What users are saying about
<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener noreferrer'>Customer Verified: Read more.</a>
Top Rated
562 Ratings
38 Ratings

AlienVault USM

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener noreferrer'>Customer Verified: Read more.</a>
Top Rated
562 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 8.1 out of 101
38 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 8.9 out of 101

Likelihood to Recommend

AlienVault USM

AlienVault USM is well suited for any small/medium businesses as well as big corporations. The reporting and dashboard alone are something I always look for in a USM because it makes it easier for me to gather and find the information I am required to have. If detailed reports are what you are looking for or an easy-to-navigate dashboard this is the software for you.
Mpho Lekota profile photo

Splunk Cloud

I find that Splunk Cloud is well suited for tracking user logins, Server Reboots, failed login attempts, account lockouts, and sorting these items by host or user. We often trace failed user logins to someone having cached credentials on an endpoint which can result in locked accounts that drive the Help Desk ticket volume up unnecessarily.
Jeff Kitchens profile photo

Feature Rating Comparison

Security Information and Event Management (SIEM)

AlienVault USM
7.3
Splunk Cloud
9.3
Centralized event and log data collection
AlienVault USM
8.0
Splunk Cloud
10.0
Correlation
AlienVault USM
8.0
Splunk Cloud
9.4
Event and log normalization
AlienVault USM
8.0
Splunk Cloud
9.3
Deployment flexibility
AlienVault USM
7.0
Splunk Cloud
9.1
Custom dashboards and views
AlienVault USM
6.0
Splunk Cloud
10.0
Host and network-based intrusion detection
AlienVault USM
7.0
Splunk Cloud
8.8
Integration with Identity and Access Management Tools
AlienVault USM
Splunk Cloud
8.6

Pros

AlienVault USM

  • Log analysis, both syslog and AWS cloud trail, and searchability/reporting is actually better than most of our other related tools: All of our systems send log information using rsyslog to our AlienVault USM system. AlienVault is able to alert us of many issues with minimal configuration, including adding/removing users to sensitive groups, creating or removing resources such as EBS volumes, S3 buckets, or security groups.
  • AWS loadbalancer traffic/log analysis: AlienVault automatically identifies threatening IPs or entries that match suspicious traffic patterns.
  • The ability to search the many logs AlienVault collects in a way that even novice users can follow is super valuable. Logs can be quickly sorted by source, log type, and/or keyword searches. There have been many occasions where we were able to find non-security related issues due to the simple yet advanced search abilities of AlienVault. This has led to the challenge of deciding when and how long to allow non-security personnel access for troubleshooting.
John DeLay profile photo

Splunk Cloud

  • With Splunk Cloud you get the advantage of moving from POC to Production in a matter of days rather than in months allowing the Business to gain a lot.
  • Takes you away from managing infrastructure/administration, allows saving time & money. Reduce the overall TCO (Total Cost of Ownership)
  • Move from Reactive to Proactive Monitoring
  • Highly secure environment at your finger-tips
Manan Bhatt profile photo

Cons

AlienVault USM

  • While there are many features, many of them are not very advanced. Vulnerability scanning as an example is extremely simplistic and almost unusable for an enterprise organization. It's just enough to get a program off the ground.
  • Cloud-only deployment model (SaaS) may not fit all organizations. Not all organizations are "cloud friendly".
  • Reporting capabilities out of the box are lack luster. Vulnerability management reporting as an example does not include a single canned report.
Frank DePaola profile photo

Splunk Cloud

  • The query language is well-documented but has a bit of a learning curve.
  • I wish copy/pasting JSON from the logs were easier without going to the completely raw (condensed) form.
Kevin Smith profile photo

Likelihood to Renew

AlienVault USM

AlienVault USM 2.0
Based on 14 answers
The centralized logging and retention for PCI compliance was our main driver, and it is meeting that need. Otherwise there has been enough frustration with the lack of documentation and the need to customize through the CLI that I would be open to alternatives.
Aaron Rothstein profile photo

Splunk Cloud

No score
No answers yet
No answers on this topic

Usability

AlienVault USM

AlienVault USM 7.5
Based on 34 answers
The product once properly configured seems to offer a wealth of information but has it's issues. I feel that the initial setup/ installation should include technical support to get up and running. My personal experience from the configuration as installed indicates that the network adaptors are not properly configured to read information. The network ports where configured to only ready 1/2 the network?? So having help to get the system up and running should be part of the initial purchase.
James Ellsworth profile photo

Splunk Cloud

Splunk Cloud 8.0
Based on 1 answer
Overall, it is very usable. I would like if recent searches were saved for longer because I always have to refer to my notes when I'm looking for something specific and it's been a few weeks. But that's a small issue, and the actual search and browsing interface is easy to use and powerful.
Kevin Smith profile photo

Support

AlienVault USM

AlienVault USM 7.6
Based on 24 answers
I have not had a single issue with the alienvault support staff. Any issue or question that we had, especially in the beginning during the installation phase the support staff was readily available via phone and email to help us. I am very happy with the decision we made to go with alienvault.
Mikhail Suleymanov profile photo

Splunk Cloud

Splunk Cloud 10.0
Based on 2 answers
Whenever we have an issue, it gets resolved quickly and beats SLAs. Splunk Cloud support is knowledgeable, responsive and quick. We have never had an issue getting what we need when we need it.
Joseph Sweet profile photo

Implementation

AlienVault USM

AlienVault USM 7.0
Based on 37 answers
Initial implementation was okay, but we should have gone on the one week course first as an understanding of the features and what to look for would have been of great use. This is especially relevant when fine tuning and correlating events and creating parsers.Once set up the system is pretty resilient and adding in configuration is quite an easy process. We only had on the odd few occasions had to progress any set up problems to tech support.There are also some great whitepapers and set up articles on AlienVault's website support.
Philip Clarke profile photo

Splunk Cloud

No score
No answers yet
No answers on this topic

Alternatives Considered

AlienVault USM

I evaluated SolarWinds SEM and it was impressive and did a great job, but AlienVault USM had more reporting tools and data collection retention. I also preferred the setup of the AlienVault dashboard. I found it was easier to set up rules and data collection points with AlienVault. SolarWinds has a great product but I ultimately chose AlienVault USM because of the extra features it offered.
Stacey Medina profile photo

Splunk Cloud

Other solutions weren't able to consume the volume of logs that we were producing on a daily basis. Searching was difficult because of proprietary or simply confusing search mechanisms. Splunk simplified the searching by using regular expressions. Although the cost of Splunk was higher than other solutions available, none of the other solutions were able to quickly and easily present data in a simple and easy to understand way.
Chase Palmer, CISSP profile photo

Return on Investment

AlienVault USM

No answers on this topic

Splunk Cloud

  • We have found out interesting questions relating to our data that has dramatically improved the way our devs write their code.
  • The amount of insight we have into our applications and infrastructure allows us to find problems before they cause issues with our clients.
  • We have the ability to stay ahead of a train wreck while the train is still 20 minutes away. Splunk has allowed us to see things coming before they are problems.
No photo available

Screenshots

Splunk Cloud

Pricing Details

AlienVault USM

General

Free Trial
Yes
Free/Freemium Version
Yes
Premium Consulting/Integration Services
Yes
Entry-level set up fee?
Optional

Splunk Cloud

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Add comparison