Threat Detection and Response

OpenText Core Behavioral Signals (ArcSight)

Proactively detect insider risks, novel attacks, and advanced persistent threats

OpenText Core Behavioral Signals running on a computer

Overview

OpenText™ Core Behavioral Signals (ArcSight) is an advanced threat-detection tool that uses user entity behavior analytics (UEBA) and 100%-online, unsupervised machine learning (ML) to detect behavioral anomalies across the organization and empower threat hunters. It evolves with the organization so teams can detect insider risk, novel attacks, and advanced persistent threats without needing to maintain rules or update thresholds.

See OpenText Core Behavioral Signals in action

How OpenText Core Behavioral Signals can benefit business

Detect difficult-to-find threats

Identify behavior changes and detect adversaries that rule-bound systems struggle to detect, even if attackers change their method of attack.
Increase analyst efficacy and efficiency

Transform billions of events into a handful of actionable threat leads, freeing analysts to focus on the threats that matter the most.
Automate maintenance and tuning

Gain contextually rich leads with 100%-online, unsupervised ML models that automatically adjust to your organization’s level of normal—without rules or thresholds.
Reduce insider attack remediation costs

Catch insider threats in days—not months—to drastically reduce remediation costs.

Why OpenText Core Behavioral Signals?

Machine learning foundation

Rely on hundreds of unsupervised machine learning models to detect behavioral anomalies that indicate threats.
Adaptive threat detection

Adjust to new normals with advanced threat detection that automatically adapts to your organization with every new event.
Simplified threat hunting

Enable analysts to focus their attention on stopping threats with automated ML training and the elimination of rules and thresholds.

Key features

Organizational risk at a glance

Provides dashboards that make it easy to see the overall risk of the entire organization, view trends, highlight individual risks, and quickly address threats.
Dynamic anomaly and risk timelines

Presents an entity’s risk profile over time—including the anomalies that contributed to its risk score—and offers advanced filtering so threat hunters can focus in on anomalies of interest.
Fully transparent alerts

Accelerates threat hunting with context-rich leads—including visualizations and highly readable descriptions of the anomalies—backed by the events that caused them.
Analyst collaboration

Enables real-time collaboration within one centralized location so analysts can quickly identify attacks by leaving comments, applying visual flags, and marking events with user-defined tags.
Raw event viewer

Uses a normalization process that retains all raw log fields, enabling users to review the exact details that contribute to an increased risk score.
Anomaly mapping

Delivers insights into security stack vulnerabilities by mapping anomalies to MITRE ATT&CK® tactics.
API integration

Leverages APIs to integrate with existing SOAR and threat-ticketing systems, allowing users to create tickets or automate actions with ease.
Expanded threat hunting capabilities

Supports bundling with OpenText™ Threat Hunting Services to deliver world-class threat analytics with expert, human support.

How to buy

OpenText Core Behavioral Signals

Organizational risk at a glance


Dynamic anomaly and risk timelines
Fully transparent alerts
Analyst collaboration
MITRE ATT&CK mapping
Raw events viewer
APIs for SOAR and trouble ticketing system
CrowdStrike Falcon data support

Public cloud

Contact us

Accelerate the value of OpenText Core Behavioral Signals

Professional Services

OpenText Professional Services combines end-to-end solution implementation with comprehensive technology services to help improve systems.

Get a trusted partner to guide your information management path
Your journey to success
Propel your business into the future with modern solutions
NextGen Services
Accelerate your information management journey
Consulting Services
Unlock the full potential of your information management solution
Customer Success Services

Partners

OpenText helps customers find the right solution, the right support, and the right outcome.

Search OpenText's Partner directory
Find a Partner
Industry-leading organizations that enhance OpenText products and solutions
Strategic Partners
Explore OpenText's Partner solutions catalog
Application Marketplace

Training

Learning Services offers comprehensive enablement and learning programs to accelerate knowledge and skills.

Meet the demands of all types of users for effective adoption
Learning Services
Get expertise as needed
Flexible Credits

Communities

Explore our OpenText communities. Connect with individuals and companies to get insight and support. Get involved in the discussion.

Discover the latest insights in product development
OpenText technical blogs
Explore ideas, join discussions, and network
OpenText community

Premium Support

Optimize the value of your OpenText solution with dedicated experts who provide mission-critical support for your complex IT environment.

Get personalized, one-on-one assistance from technical and strategic experts
Premium Support

OpenText Core Behavioral Signals resources

ArcSight Intelligence neutralizes insider threats and prevents sensitive data theft

Learn more

Astonishing POC insight leads to ArcSight Intelligence for CrowdStrike implementation

Learn more

FeaturedFeatured

Analytics CloudAnalytics Cloud

Data Lakehouse & AnalyticsData Lakehouse & Analytics

BI, Visualization & ReportingBI, Visualization & Reporting

eDiscovery and Legal SolutionseDiscovery and Legal Solutions

OpenText™ Aviator Search

Business Network CloudBusiness Network Cloud

Supply Chain AutomationSupply Chain Automation

B2B IntegrationB2B Integration

Secure CollaborationSecure Collaboration

Supply Chain TraceabilitySupply Chain Traceability

Supply Chain InsightsSupply Chain Insights

Industry Applications and ServicesIndustry Applications and Services

OpenText™ Business Network Aviator

Content CloudContent Cloud

Document ManagementDocument Management

AI Content ManagementAI Content Management

Capture Intelligent Document ProcessingCapture Intelligent Document Processing

Process AutomationProcess Automation

Business IntegrationsBusiness Integrations

Information ArchivingInformation Archiving

Industry SolutionsIndustry Solutions

Information GovernanceInformation Governance

OpenText™ Content Aviator

Cybersecurity CloudCybersecurity Cloud

Application SecurityApplication Security

Data Privacy and ProtectionData Privacy and Protection

Threat Detection and ResponseThreat Detection and Response

Identity and Access ManagementIdentity and Access Management

Digital Investigations and ForensicsDigital Investigations and Forensics

Threat IntelligenceThreat Intelligence

OpenText™ Cybersecurity Aviator

DevOps CloudDevOps Cloud

DevOps PlatformDevOps Platform

Functional TestingFunctional Testing

PPM and Strategic Portfolio ManagementPPM and Strategic Portfolio Management

Quality ManagementQuality Management

Performance EngineeringPerformance Engineering

OpenText™ DevOps Aviator

Experience CloudExperience Cloud

Web & Mobile ExperiencesWeb & Mobile Experiences

Contact Center AnalyticsContact Center Analytics

Messaging & FaxMessaging & Fax

Customer CommunicationsCustomer Communications

Digital Asset ManagementDigital Asset Management

Customer Journey and DataCustomer Journey and Data

OpenText™ Experience Aviator

IT Operations CloudIT Operations Cloud

Service ManagementService Management

Discovery & CMDBDiscovery & CMDB

AIOps and ObservabilityAIOps and Observability

Network ManagementNetwork Management

Cloud Management, FinOps & GreenOpsCloud Management, FinOps & GreenOps

AutomationAutomation

OpenText™ IT Operations Aviator

OpenText™ ThrustOpenText™ Thrust

OpenText™ Thrust bundleOpenText™ Thrust bundle

OpenText™ Aviator Thrust

PortfolioPortfolio

Data ProtectionData Protection

Endpoint Management and Mobile Security Endpoint Management and Mobile Security

Hybrid Work, Email, and Team Collaboration Hybrid Work, Email, and Team Collaboration

Archiving, eDiscovery, and Data SecurityArchiving, eDiscovery, and Data Security

Connectivity and Document ManagementConnectivity and Document Management

Information reimaginedInformation reimagined

Artificial IntelligenceArtificial Intelligence

IndustryIndustry

Enterprise ApplicationsEnterprise Applications

Your journey to successYour journey to success

Customer SupportCustomer Support

Customer Success ServicesCustomer Success Services

Strategy & Advisory ServicesStrategy & Advisory Services

Consulting ServicesConsulting Services

Learning ServicesLearning Services

Managed ServicesManaged Services

Find an OpenText PartnerFind an OpenText Partner

Find a Partner SolutionFind a Partner Solution

Grow as a PartnerGrow as a Partner

Become a Partner

Asset LibraryAsset Library

Featured

Analytics Cloud

Data Lakehouse & Analytics

BI, Visualization & Reporting

eDiscovery and Legal Solutions

Business Network Cloud

Supply Chain Automation

B2B Integration

Secure Collaboration

Supply Chain Traceability

Supply Chain Insights

Industry Applications and Services

Content Cloud

Document Management

AI Content Management

Capture Intelligent Document Processing

Process Automation

Business Integrations

Information Archiving

Industry Solutions

Information Governance

Cybersecurity Cloud

Application Security

Data Privacy and Protection

Threat Detection and Response

Identity and Access Management

Digital Investigations and Forensics

Threat Intelligence

DevOps Cloud

DevOps Platform

Functional Testing

PPM and Strategic Portfolio Management

Quality Management

Performance Engineering

Experience Cloud

Web & Mobile Experiences

Contact Center Analytics

Messaging & Fax

Customer Communications

Digital Asset Management

Customer Journey and Data

IT Operations Cloud

Service Management

Discovery & CMDB

AIOps and Observability

Network Management

Cloud Management, FinOps & GreenOps

Automation

OpenText™ Thrust

OpenText™ Thrust bundle

Portfolio

Data Protection

Endpoint Management and Mobile Security

Hybrid Work, Email, and Team Collaboration

Archiving, eDiscovery, and Data Security

Connectivity and Document Management

Information reimagined

Artificial Intelligence

Industry

Enterprise Applications

Your journey to success

Customer Support

Customer Success Services

Strategy & Advisory Services

Consulting Services

Learning Services

Managed Services

Find an OpenText Partner

Find a Partner Solution

Grow as a Partner

Asset Library

Blogs

Events

Communities

Customer Stories

OpenText Navigator