What users are saying about

AlienVault USM<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>

329 Ratings

Zabbix

53 Ratings

AlienVault USM<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow'>Customer Verified: Read more.</a>

329 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 7.9 out of 101

Zabbix

53 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 8.5 out of 101

Add comparison

Likelihood to Recommend

AlienVault USM

AlienVault USM Anywhere is a great SIEM and if you need to deploy a SaaS solution then it is suited very well. It works very well for us being 100% AWS and integrates well with our toolset and AWS features. The Open Threat Intelligence (OTX) is perfect for providing context on events and feeding our incident response processes.
Matthew White profile photo

Zabbix

Zabbix is well suited in an environment where connectivity is possible between all hosts in the network. Zabbix agents need to be able to "phone home" to the Zabbix server or a proxy. If connectivity is not possible between the agent and the server (typically the server is going to live in the "trust" section of the network, rather than a DMZ), Zabbix may not be a good fit. Zabbix is also appropriate in a cross-platform environment.Zabbix is also highly appropriate in shops that are interested in building their own monitoring infrastructure, rather than using a service. These services are obviously not free, but the time that you invest in Zabbix may make up for that monthly spend.
No photo available

Feature Rating Comparison

Security Information and Event Management (SIEM)

AlienVault USM
7.3
Zabbix
Centralized event and log data collection
AlienVault USM
8.0
Zabbix
Correlation
AlienVault USM
8.0
Zabbix
Event and log normalization
AlienVault USM
8.0
Zabbix
Deployment flexibility
AlienVault USM
7.0
Zabbix
Custom dashboards and views
AlienVault USM
6.0
Zabbix
Host and network-based intrusion detection
AlienVault USM
7.0
Zabbix

Pros

  • Up to this point, I have had no issues integrating with a system we currently have in production. while AlienVault stays on top with plugin updates.
  • Te dashboard is very informative when you figure out how to navigate around it and tweaked to your organization needs.
  • Correlation of events is probably my favorite as I normally only need to jump on the AlienVault dashboard to hammer down on network traffic/activity details.
AJ Gumataotao profile photo
  • Zabbix is able to provide us a single pane of glass for monitoring. It can handle Systems, Database, Network and application level alerts and send those alerts to the appropriate parties.
  • Zabbix graphs all metrics that come in. This means it's easy to spot trends and create alerts based on when those trends cross user-defined thresholds.
  • Zabbix allows for the escalation of issues. If someone sleeps through an alert in the middle of the night, it can easily be escalated to the next tier.
No photo available

Cons

  • Vulnerability Scanner reporting: The reporting from the integrated scanner (OpenVAS) are really difficult to read. They could have done a better job by scraping the report or creating a custom report from the data of the scan. However, leaving the default report template from OpenVAS makes the report somewhat useless.
  • Sometimes the local integration fails because of the scope of the tool. Let me elaborate on that: The OpenVAS scanner has certificated that expire within a year, and that makes the USM fail scans if you don't renew certificates yourself. They should have made them last at least 10 years. Same with Nagios, sometimes the integration fails and one doesn't know why unless you jailbreak it and find out in the logs for sure.
  • They do not provide a standalone installation of the product, because they modified so much the Linux distribution, that it must always be deployed as a virtual machine or appliance, but not on your own server.
Ivan Montilla Miralles profile photo
  • The first time that you use Zabbix, it may not be immediately obvious where everything is or how to find exactly what you want, but I think that it's UI is constantly improving with each new release. Training is also a great resource to resolve these types of problems.
  • While Zabbix allows in-depth customization of alerts to various applications (such as Slack, HipChat, Mattermost, or even SMS, etc.), I would love to see these options as built-in upon installation.
  • I have personally never found the "Maps" feature of Zabbix incredibly useful as I find it complicated to configure, but I should probably investigate its documentation further.
Eric O'Callaghan profile photo

Likelihood to Renew

AlienVault USM9.0
Based on 13 answers
It is a great product and has been instrumental to our security posture.
Dana Hancock profile photo
No score
No answers yet
No answers on this topic

Usability

AlienVault USM7.2
Based on 33 answers
Almost all functions are intuitive, custom logging is not very easy to configure.
Dana Hancock profile photo
No score
No answers yet
No answers on this topic

Support

AlienVault USM7.6
Based on 24 answers
Only had to use this once, and they had us back on track in an hour or so. They followed up the day after to make sure all was still working, great team.
Jason Cresswell profile photo
No score
No answers yet
No answers on this topic

Implementation

AlienVault USM7.1
Based on 37 answers
The one thing to remember is where to place the sensors within your organization. It is one thing to collect and analyze data, but collecting the right data is key. This is where AlienVaults experts really help. Instead of trying to sell you a gazillion sensors, they walk you through your network to make sure he sensors are where they need to be so you can achieve your goal. Implementation works so well because they take the time upfront to know your goals before they help you achieve them.
Matthew Frederickson profile photo
No score
No answers yet
No answers on this topic

Alternatives Considered

AlienVault USM works well for any company size. LogRhythm might be too much if your company is not already big, and the same can be said of McAfee Enterprise Security Manager. If this is your first SIEM, it's a really good choice and has nothing to envy from the others I'm comparing it with. I also recommend the cloud version of AlienVault, the USM Anywhere, which the interface is a bit different, but the principles remain the same. Also, the McAfee Enterprise Security Manager has a Flash-based interface, for which Adobe is phasing out. AlienVault USM is HTML5 and can even be used mobile.
Ivan Montilla Miralles profile photo
I personally prefer Zabbix over any other monitoring software that I have ever tried. Zabbix is so customizable that if there is a feature I need, I can easily implement it. I can then add that feature to a template in no time and have it applied to hundreds, or even thousands, of other servers. The performance of Zabbix and its ability to use proxy servers to gather data and report back to a primary node is also rather unique in my experience. Zabbix, being self-hosted, rather than a cloud solution, also prevents latency or routing issues from generating false alerts.
Eric O'Callaghan profile photo

Return on Investment

No answers on this topic
  • Zabbix simply makes it easier to identify, and subsequently resolve problems quickly
  • Zabbix gives one web page to look at to see a list of all on-going issue in a single place
  • Zabbix can automate response to alerts. For example, Zabbix allows you the customization to take a monitored server out of production rotation if it is identified as unhealthy
Eric O'Callaghan profile photo

Screenshots

Zabbix

Pricing Details

AlienVault USM

General
Free Trial
Yes
Free/Freemium Version
Yes
Premium Consulting/Integration Services
Yes
Entry-level set up fee?
Optional
Additional Pricing Details

AlienVault USM More Information

Zabbix

General
Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No
Additional Pricing Details

Zabbix More Information