What users are saying about

AlienVault USM<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>

329 Ratings

AlienVault USM<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>

329 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 7.9 out of 101

Symantec Endpoint Protection

83 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 7.3 out of 101

Add comparison

Likelihood to Recommend

AlienVault USM

AlienVault USM Anywhere is a great SIEM and if you need to deploy a SaaS solution then it is suited very well. It works very well for us being 100% AWS and integrates well with our toolset and AWS features. The Open Threat Intelligence (OTX) is perfect for providing context on events and feeding our incident response processes.
Matthew White profile photo

Symantec Endpoint Protection

Symantec Endpoint protection is, in my opinion, a somewhat mediocre product. It does a decent job of detecting traditional viruses, and an OK job of detecting malware threats. The hybrid approach they employ for virtualized environments leaves a lot to be desired compared to options for other products which allow you to install a VM on the ESX host to do scanning of VM's. It is annoying to have to install the SEP client on every single machine that you want to have protected. The Symantec hybrid approach means that the same exact version of a file won't be repeatedly scanned, but it doesn't really make up for having to have the client installed on every single VM you want to protect. This consumes a lot of extra resources, especially during daily/weekly scans.
Kurt Ferguson profile photo

Feature Rating Comparison

Security Information and Event Management (SIEM)

AlienVault USM
7.3
Symantec Endpoint Protection
Centralized event and log data collection
AlienVault USM
8.0
Symantec Endpoint Protection
Correlation
AlienVault USM
8.0
Symantec Endpoint Protection
Event and log normalization
AlienVault USM
8.0
Symantec Endpoint Protection
Deployment flexibility
AlienVault USM
7.0
Symantec Endpoint Protection
Custom dashboards and views
AlienVault USM
6.0
Symantec Endpoint Protection
Host and network-based intrusion detection
AlienVault USM
7.0
Symantec Endpoint Protection

Pros

  • Up to this point, I have had no issues integrating with a system we currently have in production. while AlienVault stays on top with plugin updates.
  • Te dashboard is very informative when you figure out how to navigate around it and tweaked to your organization needs.
  • Correlation of events is probably my favorite as I normally only need to jump on the AlienVault dashboard to hammer down on network traffic/activity details.
AJ Gumataotao profile photo
  • The ability to deploy updates on the go.
  • The ability to maintain protection all the time.
No photo available

Cons

  • Vulnerability Scanner reporting: The reporting from the integrated scanner (OpenVAS) are really difficult to read. They could have done a better job by scraping the report or creating a custom report from the data of the scan. However, leaving the default report template from OpenVAS makes the report somewhat useless.
  • Sometimes the local integration fails because of the scope of the tool. Let me elaborate on that: The OpenVAS scanner has certificated that expire within a year, and that makes the USM fail scans if you don't renew certificates yourself. They should have made them last at least 10 years. Same with Nagios, sometimes the integration fails and one doesn't know why unless you jailbreak it and find out in the logs for sure.
  • They do not provide a standalone installation of the product, because they modified so much the Linux distribution, that it must always be deployed as a virtual machine or appliance, but not on your own server.
Ivan Montilla Miralles profile photo
  • Having to reboot each client after a version upgrade can be troublesome.
  • The client can be a resource hog at times.
Ben Liebowitz profile photo

Likelihood to Renew

AlienVault USM9.0
Based on 13 answers
The centralized logging and retention for PCI compliance was our main driver, and it is meeting that need. Otherwise there has been enough frustration with the lack of documentation and the need to customize through the CLI that I would be open to alternatives.
Aaron Rothstein profile photo
Symantec Endpoint Protection9.1
Based on 4 answers
Being protected 360 degrees is a plus and in most cases you just install, set it and forget it
Brian Morales profile photo

Usability

AlienVault USM7.2
Based on 33 answers
Not enough documentation, non-descript error messages, and too much required to be done at the command line for an "appliance".
Aaron Rothstein profile photo
Symantec Endpoint Protection8.9
Based on 3 answers
I think it works great. It's easy to administer. It's easy to see if it's working and how well. There's no real user interaction necessary.
Debbie Johnson profile photo

Reliability and Availability

AlienVault USM6.4
Based on 3 answers
No answer on this topic is available.
Symantec Endpoint Protection9.0
Based on 2 answers
We've used it for years and the software is easy to use. The dashboard is easy to read, and you can easily figure out where to go to troubleshoot or deploy software. Symantec is there for emergencies like backup restoration or file retrieval. It's pretty low maintenance. Symantec is there when your IT infrastructure needs it
No photo available

Support

AlienVault USM7.6
Based on 24 answers
I believe they can do a better job at understanding the problem via a phone call when a support ticket is created, rather than going through email. It would help to resolve issues quicker and provider better customer satisfaction.
Farakh Hussain, CISSP, CISM, CEH, ISO LA, MCSA profile photo
Symantec Endpoint Protection5.1
Based on 2 answers
It's a big company. Symantec's support is good once you actually get them. We generally have to open a ticket and get a call back - eventually. They rarely have the answer for us right away, but they are good about either escalating or researching and getting back to us in a day or two. We rarely have any issues, so this usually isn't too big of a deal for us. If their product had more issues I would really have to debate whether or not I needed a different vendor due to the time it takes to actually get support. As I said, once we reach a person with the right skills for the right product, we're usually happy with the results.
Debbie Johnson profile photo

Implementation

AlienVault USM7.1
Based on 37 answers
Initial deployment was great compared to all the research I had read about deploying SIEM solutions. The basic setup gives excellent information about what is occurring on your enterprise network.
Russel Beckham profile photo
Symantec Endpoint Protection6.4
Based on 1 answer
Use a third party deployment tool and not the deployment option within the SEP Manager itself.
No photo available

Alternatives Considered

I recommended Alert Logic, but management was drawn to the much lower price of AlienVault. Alert Logic seems to have a more mature product and has some of these features that have been lacking in AlienVault.
John Grosjean profile photo
We were a McAfee shop and changed to SEP. We tried out Trend as well. SEP just worked better based on the criteria we had.
Jonathan Jesse profile photo

Return on Investment

No answers on this topic
  • no measureable impact
Christopher Bogart profile photo

Screenshots

Symantec Endpoint Protection

Pricing Details

AlienVault USM

General
Free Trial
Yes
Free/Freemium Version
Yes
Premium Consulting/Integration Services
Yes
Entry-level set up fee?
Optional
Additional Pricing Details

AlienVault USM More Information

Symantec Endpoint Protection

General
Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No
Additional Pricing Details

Symantec Endpoint Protection More Information