What users are saying about

AlienVault USM

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>
334 Ratings
4 Ratings

AlienVault USM

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>
334 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 7.9 out of 101
4 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 9.2 out of 101

Add comparison

Likelihood to Recommend

AlienVault USM

Since AlienVault is a versatile tool, having versions for various cloud providers as well as virtualization frameworks, it adheres to the most diverse scenarios. Another strong point to be highlighted is how the company is constantly improving the product. AlienVault is famous for the effort the company puts behind the tool, and it is being improved constantly by adding new resources.
Erlon Sousa Pinheiro profile photo

Logz.io

It is appropriate for companies that focus on developing extremely simple applications. The great visibility it provides makes it ideal to avoid problems that may affect the entire business or company thanks to the fact that it is capable of emitting dozens of alerts in a short time. Sometimes the search behavior becomes slow and inefficient, which can be uncomfortable.
Hanna Bedoya profile photo

Feature Rating Comparison

Security Information and Event Management (SIEM)

AlienVault USM
7.3
Logz.io
8.5
Centralized event and log data collection
AlienVault USM
8.0
Logz.io
8.9
Correlation
AlienVault USM
8.0
Logz.io
8.3
Event and log normalization
AlienVault USM
8.0
Logz.io
8.9
Deployment flexibility
AlienVault USM
7.0
Logz.io
9.0
Custom dashboards and views
AlienVault USM
6.0
Logz.io
8.4
Host and network-based intrusion detection
AlienVault USM
7.0
Logz.io
7.4
Integration with Identity and Access Management Tools
AlienVault USM
Logz.io
8.9

Pros

  • The SIEM does a good job of correlating network data from multiple sources along with the Data from deployed HIDS
  • The Nmap scan is fast and non-invasive that defines devices on your network.
  • The vulnerability scanning has several options and reports to enable data to be available for compliance purposes.
Clark Crain profile photo
  • Emits alerts inmediately if somenthing is out of the ordinary.
  • It performs high-speed monitoring automatically so it does not require configuration.
  • Does not require any maintenance.
  • It has a very simple interface.
  • It offers its users great scalability.
Hanna Bedoya profile photo

Cons

  • SMTP: The appliance can only send SMTP alerts to ONE email address. At the very least, it should be able to send to multiple people, and this shouldn't be a global setting. Some people want to see certain alerts, others need to see other alerts. It's highly inflexible.
  • Reports: There basically aren't any. I need a way to prove to the CEO that this expense is worth it, but I can't print a nice graph of logs collected per day, alarms on each device, or really anything at all.
  • SLOW: When it starts collecting lots of logs, the appliance really slows down. When you're trying to do a search on logs, it can take an hour or more. Almost impossible to do forensic analysis of an incident when it takes this long to gather the correct logs.
  • Multiple VPCs are not supported: The only deployment option is a single box. Without allowing multiple sensor nodes, it's very difficult to see into other networks. VPC peering can get you around this, but this is not allowed for us because of security concerns, and it's impossible because both VPCs use the same IP range. You can use a Linux jump box, but you can't use a Windows jump box, and a Linux jump box won't connect to any Windows servers.
John Grosjean profile photo
  • Its price can be very high, so you should have good control of it to avoid exaggerated figures.
  • Some functions can be confusing.
  • It has limits to create subaccounts, which is a big problem for large companies.
Hanna Bedoya profile photo

Likelihood to Renew

AlienVault USM9.0
Based on 13 answers
It is a great product and has been instrumental to our security posture.
Dana Hancock profile photo
No score
No answers yet
No answers on this topic

Usability

AlienVault USM7.2
Based on 33 answers
Best SIEM out there. Built for the serious security practioner. Has features you would expect in something much more expensive. Product continues to be refined and improved.
Matthew Frederickson profile photo
No score
No answers yet
No answers on this topic

Support

AlienVault USM7.6
Based on 24 answers
Only had to use this once, and they had us back on track in an hour or so. They followed up the day after to make sure all was still working, great team.
Jason Cresswell profile photo
No score
No answers yet
No answers on this topic

Implementation

AlienVault USM7.1
Based on 37 answers
Initial deployment was great compared to all the research I had read about deploying SIEM solutions. The basic setup gives excellent information about what is occurring on your enterprise network.
Russel Beckham profile photo
No score
No answers yet
No answers on this topic

Alternatives Considered

I recommended Alert Logic, but management was drawn to the much lower price of AlienVault. Alert Logic seems to have a more mature product and has some of these features that have been lacking in AlienVault.
John Grosjean profile photo
Chosen before any other software for its versatility and speed to immediately stop any failure that may impair the operation of our applications, also their prices are very fair and it is very easy to work with it. On the other hand, other software such as FortiSIEM is very slow and its configurations are very complex and require maintenance, which implies more expense.
Hanna Bedoya profile photo

Return on Investment

No answers on this topic
  • It helps us keep up with all the problems we may encounter.
  • Logz.io API helps a lot in debugging automation
  • We can use our set of tools to automatically look for common problems and monitor the current situation and in this way avoid our clients being alerted by some faults generated in the infrastructures of the applications.
Hanna Bedoya profile photo

Screenshots

Logz.io

Pricing Details

AlienVault USM

General
Free Trial
Yes
Free/Freemium Version
Yes
Premium Consulting/Integration Services
Yes
Entry-level set up fee?
Optional
Additional Pricing Details

AlienVault USM More Information

Logz.io

General
Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No
Additional Pricing Details

Logz.io More Information