AlienVault® Unified Security Management®
(USM) delivers threat detection, incident response, and compliance
management in one unified platform. It is designed to combine all the essential security
capabilities needed for effective security monitoring across cloud and
on-premises environments, including SIEM, intrusion detection, vulnerability
management, as well as continuous threat intelligence updates. The vendor states that even for resource-limited IT
security teams, AlienVault…
$1,075
per month
AlienVault OSSIM
Score 8.7 out of 10
N/A
OSSIM leverages the power of the AlienVault Open Threat Exchange by allowing users to both contribute and receive real-time information about malicious hosts. AlienVault OSSIM is an open source Security Information and Event Management (SIEM) product. It is a unified platform providing: Asset discovery Vulnerability assessment Intrusion detection Behavioral monitoring SIEM OSSIM provides the basis for AlienVault's proprietary Unified Security…
N/A
Pricing
AlienVault USM
AlienVault OSSIM
Editions & Modules
Essentials
$1,075
per month
Standard
$1,695
per month
Premium
$2,595
per month
No answers on this topic
Offerings
Pricing Offerings
AlienVault USM
AlienVault OSSIM
Free Trial
Yes
No
Free/Freemium Version
Yes
No
Premium Consulting/Integration Services
Yes
No
Entry-level Setup Fee
Optional
No setup fee
Additional Details
—
—
More Pricing Information
Community Pulse
AlienVault USM
AlienVault OSSIM
Considered Both Products
AlienVault USM
Verified User
Engineer
Chose AlienVault USM
AlienVault Unified Security Management is the commercial version of OSSIM and features dedicated support, professional services, and MSSP partners. It also contains a more complete feature set for those looking to use AlienVault Unified Security Management in helping with …
QRadar is one of the top SIEMs on the market. AlienVault USM is more suitable for companies or clients having a smaller budget, as AlienVault USM is cheaper than QRadar. Regarding features, QRadar trumps AlienVault USM, as it is a product with a vast array of features.
The price and the ease-of-use, and the support from AlienVault are better. I had a lot of trouble starting out, but they guided me very well. The training provided by AlienVault was fantastic, because I could play without the fear of breaking anything.
AlienVault is cloud based and offers more functionality than OSSIM such as cloud service monitoring like Office 365 and AWS, deployment of sensors for efficient deployment, and event integrations with the MITRE ATT&CK framework. USM also has a much improved GUI and allows for …
Not at all. The use of USM was picked by directors and the owner above me because of the other activities that prohibited the setup of a customizable SIEM. It does its job, but again my biggest gripe is with the inability to create attribute mappings that make sense. And/OR to …
Being able to integrate multiple uses into a single appliance is a great win for small and medium enterprises. The cost for the single solution also ends up being in reach for the SME vs. some of the other available solutions.
Our company did not seek out any other alternatives. We had been using the free OSSIM version so we were already experienced with it and were looking to branch out into being an MSSP so their MSSP focus and good price was attractive.
If you look at AlienVault USM, you will have to look at OSSIM too. For very small enterprises with limited budget or no budget at all, OSSIM might be a good alternative, it is the free version of AlienVault USM, but that means you are on your own with it. Another competitor is …
I actually don't remember now what I evaluated. When I hit AlienVault I just stopped looking.
Verified User
Director
Chose AlienVault USM
AV USM stacks up well against these other, individual products, especially when considered as an integrated package. The Suricata and OpenVAS modules are rule-compatible with their counterparts (Snort and Nessus), and offer the same functionality. The log management and …
I have used several SIEM type products like Splunk, ArcSight, QRadar, and LogRythm. These do their job well but are limited to doing log management type of work where as AlienVault does so much more than just manage logs. The other big elephant in the room is the large price …
It's all because of price. Price for virtual deployment is really good and cheap. The update costs for every year are also low, nearly 30% of first year license price. So few companies often look for USM. Also there an AlienVault Labs, that look like they working, but it's not …
AlienVault stands above all the SIEM solutions for its well-integrated asset management, vulnerability assessment module, behavior analysis and its other modules providing a single console for managing the complete security of the information in an organization. The other …
I've selected AlienVault USM because I use OSSIM, the open source version, since the beggining and I was following the work AlienVault did on the USM solution. I was just waiting for a budget to implement the complete solution.
In comparison to Splunk, LogRhythm, and Arcsight, AlienVault came in at a great price. Also, AlienVault doesn't do "per event" pricing (which is confusing for those new to SIEM). When we did our review, AlienVault just offered more out of the box security capabilities than …
We were looking at other solutions, but ultimately the sales demo we received for AlienVault looked good and was at a MUCH better price point than the alternatives we evaluated. We are also intrigued by the additional capability of vulnerability scanning.
NA - I don't have a ton to compare this to, though I can say that the vulnerability scanning will be useful for those that already know their way around an OpenVAS offering, but not so much if you are looking for a Qualys or Nessus type output.
HP Arcsight and QRadar was not so easy and financially interesting to scale. LogRhythm lacked some key functionalities. Splunk is more like an advanced Log Management tool.
OSSIM is the free version of the Alien Vault USM and comes packed with most of the features you will need to get going. Like most free to use products, it is missing aspects that make the use of the product much more productive.
As an example, you will need a separate system for …