ArcSight E7400

ArcSight E7400 is the market-leading security correlation engine used by the most demanding public and private organizations in the world. It protects these firms from external threats such as bots and worms, and internal risks such as fraud and theft.

ArcSight E7400

  • Max EPS: 5000 EPS/3000EPS
  • OS: Red Hard Enterprise Linux 5 64-bit
  • CPU: 2 x Intel Xeon E5620 Quad Core 2.4 GHz
  • RAM: 36GB
  • Storage: 6 x 600GB - Serial Attached SCSI (SAS) disks in RAID 10
  • Chassis: 2U Rack-mountable appliance

ArcSight E7400 Overview

What It Does

ArcSight ESM is the brain of the ArcSight SIEM platform. It analyzes and correlates every event that occurs across the organization – every login, logoff, file access, database query, etc. – to deliver accurate prioritization of security risks and compliance violations. The powerful correlation engine of ArcSight ESM sifts through millions of log records to find the critical incidents that matter. These incidents are then presented through real-time dashboards, notifications or reports to the security administrator.

How It's Different

With deep understanding of users and roles, network activities and flows, ArcSight ESM is uniquely able to understand who is on the network, what data they are seeing, which actions they are taking with that data, and how that affects business risk. Unlike competing products, ArcSight ESM can model not only IP addresses/network zones, systems and devices, but also users, employees, customers and partners for powerful analysis. ArcSight ESM can then apply modern techniques including pattern recognition and behavioral analysis to detect the sophisticated threats that are hurting organizations every day. Once threats and risks are identified, ArcSight ESM uses its built-in workflow engine to manage incidents and prevent damage.

What's New

  • User and role data structures to model and monitor user activity across systems and applications
  • Custom domain extensions to manage any information e.g. monetary constructs, transactions, ERP data
  • Web Services API to enable intelligent reporting and automation from any client application
  • Behavior-based pattern detection to identify advanced persistent threats (APTs)
  • Regulatory compliance readiness for government and industry audits


Appliance Specifications
Max EPS (Sustained) 5000 EPS/3000 EPS
OS Red Hat Enterprise Linux 5 64-bit
CPU 2 x Intel Xeon E5620 Quad Core 2.4 GHz
Interfaces 4 x 10/100/1000
Storage 6 x 600GB - Serial Attached SCSI (SAS) disks in RAID 10
Chassis 2U Rack-mountable appliance
Power 2 x 750W CS Platinum 100-240VAC
Thermal 3000 BTU/hr
Weight 78 lbs (36 kg)
Dimensions (DxWxH) 27.3" x 17.6" x 3.4"
Minimum System RequirementsArcSight ESM Manager Software
Supported OS Red Hat Linux, MS Windows Server 2003 32- or 64-bit, IBM AIX 5L 5.3 64 bit, Solaris 9/10 32- or 64-bit
Hardware Requirements Linux or Windows – x86 Multi-Core CPU at least 1.0 GHz, 2-4 GB RAM and 2GB disk space
IBM AIX – PPC Multi-CPU with 16 GB RAM and 2 GB disk space
Sun Solaris – Sparc Multi-CPU system with 2-4 GB RAM and 2 GB disk space

*Actual performance will depend on factors specific to a user’s environment.