What users are saying about

AlienVault USM<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>

329 Ratings

Rapid7 Nexpose

22 Ratings

AlienVault USM<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>

329 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 7.9 out of 101

Rapid7 Nexpose

22 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 7.3 out of 101

Add comparison

Likelihood to Recommend

AlienVault USM

In my organization's scenario, the on-premise appliance provides great value as we are a small company with site inter-connectivity. Where I am not too sure of is how exactly the product scales with very large networks with separate Windows and network domains.
AJ Gumataotao profile photo

Rapid7 Nexpose

All in all, it's a great vulnerability management platform and would work for most companies looking for a straightforward solution. We rely heavily on integration and automation and it has room for improvement there. We would like it to connect to applications out of the box or vendor supported rather than creating those connectors in-house.
No photo available

Feature Rating Comparison

Security Information and Event Management (SIEM)

AlienVault USM
7.3
Rapid7 Nexpose
Centralized event and log data collection
AlienVault USM
8.0
Rapid7 Nexpose
Correlation
AlienVault USM
8.0
Rapid7 Nexpose
Event and log normalization
AlienVault USM
8.0
Rapid7 Nexpose
Deployment flexibility
AlienVault USM
7.0
Rapid7 Nexpose
Custom dashboards and views
AlienVault USM
6.0
Rapid7 Nexpose
Host and network-based intrusion detection
AlienVault USM
7.0
Rapid7 Nexpose

Pros

  • Compliance: For each compliance aspect in each standard, there's an AlienVault USM feature which helps compliance. For instance, in PCI DSS Compliance you require File Integrity Monitoring, and AlienVault USM has it. Every component of the standard gets covered by the product.
  • Data handling: Event management can become cumbersome if not well handled. AlienVault USM classifies event information properly where it belongs to the data it's useful to you. When you export a report, you can filter out easily what you don't need, so you only extract valuable information.
  • Asset availability: It is really handy to cover every aspect of your asset classification, events to come in, services each asset has, location, all of the information really helps to draw alarms properly.
Ivan Montilla Miralles profile photo
  • Real-Time Risk views
  • Streamlines your view on most vulnerable assets
  • Provides the ability to scan for policy configuration and compare with control requirements
  • Integration with many other vendors; SIEM, Ticketing, Next gen Firewalls, etc
Charles Smunt, CISSP profile photo

Cons

  • I would like to see an interface that is more menu driven. For example a method that allows me to drag and drop the items I would like in an adhoc report based on local machines that are attempting to connect to sites beyond our network that are blocked by our firewall.
  • I would like to see a more robust connection to our SonicWall, having two devices in the same rack that must be configured independently is some times a pain to fine tune.
  • I would like to see additional help files built that allow users to work with the Alienvault without attending formal training.
Randy Kouns profile photo
  • Management side of things is a bit less functional than [Nexus]
  • Perhaps more robust reporting for higher level reporting
  • The alerting/messaging system could use additional flexibility
No photo available

Likelihood to Renew

AlienVault USM9.0
Based on 13 answers
It is a great product and has been instrumental to our security posture.
Dana Hancock profile photo
No score
No answers yet
No answers on this topic

Usability

AlienVault USM7.2
Based on 33 answers
The system is great in turns of functionality but in terms of being user friendly and usability for the average person it is very hard to understand and wil take a lot of training.
Mikhail Suleymanov profile photo
No score
No answers yet
No answers on this topic

Support

AlienVault USM7.6
Based on 24 answers
I find their support to be excellent. From the FAQ's to the tech docs, it is very easy to resolve most issues. The few times we worked with a support technician, they were always quick to resolve our issue. We are very pleased with the overall level of support!
Chuck Bardram profile photo
No score
No answers yet
No answers on this topic

Implementation

AlienVault USM7.1
Based on 37 answers
The one thing to remember is where to place the sensors within your organization. It is one thing to collect and analyze data, but collecting the right data is key. This is where AlienVaults experts really help. Instead of trying to sell you a gazillion sensors, they walk you through your network to make sure he sensors are where they need to be so you can achieve your goal. Implementation works so well because they take the time upfront to know your goals before they help you achieve them.
Matthew Frederickson profile photo
No score
No answers yet
No answers on this topic

Alternatives Considered

We looked at a number of other products besides AlienVault. Most of them were software packages that had OK reviews, but would have been costly to implement and time-consuming to maintain. AlienVault was an all-in-one appliance, though it comes in a virtual machine that you can run as well. We chose the USM because of our virtualization resources were getting pretty tight at the time we chose AlienVault, and we prefer hardware appliances.
Christopher Taylor profile photo
Tenable has a more refined look for the reporting that it provides as a result of scanning events, but Nexpose seems to have a better ability to help quantify risk and help prioritize the work needed to get the quickest security result for the team and the company. The Nessus Passive Vulnerability Scanner is a highly desireable tool but can be supplanted with some thought and coding.
No photo available

Return on Investment

No answers on this topic
  • Can reduce time to patch most critical vulnerabilities
  • Can help to identify who is spending time patching things of lower risk thus keeping the organization in a more vulnerable position
  • Easily provides the patch team with a work plan to enhance security more quickly
No photo available

Screenshots

Rapid7 Nexpose

Pricing Details

AlienVault USM

General
Free Trial
Yes
Free/Freemium Version
Yes
Premium Consulting/Integration Services
Yes
Entry-level set up fee?
Optional
Additional Pricing Details

AlienVault USM More Information

Rapid7 Nexpose

General
Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No
Additional Pricing Details

Rapid7 Nexpose More Information