service (DDOS) Protection. Updated: January 2022.
    564,143 professionals have used our research since 2012.

    Arbor DDoS is ranked 1st in Distributed Denial of Service (DDOS) Protection with 12 reviews while RSA NetWitness Logs and Packets (RSA SIEM) is ranked 7th in Security Information and Event Management (SIEM) with 12 reviews. Arbor DDoS is rated 8.8, while RSA NetWitness Logs and Packets (RSA SIEM) is rated 7.8. The top reviewer of Arbor DDoS writes "With automatic flow specs we're able to drop that traffic before it even enters into our network". On the other hand, the top reviewer of RSA NetWitness Logs and Packets (RSA SIEM) writes "Economical with good technical support and is easily scalable". Arbor DDoS is most compared with Radware DefensePro, Cloudflare, Palo Alto Networks WildFire, Corero and Akamai Prolexic Routed, whereas RSA NetWitness Logs and Packets (RSA SIEM) is most compared with IBM QRadar, Splunk, RSA enVision, ArcSight Enterprise Security Manager (ESM) and Cisco Stealthwatch.

    We monitor all Distributed Denial of Service (DDOS) Protection reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.