Alert Logic Log Correlation and Analysis

1 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 8 out of 101

AlienVault USM

328 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 7.9 out of 101

Add comparison

Likelihood to Recommend

Alert Logic Log Correlation and Analysis

Alert Logic is ideally placed to support and protect cloud infrastructure and services such as AWS hosted services. It is less appropriate for platform as a service as this would be addressed by the provider in question. It would also be ideally suited to on-premise and hybrid cloud scenarios to protect services from attacks and breaches.
No photo available

AlienVault USM

Since AlienVault is a versatile tool, having versions for various cloud providers as well as virtualization frameworks, it adheres to the most diverse scenarios. Another strong point to be highlighted is how the company is constantly improving the product. AlienVault is famous for the effort the company puts behind the tool, and it is being improved constantly by adding new resources.
Erlon Sousa Pinheiro profile photo

Feature Rating Comparison

Security Information and Event Management (SIEM)

Alert Logic Log Correlation and Analysis
AlienVault USM
7.3
Centralized event and log data collection
Alert Logic Log Correlation and Analysis
AlienVault USM
8.0
Correlation
Alert Logic Log Correlation and Analysis
AlienVault USM
8.0
Event and log normalization
Alert Logic Log Correlation and Analysis
AlienVault USM
8.0
Deployment flexibility
Alert Logic Log Correlation and Analysis
AlienVault USM
7.0
Custom dashboards and views
Alert Logic Log Correlation and Analysis
AlienVault USM
6.0
Host and network-based intrusion detection
Alert Logic Log Correlation and Analysis
AlienVault USM
7.0

Pros

  • Alert Logic provides very technical solutions to address security risks. However much of the benefit is from a human level understanding of the threats seen.
  • As a company, they are profiling thousands of companies and are better able to predict threats such as denial of service attacks and warn organisations ahead of time.
No photo available
  • Displays alarms in a manner that is easily interpreted out of the box. We do not have a security admin so ease of use is important to us. The alarm panel is very easy to read and dig into when needed.
  • Easy implementation. They give all sorts of resources when implementing, but it is intuitive and easy to deploy.
  • Asset groupings are easy to manage.
Will Armistead profile photo

Cons

  • Overall the product and service works well and addresses all our key requirements so we have no real negatives to share.
No photo available
  • Performance is not great at more than 300 EPS; bottleneck appears to be the MySQL disk I/O
  • Dashboards are decent to customize, but are lacking
  • UI and services aren't always stable or predictable; when adding a new plugin it sometimes takes things like a reconfig command at CLI in order for the change to stick
Jon Armani profile photo

Likelihood to Renew

No score
No answers yet
No answers on this topic
AlienVault USM9.0
Based on 13 answers
It is a great product and has been instrumental to our security posture.
Dana Hancock profile photo

Usability

No score
No answers yet
No answers on this topic
AlienVault USM7.2
Based on 33 answers
Not enough documentation, non-descript error messages, and too much required to be done at the command line for an "appliance".
Aaron Rothstein profile photo

Support

No score
No answers yet
No answers on this topic
AlienVault USM7.6
Based on 24 answers
Support was initially slow but once engaged resolution was fast and efficient.Additional support on other topics was also resolved under the same initial call which helped rather than closing the call off and starting again.Further check backs were carried out before the case was closed so support was very useful throughout.
Philip Clarke profile photo

Implementation

No score
No answers yet
No answers on this topic
AlienVault USM7.1
Based on 37 answers
It required us to make a lot of changes and use a decent amount of manpower in order to implement the software.
Mikhail Suleymanov profile photo

Alternatives Considered

There are alternatives some of which have a greater overhead and require more in-house technical skills. Alert Logic provide a full service so for us this was a better solution.
No photo available
I looked into Splunk, QRadar, but they were way too expensive and the reviews weren't always great. I used McAfee ESM extensively at my prior job and the product is probably the worst in the SIEM space. We moved to AlienVault from ELK which, while a cool product, didn't do any security event correlation and has a terrible search and log review and export. AlienVault is the only major SIEM comprised of over 200 open source tools I'd want to use anyway, so it does more than any SIEM with its HIDS agents, vulnerability scanning, asset discovery, etc. The included Open Threat Exchange subscription is also a major plus.
Jon Armani profile photo

Return on Investment

  • Return on Investment is measured in how protected our reputation is and Alert Logic contributes to this is a large way.
  • Alert Logic provides excellent information security assurance to the business and allows us to feel more proactive.
No photo available
No answers on this topic

Screenshots

Alert Logic Log Correlation and Analysis

Pricing Details

Alert Logic Log Correlation and Analysis

General
Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No
Additional Pricing Details

Alert Logic Log Correlation and Analysis More Information

AlienVault USM

General
Free Trial
Yes
Free/Freemium Version
Yes
Premium Consulting/Integration Services
Yes
Entry-level set up fee?
Optional
Additional Pricing Details

AlienVault USM More Information