AlienVault USM vs SolarWinds Security Event Manager | TrustRadius

What users are saying about

Score 7.9 out of 10

Based on 607 reviews and ratings

Score 8.2 out of 10

Based on 58 reviews and ratings

Feature Rating Comparison

AlienVault USM

SolarWinds Security Event Manager

Centralized event and log data collection

Correlation

Event and log normalization

Deployment flexibility

Custom dashboards and views

Host and network-based intrusion detection

Integration with Identity and Access Management Tools

Pros

Alienvault USM is THOROUGH. We have a highly integrated workspace that's most SAAS, and I monitor those integrations and their security with AV. If I am trying to track the uptime of a laptop, I don't go to VPN or our Directory Services... I go to AV.
As I mentioned before, we use Sophos to protect our laptops. If a questionable file shows up on someones laptop, I hear about it from AlienVault before I hear about it from our Sophos service.
The OTX Pulse feature is a built-in feature that lets you subscribe to industries and you are notified about new threats that affect that industry on a daily basis. The pulse alerts are added to your AV watchlist.

Read full review

Christian Holton

System Administrator

Enthought, Inc.Computer Software, 51-200 employees

View all 351 answers on this topic

SolarWinds easily provides the much needed visibily into changes in an Active Directory (AD) environment. Email alerting can be configured to alert a team if an account is locked out, disabled by another users, or if users and/or computers accounts are created.
SolarWinds allowed a searchable audit feature. Microsoft Windows can be configured to log many different parts of a system, but search those logs can be difficult. SEM allows you to search for specific users or events.

Read full review

Director of IT Engineering

Pearl River ResortGambling & Casinos, 1001-5000 employees

View all 15 answers on this topic

Cons

While there are many features, many of them are not very advanced. Vulnerability scanning as an example is extremely simplistic and almost unusable for an enterprise organization. It's just enough to get a program off the ground.
Cloud-only deployment model (SaaS) may not fit all organizations. Not all organizations are "cloud friendly".
Reporting capabilities out of the box are lack luster. Vulnerability management reporting as an example does not include a single canned report.

Read full review

Head of Information Security

EnPro IndustriesMechanical or Industrial Engineering, 5001-10,000 employees

View all 351 answers on this topic

Compared to other SIEMs, there are features that are missing. Machine learning, automatic event correlation, ability to correlate multiple sources together.
The UI is clunky, and the *New* event log analyzer page felt really disjointed from the rest of the product.
In my experience, the dashboards were almost unusable. They persisted across login per device, and even then they sometimes would reset and go back to the ''Getting Started'' look.

Read full review

Verified User

Analyst in Information Technology

Marketing and Advertising Company, 201-500 employees

View all 15 answers on this topic

Likelihood to Renew

AlienVault USM 4.3

Based on 16 answers

The centralized logging and retention for PCI compliance was our main driver, and it is meeting that need. Otherwise there has been enough frustration with the lack of documentation and the need to customize through the CLI that I would be open to alternatives.

Read full review

Aaron Rothstein

IT Systems Architect

ROTHSTEIN.ioRestaurants, 5001-10,000 employees

View all 16 answers on this topic

No score

No answers yet

No answers on this topic

Usability

AlienVault USM 7.3

Based on 35 answers

The product once properly configured seems to offer a wealth of information but has it's issues. I feel that the initial setup/ installation should include technical support to get up and running. My personal experience from the configuration as installed indicates that the network adaptors are not properly configured to read information. The network ports where configured to only ready 1/2 the network?? So having help to get the system up and running should be part of the initial purchase.

Read full review

James Ellsworth

IT Technician

Sierra Gold NurseryFarming, 201-500 employees

View all 35 answers on this topic

No score

No answers yet

No answers on this topic

Support

AlienVault USM 7.4

Based on 25 answers

I have not had a single issue with the alienvault support staff. Any issue or question that we had, especially in the beginning during the installation phase the support staff was readily available via phone and email to help us. I am very happy with the decision we made to go with alienvault.

Read full review

Mikhail Suleymanov

Chief Compliance Officer

Just2TradeCapital Markets, 11-50 employees

View all 25 answers on this topic

SolarWinds Security Event Manager 6.8

Based on 7 answers

We have only needed to contact SolarWind's support a few times for this product but when we have, the engineers have been thorough and persistent with helping us to resolve our issue. One of the issues we had was an upgrade the went wrong. The engineer was able to help us and get our SIEM back online before the end of our maintenance window.

Read full review

Verified User

Engineer in Information Technology

Utilities Company, 201-500 employees

View all 7 answers on this topic

Online Training

AlienVault USM 8.6

Based on 6 answers

The instructor was very knowledgeable and was able to answer everyone's questions. He also was able to teach to many different levels. Some folks in the class had already been using USM or a similar product whereas I and a few others were brand new. He also provided a way of reaching out with questions after the training was over. Everyone in the training seemed to enjoy the class.

Read full review

Christian Holton

System Administrator

Enthought, Inc.Computer Software, 51-200 employees

View all 6 answers on this topic

No score

No answers yet

No answers on this topic

Implementation

AlienVault USM 6.6

Based on 38 answers

Initial implementation was okay, but we should have gone on the one week course first as an understanding of the features and what to look for would have been of great use. This is especially relevant when fine tuning and correlating events and creating parsers.Once set up the system is pretty resilient and adding in configuration is quite an easy process. We only had on the odd few occasions had to progress any set up problems to tech support.There are also some great whitepapers and set up articles on AlienVault's website support.

Read full review

IT Systems/Security Manager

R&QInsurance, 201-500 employees

View all 38 answers on this topic

No score

No answers yet

No answers on this topic

Alternatives Considered

USM Appliance provides you with the ability to identify your critical assets and to set policies to alert you when those assets have vulnerabilities or are subjected to attacks. USM Appliance will generate alarms based upon the risk associated with any given security event captured in USM Appliance.USM Appliance provides you with the ability to identify your critical assets and to set policies to alert you when those assets have vulnerabilities or are subjected to attacks. USM Appliance will generate alarms based upon the risk associated with any given security event captured in USM Appliance. Identifying patterns of events that indicate a possible threat or vulnerability.

Read full review

SOC Analyst

Bitcrack Cyber SecurityInformation Technology and Services, 11-50 employees

View all 351 answers on this topic

There may be more intuitive/automated solutions in the marketplace but because we already had a good relationship with SolarWinds, we decided to ultimately go with SolarWinds LEM. There are many resources available to help you make SolarWinds LEM work just as you need it to. It has never crashed or ran out of resources so we believe it is a good solid product.

Read full review

Roger Mialkowski

Sr. IT Systems Administrator

Zombie ComputersGovernment Administration, 1001-5000 employees

View all 15 answers on this topic

Return on Investment

No answers on this topic

Faster turnaround when investigating access issues. LEM's search function allows you to quickly identify which ACL policy may be blocking a user's access - and as a result quickly resolve the issue.
Regulatory compliance. If you have regulatory compliance requirements for security monitoring, this product will likely check off a few boxes.
Stronger security posture. Not every company can afford a 24 hour Security Operations Center. Intelligent technology like LEM can help fill in those gaps to strengthen your security posture, and even allow for complex automated responses to threats during non-business hours.

Read full review

Verified User

Engineer in Information Technology

Financial Services Company, 201-500 employees

View all 15 answers on this topic

Screenshots

See All (4) SolarWinds Security Event Manager Screenshots

Pricing Details

General

Free Trial

Yes

Free/Freemium Version

Yes

Premium Consulting/Integration Services

Yes

Entry-level set up fee?

Optional

General

Free Trial

Yes

Free/Freemium Version

—

Premium Consulting/Integration Services

—

Entry-level set up fee?

No

Rating Summary

AlienVault USM

SolarWinds Security Event Manager

AlienVault USM

SolarWinds Security Event Manager

AlienVault USM

SolarWinds Security Event Manager

AlienVault USM

SolarWinds Security Event Manager

AlienVault USM

SolarWinds Security Event Manager

AlienVault USM

SolarWinds Security Event Manager

AlienVault USM

SolarWinds Security Event Manager

AlienVault USM

SolarWinds Security Event Manager

AlienVault USM

SolarWinds Security Event Manager

AlienVault USM

SolarWinds Security Event Manager

Add comparison