What users are saying about

AlienVault OSSIM

14 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 8.1 out of 101

Qualys Private Cloud Platform

8 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 8.3 out of 101

Add comparison

Likelihood to Recommend

AlienVault OSSIM

If this is your first experience with a SIEM, this one can get you started. Take the time to learn the ins and outs of the product and you'll most likely be satisfied with it if your company is an SMB. If you need compliance reports, OSSIM is too small for you, you'll need to go with USM or USM Anywhere.
Ivan Montilla Miralles profile photo

Qualys Private Cloud Platform

I believe that Qualys Private Cloud Platform is highly scalable and could be appropriate for a small business to a global enterprise. The key question, how safe to do you want to be?
No photo available

Feature Rating Comparison

Security Information and Event Management (SIEM)

AlienVault OSSIM
8.1
Qualys Private Cloud Platform
Centralized event and log data collection
AlienVault OSSIM
8.0
Qualys Private Cloud Platform
Correlation
AlienVault OSSIM
7.7
Qualys Private Cloud Platform
Event and log normalization
AlienVault OSSIM
7.6
Qualys Private Cloud Platform
Deployment flexibility
AlienVault OSSIM
9.0
Qualys Private Cloud Platform
Integration with Identity and Access Management Tools
AlienVault OSSIM
7.5
Qualys Private Cloud Platform
Custom dashboards and views
AlienVault OSSIM
8.0
Qualys Private Cloud Platform
Host and network-based intrusion detection
AlienVault OSSIM
8.7
Qualys Private Cloud Platform

Pros

  • Most of the configuration comes out-of-the-box suited for most environments. Setting it up is really easy, with the wizard, you can have it working in less than 3 hours of deployment, without counting asset installation.
  • Out-of-the-box dashboards are really useful. You can modify or add new widgets to suit your needs, but you'll most likely agree with what already comes configured.
  • The tickets feature for handling alarms is really easy to use.
Ivan Montilla Miralles profile photo
  • The first benefit is actually in the vendor. Qualys provides free instructor-led training.
  • Ease of use in a diverse environment.
  • The Qualys Private Cloud Platform has a complete suite of reporting capabilities so you can use your data quickly.
No photo available

Cons

  • The correlation directives that come out of the box are very few. I understand more correlation directives are a premium product, but one can hardly see the value of having very few. It makes new customers think they will not get better directives when they switch to the full USM or USM Anywhere.
  • Same with reports, the few reports it comes out of the box can be retrieved using other tools that are better prepared for the task. I understand that compliance reports aren't free, but at least I'd expect more security reports.
  • The OTX tab in dashboards sometimes takes too long to load, even if you have a fast internet and plenty of resources in the VM.
Ivan Montilla Miralles profile photo
  • The way that devices are catalogued can be tough in a DHCP environment.
No photo available

Usability

AlienVault OSSIM8.0
Based on 1 answer
AlienVault OSSIM is far easy to use and manage - provided you know what you're doing. As any SIEM application, there is some background knowledge required in order to take advantage of the product's functionalities, such as the log correlation and analysis. Other than that, the application is quite usable and robust.
Jose Quintero profile photo
No score
No answers yet
No answers on this topic

Alternatives Considered

AlienVault OSSIM as the first experience with a SIEM is very fine, especially if your company is an SMB. Every SIEM shares some features in common with other products, features such as log retrieval and normalization. So if you stick with principles, you can learn other SIEM products as well. If your environment is not of a minimum size, LogRhythm might be overkill for your network, same with McAfee Enterprise Security Manager.
Ivan Montilla Miralles profile photo
While all of the alternative solutions mentioned here are great products, the features and usability that Qualys Private Cloud brought to the table worked out to be the best fit for my organization.
No photo available

Return on Investment

  • Since it's free, ROI has been positive in terms of money. In time cost and engineer time, it has been also very cheap to implement since it's very easy to get it running.
  • As a learning tool, for ACSE certification, it has also been very useful, since it shares a lot with the USM appliance installation.
  • As a test environment, again, it shares a lot with the USM appliance installation, so if you have a USM also and you don't want to test things over your production environment, testing with OSSIM first has been a good way to mitigate possible bad effects.
Ivan Montilla Miralles profile photo
  • Much faster response time for vulnerability management.
  • Overall better security posture.
No photo available

Pricing Details

AlienVault OSSIM

General
Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No
Additional Pricing Details

Qualys Private Cloud Platform

General
Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No
Additional Pricing Details