<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener noreferrer'>Customer Verified: Read more.</a>
Top Rated
607 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener noreferrer'>Customer Verified: Read more.</a>
58 Ratings

AlienVault USM

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener noreferrer'>Customer Verified: Read more.</a>
Top Rated
607 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 7.9 out of 100

SolarWinds Security Event Manager

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener noreferrer'>Customer Verified: Read more.</a>
58 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 8.2 out of 100

Likelihood to Recommend

AlienVault USM

AlienVault Unified Security Management (USM) Anywhere is a cloud-based security information and event management solution that provides effective and affordable threat detection, incident response, and compliance management capabilities. USM Anywhere is well suited to mid-size enterprise environments operating in the cloud. USM Anywhere is also well suited to enterprises whose operations teams require easy deployment and management. Last, USM Anywhere is considered a highly affordable option compared to competitors. USM Anywhere lags competitors in several areas, such as application monitoring, database monitoring, and integrations with third-party solutions such as cloud access security brokers (CASB), DAM, DAP, and DLP.
Matthew Stacks profile photo

SolarWinds Security Event Manager

It is well suited to monitor your Windows AD. You can get detailed login information and notifications like failures and lockouts. It also shows the IP address where it occurs so it makes locating the culprit a lot easier. It does well with monitoring for suspicious activity. It can alert you if It sees a client is trying to circumvent DNS so they can go through proxy avoidance tactics.
No photo available

Feature Rating Comparison

Security Information and Event Management (SIEM)

AlienVault USM
7.3
SolarWinds Security Event Manager
8.2
Centralized event and log data collection
AlienVault USM
8.0
SolarWinds Security Event Manager
9.2
Correlation
AlienVault USM
8.0
SolarWinds Security Event Manager
8.7
Event and log normalization
AlienVault USM
8.0
SolarWinds Security Event Manager
8.5
Deployment flexibility
AlienVault USM
7.0
SolarWinds Security Event Manager
8.4
Custom dashboards and views
AlienVault USM
6.0
SolarWinds Security Event Manager
5.5
Host and network-based intrusion detection
AlienVault USM
7.0
SolarWinds Security Event Manager
8.8
Integration with Identity and Access Management Tools
AlienVault USM
SolarWinds Security Event Manager
8.3

Pros

AlienVault USM

  • Alienvault USM is THOROUGH. We have a highly integrated workspace that's most SAAS, and I monitor those integrations and their security with AV. If I am trying to track the uptime of a laptop, I don't go to VPN or our Directory Services... I go to AV.
  • As I mentioned before, we use Sophos to protect our laptops. If a questionable file shows up on someones laptop, I hear about it from AlienVault before I hear about it from our Sophos service.
  • The OTX Pulse feature is a built-in feature that lets you subscribe to industries and you are notified about new threats that affect that industry on a daily basis. The pulse alerts are added to your AV watchlist.
Christian Holton profile photo

SolarWinds Security Event Manager

  • SolarWinds easily provides the much needed visibily into changes in an Active Directory (AD) environment. Email alerting can be configured to alert a team if an account is locked out, disabled by another users, or if users and/or computers accounts are created.
  • SolarWinds allowed a searchable audit feature. Microsoft Windows can be configured to log many different parts of a system, but search those logs can be difficult. SEM allows you to search for specific users or events.
Adam Morrison profile photo

Cons

AlienVault USM

  • While there are many features, many of them are not very advanced. Vulnerability scanning as an example is extremely simplistic and almost unusable for an enterprise organization. It's just enough to get a program off the ground.
  • Cloud-only deployment model (SaaS) may not fit all organizations. Not all organizations are "cloud friendly".
  • Reporting capabilities out of the box are lack luster. Vulnerability management reporting as an example does not include a single canned report.
Frank DePaola profile photo

SolarWinds Security Event Manager

  • Compared to other SIEMs, there are features that are missing. Machine learning, automatic event correlation, ability to correlate multiple sources together.
  • The UI is clunky, and the *New* event log analyzer page felt really disjointed from the rest of the product.
  • In my experience, the dashboards were almost unusable. They persisted across login per device, and even then they sometimes would reset and go back to the ''Getting Started'' look.
No photo available

Likelihood to Renew

AlienVault USM

AlienVault USM 4.3
Based on 16 answers
The centralized logging and retention for PCI compliance was our main driver, and it is meeting that need. Otherwise there has been enough frustration with the lack of documentation and the need to customize through the CLI that I would be open to alternatives.
Aaron Rothstein profile photo

SolarWinds Security Event Manager

No score
No answers yet
No answers on this topic

Usability

AlienVault USM

AlienVault USM 7.3
Based on 35 answers
The product once properly configured seems to offer a wealth of information but has it's issues. I feel that the initial setup/ installation should include technical support to get up and running. My personal experience from the configuration as installed indicates that the network adaptors are not properly configured to read information. The network ports where configured to only ready 1/2 the network?? So having help to get the system up and running should be part of the initial purchase.
James Ellsworth profile photo

SolarWinds Security Event Manager

No score
No answers yet
No answers on this topic

Support

AlienVault USM

AlienVault USM 7.4
Based on 25 answers
I have not had a single issue with the alienvault support staff. Any issue or question that we had, especially in the beginning during the installation phase the support staff was readily available via phone and email to help us. I am very happy with the decision we made to go with alienvault.
Mikhail Suleymanov profile photo

SolarWinds Security Event Manager

SolarWinds Security Event Manager 6.8
Based on 7 answers
We have only needed to contact SolarWind's support a few times for this product but when we have, the engineers have been thorough and persistent with helping us to resolve our issue. One of the issues we had was an upgrade the went wrong. The engineer was able to help us and get our SIEM back online before the end of our maintenance window.
No photo available

Online Training

AlienVault USM

AlienVault USM 8.6
Based on 6 answers
The instructor was very knowledgeable and was able to answer everyone's questions. He also was able to teach to many different levels. Some folks in the class had already been using USM or a similar product whereas I and a few others were brand new. He also provided a way of reaching out with questions after the training was over. Everyone in the training seemed to enjoy the class.
Christian Holton profile photo

SolarWinds Security Event Manager

No score
No answers yet
No answers on this topic

Implementation

AlienVault USM

AlienVault USM 6.6
Based on 38 answers
Initial implementation was okay, but we should have gone on the one week course first as an understanding of the features and what to look for would have been of great use. This is especially relevant when fine tuning and correlating events and creating parsers.Once set up the system is pretty resilient and adding in configuration is quite an easy process. We only had on the odd few occasions had to progress any set up problems to tech support.There are also some great whitepapers and set up articles on AlienVault's website support.
Philip Clarke profile photo

SolarWinds Security Event Manager

No score
No answers yet
No answers on this topic

Alternatives Considered

AlienVault USM

USM Appliance provides you with the ability to identify your critical assets and to set policies to alert you when those assets have vulnerabilities or are subjected to attacks. USM Appliance will generate alarms based upon the risk associated with any given security event captured in USM Appliance.USM Appliance provides you with the ability to identify your critical assets and to set policies to alert you when those assets have vulnerabilities or are subjected to attacks. USM Appliance will generate alarms based upon the risk associated with any given security event captured in USM Appliance. Identifying patterns of events that indicate a possible threat or vulnerability.
Mpho Lekota profile photo

SolarWinds Security Event Manager

There may be more intuitive/automated solutions in the marketplace but because we already had a good relationship with SolarWinds, we decided to ultimately go with SolarWinds LEM. There are many resources available to help you make SolarWinds LEM work just as you need it to. It has never crashed or ran out of resources so we believe it is a good solid product.
Roger Mialkowski profile photo

Return on Investment

AlienVault USM

No answers on this topic

SolarWinds Security Event Manager

  • Faster turnaround when investigating access issues. LEM's search function allows you to quickly identify which ACL policy may be blocking a user's access - and as a result quickly resolve the issue.
  • Regulatory compliance. If you have regulatory compliance requirements for security monitoring, this product will likely check off a few boxes.
  • Stronger security posture. Not every company can afford a 24 hour Security Operations Center. Intelligent technology like LEM can help fill in those gaps to strengthen your security posture, and even allow for complex automated responses to threats during non-business hours.
No photo available

Screenshots

Pricing Details

AlienVault USM

General

Free Trial
Yes
Free/Freemium Version
Yes
Premium Consulting/Integration Services
Yes
Entry-level set up fee?
Optional

SolarWinds Security Event Manager

General

Free Trial
Yes
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Rating Summary

Likelihood to Recommend

AlienVault USM
7.8
SolarWinds Security Event Manager
8.6

Likelihood to Renew

AlienVault USM
4.3
SolarWinds Security Event Manager

Usability

AlienVault USM
7.3
SolarWinds Security Event Manager

Reliability and Availability

AlienVault USM
6.4
SolarWinds Security Event Manager

Performance

AlienVault USM
7.3
SolarWinds Security Event Manager

Support

AlienVault USM
7.4
SolarWinds Security Event Manager
6.8

In-Person Training

AlienVault USM
4.5
SolarWinds Security Event Manager

Online Training

AlienVault USM
8.6
SolarWinds Security Event Manager

Implementation

AlienVault USM
6.6
SolarWinds Security Event Manager

Scalability

AlienVault USM
6.3
SolarWinds Security Event Manager

Add comparison