The all-in-one SIEM appliance combines the best of log management and security event management. This SIEM appliance gives you the insight and tools to identify and prioritize threats so that you can enhance your incident response.

HPE ArcSight ESM ExpressAll-in-one SIEM appliance

Data sheet

Simplified deployment through a unified appliance

HPE ArcSight ESM Express appliance is an easy-to-deploy SIEM tool in an appliance form factor. The ArcSight community helps you to get started quickly. Built-in optional report packs give you powerful yet simple audit reports, compliance dashboards, and security snapshots—reducing the time and effort required to keep your business protected.

Page 2Data sheet

Answer who did? What? Where? When?

Analyze and correlate security events from all security devices, applications, and infrastructure items. Combining the analytics with a pre-built rule set of HPE ArcSight Express to report and alert on the events that matter to you. The user data correlated with other security events helps you answer questions such as who did? What? Where? When?

Flexible deployment options to scale linearly

Get started with an entry-level SIEM solution with your most critical device and scale as you learn more about the security analytics. The SKUs start from 250 EPS sustained to all the way up to 2,500 EPS sustained. You can scale by simply adding license keys on your appliance. HPE ArcSight Express is also available as a virtual appliance, with term license bundled with support. Express can be deployed in modular architecture starting with 250 EPS and in multiples of 50 EPS. This gives you flexibility to use only the capacity you need.

Additional use cases widen your security net

Building your SIEM solution shouldn’t be a puzzle, so we’ve taken care of it for you. HPE ArcSight Express includes access to HPE ArcSight Marketplace with trusted and certified security packages. HPE ArcSight constantly updates its latest use cases depending on the market threats so that you can focus on your business and not current threats.

Compliance reporting for multiple regulations

HPE ArcSight Express is compatible with HPE ArcSight Compliance Insight Package (CIP) and can be used to deliver a set of common compliance monitoring controls that can be applied to multiple regulations including Sarbanes-Oxley, PCI DSS, FISMA, ISO 27000, NERC, and HIPAA.

Highlights• All-in-one SIEM appliance for universal

log management, compliance, and event management

• Collect, store, and analyze your security events through a single appliance

• Analyze billions of security events from firewall, IPS, endpoint, apps, and flows

• Built-in optional audit reports to assist in compliance

• Detect suspicious and malicious behavior missed by your point security devices

• Combat APTs, malware attacks, and insider threats

• Protection against zero-day threats

Page 3Data sheet

Built-in dashboards for real-time security analytics

You can get built-in reports for malware activity, firewall, IPS, endpoint logs, and user activity. These dashboards help you understand the threats and risks that enable you to make smart decisions about where to focus your security team’s time and attention. Also included are dashboards that monitor critical infrastructure, such as Cisco appliances, Microsoft® Windows®, and Linux® servers to quickly report on business critical infrastructure.

About Hewlett Packard Enterprise Security

Hewlett Packard Enterprise Security is a leading provider of security and compliance solutions for the modern enterprise that wants to mitigate risk in their environment and defend against advanced threats.

Based on market leading products from HPE ArcSight, HPE Fortify, and HPE TippingPoint, Hewlett Packard Enterprise Security uniquely delivers the advanced correlation, application protection, and network defense to build the next-generation security operation center (SOC).

Hewlett Packard Enterprise services

HPE Global Services take a holistic approach to building and operating cyber security and response solutions. These capabilities support the cyber threat management and regulatory compliance needs of any enterprise through use-case-driven solutions.

Rate this document

Data sheet

© Copyright 2012–2015 Hewlett Packard Enterprise Development LP. The information contained herein is subject to change without notice. The only warranties for Hewlett Packard Enterprise products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. Hewlett Packard Enterprise shall not be liable for technical or editorial errors or omissions contained herein.

Microsoft and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. Linux is the registered trademark of Linus Torvalds in the U.S. and other countries.

4AA4-1163ENW, November 2015, Rev. 10