AlienVault OSSIM vs Varonis Data Security Platform

Likelihood to Recommend

If this is your first experience with a SIEM, this one can get you started. Take the time to learn the ins and outs of the product and you'll most likely be satisfied with it if your company is an SMB. If you need compliance reports, OSSIM is too small for you, you'll need to go with USM or USM Anywhere.

Read full review

Ivan Montilla Miralles

Technical Services

GB Advisors, Inc.Computer & Network Security, 11-50 employees

View all 7 answers on this topic

Data Governance is well suited to areas where there is a requirement to control user access and privileges to unorganised data, if an organisation is taking on the challenge of a data classification project then this is a great tool for finding out what data is out in the organisation. Some additional modules allow information owners and approvers to authorise user access through a web portal cutting down on a manual process and lets profile administration be auditable.

Read full review

Philip Clarke

IT Systems/Security Manager

R&QInsurance, 201-500 employees

View all 7 answers on this topic

Feature Rating Comparison

AlienVault OSSIM

Varonis Data Security Platform

Centralized event and log data collection

Correlation

Event and log normalization

Deployment flexibility

Integration with Identity and Access Management Tools

Custom dashboards and views

Host and network-based intrusion detection

Pros

Asset discovery. Once installed in a centric, network-accessible server, OSSIM can poll all your endpoints with common protocols (SSH, SNMP, WMI) to detect and discover site-wide assets to monitor. You only need to group them by your own criteria once added to the product.
SIEM Event Correlation. You can define quite complex correlation rules to detect possible suspicious or malicious actions or attempts in your network, in order to categorize them as real threats or as false positives, thus streamlining your risk assessment and management.
Ease of installation. The entire AlienVault OSSIM is self-contained in an ISO file, which can be burned into a DVD or just mounted in your server of choice (physical or virtual) for deployment. The installation process is automated and quote verbosed, with options for static IP, email messaging and others.
Ease of access. Being AlienVault OSSIM a self-contained appliance, it can be accessed via web by any device that supports a web browser, being that desktops, workstation, mobile devices, etc. The OSSIM dashboard and other features are automatically rearranged to adapt to the particular device being in use.

Read full review

Jose Quintero

Support Services Manager

GB Advisors, Inc.Computer Software, 51-200 employees

View all 7 answers on this topic

Monitors and reports file and folder access and usage.
Provides for assigned folder owners who can receive reports and manage access themselves.

Read full review

Rodney Barnhardt

Server Administrator

Charlotte Pipe and FoundryBuilding Materials, 1001-5000 employees

View all 7 answers on this topic

Cons

The reports are clunky and a bit tedious to parse through.
Sometimes there's so much noise it's hard to tell what a true positive is. There are lots of false ones that trigger alerts but are normal behavior in many environments.

Read full review

John Keenan

Director of Information Security

Memorial Hospital of GulfportMedical Practice, 5001-10,000 employees

View all 7 answers on this topic

Implementation could have been a little smoother with more help from the Varonis sales team, but we managed
Tying it into some 3rd party systems could be more intuitive
Navigating the built in rules and patterns was a little clunky, but we worked through them

Read full review

Verified User

Analyst in Finance and Accounting

Financial Services Company, 1001-5000 employees

View all 7 answers on this topic

Usability

AlienVault OSSIM 8.0

Based on 1 answer

AlienVault OSSIM is far easy to use and manage - provided you know what you're doing. As any SIEM application, there is some background knowledge required in order to take advantage of the product's functionalities, such as the log correlation and analysis. Other than that, the application is quite usable and robust.

Read full review

Jose Quintero

Support Services Manager

GB Advisors, Inc.Computer Software, 51-200 employees

View all 1 answers on this topic

Varonis Data Security Platform 8.0

Based on 1 answer

I wish the cost was a little bit lower and increase functionality and features would give it 10/10.

Read full review

Gus Awad

Senior Systems Engineer

BELLA + CANVASRetail, 51-200 employees

View all 1 answers on this topic

Support Rating

AlienVault OSSIM 8.0

Based on 4 answers

AlienVault OSSIM support has been very good. I have not had an issue that they were not able to quickly identify and provide a fix for. They are very quick to respond to open cases and are very knowledgeable in the product, which makes troubleshooting issues fast and solutions are provided quickly.

Read full review

Laurie Keith

Help Desk Manager

Black Hills Federal Credit UnionBanking, 201-500 employees

View all 4 answers on this topic

Varonis Data Security Platform 9.4

Based on 6 answers

Support has always been very responsive and addressed any issues we may have had in the past. Some local engineers are willing to come onsite or work over a web session to discuss creating a new rule set or look at some issues. Getting issues address has never been a problem. There was one feature we had trouble getting to function correctly, but support and local engineers were willing to work with us as much as needed to get it working correctly for our organization.

Read full review

Rodney Barnhardt

Server Administrator

Charlotte Pipe and FoundryBuilding Materials, 1001-5000 employees

View all 6 answers on this topic

Alternatives Considered

Best bang for the buck. Darktrace did not perform even close to AlienVault. I ran them concurrently. AlienVault consistently found issues that Darktrace didn't pick up, and the Darktrace incidents were false positives. At one point, Darktrace stated I had 2,000 servers and I have 112.FortiSIEM is an awesome package but it's more then I need (or can afford). I would need to add staff, for at least the first year or so, just to get it setup and configured correctly.

Read full review

Matthew Frederickson

Director of Information Technology

Council Rock School DistrictEducation Management, 1001-5000 employees

View all 7 answers on this topic

At the time of our purchase Stealth Bits did not have the same functionality that we initially wanted, so Varonis was the better option and across the available modules again Varonis could cover more future use areas. As of now Stealth Bits has really caught up and as they do not operate an agent logic of data capture can be a lot easier and quicker to install.

Read full review

Philip Clarke

IT Systems/Security Manager

R&QInsurance, 201-500 employees

View all 7 answers on this topic

Return on Investment

The only investment here is setting it up and I think seeing it's performance it's a fantastic tool and has a great positive ROI!

Read full review

Verified User

Engineer in Information Technology

Non-Profit Organization Management Company, 501-1000 employees

View all 7 answers on this topic

Put our organization within compliance with regulations, which saves us possible fines
Put our organization in a better position to handle audits and save on audit fees, since audit reports are quick and easy to run

Read full review

Verified User

Executive in Information Technology

Higher Education Company, 5001-10,000 employees

View all 7 answers on this topic

Pricing Details

General

Free Trial

—

Free/Freemium Version

—

Premium Consulting/Integration Services

—

Entry-level set up fee?

No

General

Free Trial

Yes

Free/Freemium Version

—

Premium Consulting/Integration Services

Yes

Entry-level set up fee?

No

Rating Summary

AlienVault OSSIM

Varonis Data Security Platform

AlienVault OSSIM

Varonis Data Security Platform

AlienVault OSSIM

Varonis Data Security Platform

AlienVault OSSIM vs Varonis Data Security Platform