What users are saying about

AlienVault USM

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>
334 Ratings

AlienVault USM

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>
334 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 8 out of 101
9 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 9.4 out of 101

Add comparison

Likelihood to Recommend

AlienVault USM

AlienVault USM is a great choice if you need compliance and asset monitoring in all aspects, event monitoring, and event correlation. The handling of alarms and OTX pulses are a great addition of value. It's less suited if you're also looking to replace your vulnerability scanner, I recommend having a proper vulnerability scanner because AlienVault USM's one is a bit impaired for heavy workloads and for the vulnerability information to be of any use.
Ivan Montilla Miralles profile photo

Palo Alto Networks Traps

Great for any enterprise solution that wants a next-gen, low impact solution with great protection. If your current product is not up to snuff in any fashion, you should look into Traps. Price point is good and the product is truly outstanding in my opinion
DeForge, Peter profile photo

Feature Rating Comparison

Security Information and Event Management (SIEM)

AlienVault USM
7.3
Palo Alto Networks Traps
Centralized event and log data collection
AlienVault USM
8.0
Palo Alto Networks Traps
Correlation
AlienVault USM
8.0
Palo Alto Networks Traps
Event and log normalization
AlienVault USM
8.0
Palo Alto Networks Traps
Deployment flexibility
AlienVault USM
7.0
Palo Alto Networks Traps
Custom dashboards and views
AlienVault USM
6.0
Palo Alto Networks Traps
Host and network-based intrusion detection
AlienVault USM
7.0
Palo Alto Networks Traps

Pros

  • AlienVault USM is based on well-known Open Source components, which each for itself, represents a quasi industry standard
  • Integration into the existing infrastructure works like a charm. Basically you just need to roll-out an OSSEC client to each server or PC and you have already a pretty high coverage of security information and events. They immediately show up in the AlienVault Webinterface
  • Due to the countless plugins, it is very easy to add network devices like firewalls, router, switches, but also servers running apache and the alike. You will just need to forward syslog and it will all appear in your AlienVault Webinterface
  • The modular design of AlienVault USM in form of "deployable sensors", allows you to easily integrate different network segments, such as remote sites.
  • As regular vulnerability scans are a must to understand which CVEs your infrastructure is exposed at, this becomes an easy task with AlienVault. They provide you with a set-and-forget approach for running regular scans. Additionally there are helpful hints to how to get more secure.
Christian B. Caldarone profile photo
  • Tracking file behavior
  • low impact monitoring
  • easy to use console
DeForge, Peter profile photo

Cons

  • I would like to see an interface that is more menu driven. For example a method that allows me to drag and drop the items I would like in an adhoc report based on local machines that are attempting to connect to sites beyond our network that are blocked by our firewall.
  • I would like to see a more robust connection to our SonicWall, having two devices in the same rack that must be configured independently is some times a pain to fine tune.
  • I would like to see additional help files built that allow users to work with the Alienvault without attending formal training.
Randy Kouns profile photo
  • To be honest, at this time I don't have any suggestions for you guys. Sales team was great, tech team is great, product has been great. I like the interface.. so no complaints or suggestions yet!
DeForge, Peter profile photo

Likelihood to Renew

AlienVault USM9.0
Based on 13 answers
It is a very well built software and solution for meeting our cybersecurity needs. The staff is always very well responsive with any issues that we have and it is perfect for satisfying FINRA's cybersecurity regulations.
Mikhail Suleymanov profile photo
No score
No answers yet
No answers on this topic

Usability

AlienVault USM7.2
Based on 33 answers
Good product. It's a significant improvement in UI from AlienVault's previous offer. It could use more polish. The feature set also needs to improve. There are features that existed in AlienVault's previous product that are not included in this product. I understand the developers are rapidly adding features. We expect this product will mature into a best-in-class offering.
Jeremy Wanamaker profile photo
No score
No answers yet
No answers on this topic

Support

AlienVault USM7.6
Based on 24 answers
Based on previous experience we had to explain and demonstrate the problems several times; fixes takes long time to be implemented and rolled out to end users. Several times we had to guide the support contact to fully understand the problem
Bilal Al Sabbagh profile photo
No score
No answers yet
No answers on this topic

Implementation

AlienVault USM7.1
Based on 37 answers
Initial implementation was okay, but we should have gone on the one week course first as an understanding of the features and what to look for would have been of great use. This is especially relevant when fine tuning and correlating events and creating parsers.Once set up the system is pretty resilient and adding in configuration is quite an easy process. We only had on the odd few occasions had to progress any set up problems to tech support.There are also some great whitepapers and set up articles on AlienVault's website support.
Philip Clarke profile photo
No score
No answers yet
No answers on this topic

Alternatives Considered

I recommended Alert Logic, but management was drawn to the much lower price of AlienVault. Alert Logic seems to have a more mature product and has some of these features that have been lacking in AlienVault.
John Grosjean profile photo
Traps is the slickest interface, easy to use and intuitive rule making, and the rest just didn't quite stack up to the performance level of Traps. McAfee and Kaspersky just hog processor and RAM power. I didn't like the interface and functionality of SentinelOne as much as Traps. Palo Alto really put a lot of time into the development of this software, and had some of the founding fathers of IT Security heading the development process. Can't beat that.
DeForge, Peter profile photo

Return on Investment

No answers on this topic
  • Reduction of malware spreading
  • Increased workload on endpoint protection teams
  • Great log chain for event investigation
Alex Waitkus, CISSP-ISSAP, OSCP profile photo

Screenshots

Palo Alto Networks Traps

Pricing Details

AlienVault USM

General
Free Trial
Yes
Free/Freemium Version
Yes
Premium Consulting/Integration Services
Yes
Entry-level set up fee?
Optional
Additional Pricing Details

AlienVault USM More Information

Palo Alto Networks Traps

General
Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No
Additional Pricing Details

Palo Alto Networks Traps More Information