LevelBlue USM Anywhere vs. McAfee Total Protection (discontinued) vs. Webroot Antivirus

LevelBlue USM Anywhere

LevelBlue USM Anywhere

734 Reviews and Ratings

McAfee Total Protection (discontinued)

McAfee Total Protection (discontinued)

83 Reviews and Ratings

Webroot Antivirus

Webroot Antivirus

97 Reviews and Ratings

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
LevelBlue USM Anywhere	Score 7.6 out of 10	N/A	The LevelBlue USM Anywhere XDR platform (replacing the former AlienVault USM) delivers threat detection, incident response, and compliance management.	$1,075 per month
McAfee Total Protection (discontinued)	Score 5.1 out of 10	N/A	McAfee's Total Protection included antivirus and antimalware offerings for home and small businesses or home offices. This product line is not a focus for Trellix, the brand formed from the merger of McAfee and FireEye that offers business grade products. Trellix Endpoint Security is the company's product line for business endpoint security.	$24.99 per year (2 year subscription, 5 devices)
Webroot Antivirus	Score 9.3 out of 10	N/A	Webroot Security Complete (formerly under the brand name SecureAnywhere) is a suite of antivirus, multi-endpoint security and Internet security solutions available for home offices, and possibly small businesses with limited security needs.	$30 per seat/per year

Pricing

LevelBlue USM Anywhere

McAfee Total Protection (discontinued)

Webroot Antivirus

Editions & Modules

Essentials: $1,075
per month
Standard: $1,695
per month
Premium: $2,595
per month

Multi-Device: $24.99
per year (2 year subscription, 5 devices)
Individual: $29.99 ($79.99)
1st year price (subsequent years)
Family: $29.99
per year (2 year subscription, 10 devices)

Webroot Business Endpoint Protection: $30
per seat/per year

Offerings

Pricing Offerings
LevelBlue USM Anywhere	McAfee Total Protection (discontinued)	Webroot Antivirus
Free Trial
Yes	No	No
Free/Freemium Version
Yes	No	No
Premium Consulting/Integration Services
Yes	No	No

Entry-level Setup Fee

Optional

No setup fee

No setup fee

Additional Details

—

—

—

More Pricing Information

Community Pulse
	LevelBlue USM Anywhere	McAfee Total Protection (discontinued)	Webroot Antivirus
Considered Multiple Products	LevelBlue USM Anywhere Verified User Administrator Chose LevelBlue USM Anywhere I have not personally used McAfee SIEM but have heard of it at MPOWER Cybersecurity summit. They are not as broad and easy to make compatible with other systems, but looks like they have performance and EPS really well done. Incentivized Helpful? Verified User Employee Chose LevelBlue USM Anywhere I chose AlienVault to try it in the lab environment and assess its strengths and weaknesses. Incentivized Helpful? Verified User Professional Chose LevelBlue USM Anywhere AlienVault is cloud based and offers more functionality than OSSIM such as cloud service monitoring like Office 365 and AWS, deployment of sensors for efficient deployment, and event integrations with the MITRE ATT&CK framework. USM also has a much improved GUI and allows for … Incentivized Helpful? Ivan Montilla Miralles Technical Services Chose LevelBlue USM Anywhere AlienVault USM works well for any company size. LogRhythm might be too much if your company is not already big, and the same can be said of McAfee Enterprise Security Manager. If this is your first SIEM, it's a really good choice and has nothing to envy from the others I'm … Incentivized Helpful? Verified User Director Chose LevelBlue USM Anywhere McAfee, QRadar, ArcSight were evaluated. Price and Open source environment was the main reason. Incentivized Helpful? Verified User Technician Chose LevelBlue USM Anywhere AlienVault is generally more affordable than its competitors. It also includes a built-in OpenVAS vulnerability scanner - which most competitors don't have. It is a decent option, but is not as mature of a product as some of the more expensive options like Splunk and LogRhythm. Incentivized Helpful? Verified User Employee Chose LevelBlue USM Anywhere We chose this mainly for price reasons. The only other "big fish" competitor would be splunk and the price was night and day different. Incentivized Helpful? Verified User Engineer Chose LevelBlue USM Anywhere The AlienVault Unified Security Management is much more affordable than the above mentioned products. Installation and configuration is simplistic and provides much of the same dashboards and raw log viewing. The AlienVault USM does not include extra parts such as specific … Incentivized Helpful? Jon Armani Security Analyst Chose LevelBlue USM Anywhere I looked into Splunk, QRadar, but they were way too expensive and the reviews weren't always great. I used McAfee ESM extensively at my prior job and the product is probably the worst in the SIEM space. We moved to AlienVault from ELK which, while a cool product, didn't do any … Incentivized Helpful? Ian Macintosh Manager ICT Operations Chose LevelBlue USM Anywhere It was a pretty even fight between Logrythm and AlienVault. The other two ended up outside our price range. The thing that made the big difference was that AlienVault was supported here in Canberra by a local firm (steadfastinfosec.com). Price wise AlienVault was a bit cheaper. Incentivized Helpful? Verified User Professional Chose LevelBlue USM Anywhere Decisive factor was a price over diverse functionality Incentivized Helpful? Giuseppe Trolio Senior IT Security Consultant Chose LevelBlue USM Anywhere We are a SMB security firm, so we have a focus on analyzing complex events/ attacks trends, possibily leveraging not-so-expensive security products: AlienVault USM has a perk on that, by delivering an essential but state-of-the-art analysis environment. Incentivized Helpful? Verified User C-Level Executive Chose LevelBlue USM Anywhere AlienVault is way cheaper than the other products for the five capabilities that it provides. However, the market is changing a lot and there are certain features that AlienVault has to think about on their roadmap if they want to stay ahead of competition. Live Response IR … Incentivized Helpful? Verified User Engineer Chose LevelBlue USM Anywhere When comparing the differences between all these programs we noticed that AlienVault Unified Security Managementblew the competitors out of the water not only in pricing but in so much more. The features that they were offering were not only amazing selling points but some of … Incentivized Helpful? Verified User Professional Chose LevelBlue USM Anywhere AlienVault is much better at correlation and all aspects. Incentivized Helpful? Vishal Jadhav Information Security & PreSales Officer Chose LevelBlue USM Anywhere AlienVault Unified Security Management solution is extremely flexible and customisable when compared to other SIEM tools such as Splunk, HP ArcSight, LogaRythm etc. The log collectors supported by most of the SIEM tools are mostly limited, and writing new collectors involves a … Incentivized Helpful?	McAfee Total Protection (discontinued) No answer on this topic	Webroot Antivirus Bradley Jones Co-Owner Chose Webroot Antivirus I am not a McAfee lover and have not been for a long while. I have on occasion had to support computers with it. In fact a business we provide support for now uses it. There are more incidents of malware infection and more complaints of computer performance for those using … Incentivized Helpful? Yvonne Graber President, Owner Chose Webroot Antivirus I think Webroot Antivirus + Internet Security Complete (SecureAnywhere) is better for residential than commercial clients. I think Sentinel One Complete is better for larger companies with security issues. There are more settings on it for customization. As far as with Webroot … Incentivized Helpful? JL Jason Lane Network Administrator Chose Webroot Antivirus Both of the aforementioned products were heavy on the learning curve as far as configuration and deployment. Both had a rather nonintuitive interface to centrally manage your protected devices. They both did a good job, but with unnecessary effort to achieve the same result as … Incentivized Helpful? Jeremy Stewart Director Of Information Technology Chose Webroot Antivirus Webroot was the easiest to deploy, remove, and manage compared to all other products tested. Incentivized Helpful? Mike Maner Network Systems Engineer Chose Webroot Antivirus Webroot has an incredibly fast install & scan. I'm impressed with the cloud management console and cloud based updates. Managing users is fairly simple as is keeping up with license usage. Also, your mobile workers will get updates quickly, unlike some other anti-virus suites I … Incentivized Helpful? David Yates President Chose Webroot Antivirus Excels in its job and surpasses [for us and our clients] all other competitors. Incentivized Helpful? Chris Skurkey Service Technician Chose Webroot Antivirus Symantec.cloud, Sophos, McAfee (which was terrible, and we had to replace McAfee with Symantec.cloud at another company). However, the difference between Symantec.cloud and Webroot is primarily with notifications and installations of definition updates. There was a lot more … Incentivized Helpful? Christopher Audie Systems Administrator & Developer Chose Webroot Antivirus I have evaluated numerous other security products including Norton, McAfee, Kapersky, and Panda. Nothing comes close to Webroot in terms of system performance impact. It is almost like nothing is even installed - it is that low-resource intensive. Same thing with scanning … Incentivized Helpful?

Best Alternatives
	LevelBlue USM Anywhere	McAfee Total Protection (discontinued)	Webroot Antivirus
Small Businesses	SentinelOne Singularity Score 8.9 out of 10	Malwarebytes Score 8.8 out of 10	Malwarebytes Score 8.8 out of 10
Medium-sized Companies	CrowdStrike Falcon Score 9.1 out of 10	BlackBerry Protect (CylancePROTECT) Score 9.1 out of 10	BlackBerry Protect (CylancePROTECT) Score 9.1 out of 10
Enterprises	CrowdStrike Falcon Score 9.1 out of 10	BlackBerry Protect (CylancePROTECT) Score 9.1 out of 10	BlackBerry Protect (CylancePROTECT) Score 9.1 out of 10
All Alternatives	View all alternatives	View all alternatives	View all alternatives

User Ratings
	LevelBlue USM Anywhere	McAfee Total Protection (discontinued)	Webroot Antivirus
Likelihood to Recommend	9.8 (390 ratings)	9.0 (3 ratings)	9.3 (27 ratings)
Likelihood to Renew	7.2 (18 ratings)	10.0 (1 ratings)	10.0 (5 ratings)
Usability	6.7 (34 ratings)	- (0 ratings)	9.0 (3 ratings)
Availability	6.4 (3 ratings)	- (0 ratings)	10.0 (1 ratings)
Performance	7.3 (3 ratings)	- (0 ratings)	10.0 (2 ratings)
Support Rating	7.3 (25 ratings)	- (0 ratings)	8.0 (2 ratings)
In-Person Training	4.5 (1 ratings)	- (0 ratings)	- (0 ratings)
Online Training	8.3 (6 ratings)	- (0 ratings)	- (0 ratings)
Implementation Rating	6.4 (38 ratings)	- (0 ratings)	- (0 ratings)
Configurability	8.0 (3 ratings)	- (0 ratings)	- (0 ratings)
Ease of integration	7.3 (3 ratings)	- (0 ratings)	- (0 ratings)
Product Scalability	6.3 (3 ratings)	- (0 ratings)	10.0 (1 ratings)
Vendor post-sale	7.6 (3 ratings)	- (0 ratings)	- (0 ratings)
Vendor pre-sale	8.2 (3 ratings)	- (0 ratings)	- (0 ratings)

User Testimonials
	LevelBlue USM Anywhere	McAfee Total Protection (discontinued)	Webroot Antivirus
Likelihood to Recommend	LevelBlue At this point I'm saying a 4. While the marketing material make it appear to be easy to use and it was relatively easy to set up, as previously mentioned, each event description is based upon the individual asset making it nearly impossible for the administrator to be a SME for each asset. For example, if one of the assets reporting is a router, the administrator monitoring alerts would need to know what the various events are that can be triggered as an event for the particular router; however, if the asset is a workstation, the administrator would need to know the various events that are triggered for workstations. Incentivized Verified User Anonymous Read full review	Discontinued Products I think McAfee is great to have whether it's for work or for personal use. While it has some drawbacks, I like the peace of mind of feeling safe when I'm browsing the web/email, especially when my computer has sensitive/confidential information, knowing that McAfee will immediately detect any threats. The UI is extremely easy to navigate, which makes it easy for users regardless of how tech-savvy they are. Incentivized Verified User Anonymous Read full review	OpenText Webroot SecureAnywhere is a good solution for those wanting to protect their endpoints from viruses and malware. It also works great for MSPS as you can manage all clients in a single portal. You have the option for DNS protection and web browser filtering as well. This would also work well in any small business. Incentivized JS Joseph Shaffer Owner Read full review
Pros	LevelBlue AlienVault USM is simple and easy to deploy. Sensors can be deployed in as little as 15 minutes through the setup wizard. The USM UI is easy to understand. I've trained multiple analysts who are able to perform their duties on their first day, in part because of USM Anywhere's ease of use. Top-notch built-in compliance templates and reporting features. Incentivized Matthew Stacks Tier II SOC Analyst Read full review	Discontinued Products Excellent protection of all internet connected assets on our VPN. Constant updates of needed security patches that ensure our network and systems are protected from current and emerging/potential threats. Prompt and reliable customer service that provides needed answers and expertise in a crisis. Strategic whitepapers on emerging cyber threats and McAfee solutions to resolve them before they become a problem for my team or our clients. Incentivized Samuel Boyle Emergency Management Analyst Read full review	OpenText Webroot checks all search result links and delivers warnings or approvals to users. This means Webroot is thorough and assists to keep users familiar with any potential problem sites. Webroot is easily activated as a Chrome or browser extension to ensure ease of access. Webroot monitors activity and will send updates to the IT department to keep them privy of any potential problems. Incentivized Chris Hecox Video Producer Read full review
Cons	LevelBlue Personally, I've wished I could purchase a service that would configure AV for my environment. I get a lot of traffic on a daily basis and I almost need to hire an analyst that just works on AV. Some of the filters when looking for a specific alert aren't that easy to use. Incentivized Christian Holton System Administrator Read full review	Discontinued Products Price - Extremely high price tag for many of the solutions. Incentivized Verified User Anonymous Read full review	OpenText Webroot could do a better job of working on their integration partnerships with companies like LabTech (now known as Automate). Many times we make it through 2 or 3 levels of support before one of the parties says "oh well you need to talk to LabTech about this" or vice versa. That can be frustrating for partners when trying to understand and resolve issues between the two applications. Cryptolocker/ransomware is a hot topic and I will say that Webroot has provided us with adequate protection when we first started using in 2014. I understand the complexities and challenges AV companies face with new threats being created everyday. I do want to point out that there have been instances where Webroot has not been able to stop one of those types of attacks. After talking with support - it was clear that they had no good answer as to why that particular threat was not stopped and quarantined. Support for the enterprise side of Webroot can be daunting at times. Response times are hit or miss depending on the severity of the issue. Sometimes you get a great support engineer who will go above and beyond - sometimes I ask myself how this person is even employed with the lack of communication skills or actual interest in helping resolve partner issues. Incentivized Carson Hagan, ITILv3 CIO 💻🖥️🖱️⌨️ Read full review
Likelihood to Renew	LevelBlue The centralized logging and retention for PCI compliance was our main driver, and it is meeting that need. Otherwise there has been enough frustration with the lack of documentation and the need to customize through the CLI that I would be open to alternatives. Incentivized Aaron Rothstein IT Systems Architect Read full review	Discontinued Products McAfee has consistently delivered on its stated goals of providing comprehensive protection for our networks and systems. Due to their excellent work and follow through I have been, and will continue to be a loyal customer. Incentivized Samuel Boyle Emergency Management Analyst Read full review	OpenText It's easy to renew with Webroot, their support is very attentive and highly available. However if you do choose to change products, they even provide means of removing the software from your endpoints via the admin portal which is very convenient. Incentivized Verified User Anonymous Read full review
Usability	LevelBlue Once you are able to navigate the different panels, finding what you need is quite easily. Before getting used it it can be a bit of challenge . Each panel is quite well laid out and the filtering search capabilities are quite strong. Incentivized Verified User Anonymous Read full review	Discontinued Products No answers on this topic	OpenText There is nothing perfect in this world, but Webroot Antivirus + Internet Security Complete (SecureAnywhere) is easy to use in comparison to others. Also Webroot tech support is only a phone call away. There have been several times I ran into an issue, but tech support as there to help resolve the issue. Incentivized Yvonne Graber President, Owner Read full review
Reliability and Availability	LevelBlue We do have issues with maintenance on the AlienVault USM as the disk fills up from time to time with other data sources. Sources for scanning logs and net flow data isn't calculated in regular disk maintenance and can easily fill up our disk if we do not keep an eye on it with some custom Nagios plugins. The system does properly trim logging data from logging sources properly. Incentivized Verified User Anonymous Read full review	Discontinued Products No answers on this topic	OpenText No answers on this topic
Performance	LevelBlue With the latest release of AlienVault USM overall performance has not been an issue. We have noticed single source events per second does not scale well with the overall system. 2,000eps on a vmware system with a single source produces delays of up to an hour for us. Pages, reporting and even raw log searches are rather quick though. Incentivized Verified User Anonymous Read full review	Discontinued Products No answers on this topic	OpenText No answers on this topic
Support Rating	LevelBlue The support we received from alienvault was excellent. They went above and beyond in making sure everything was working as it needed to be. They REALLY want their product implementation to be a success and our security goals be achieved. They are like a member of our security team. Incentivized Verified User Anonymous Read full review	Discontinued Products No answers on this topic	OpenText We have not had to use Webroot support much over the years. The one or two times we did we were referred to online documentation and in a somewhat condescending manner in one case and in another case, the support person did not demonstrate much knowledge of their product and referred us to the user community for support. Incentivized Verified User Anonymous Read full review
In-Person Training	LevelBlue I did not have any experience with "in person" training directly. The free online classes offered for a half a day are based on the actual training offered. These little teasers are very good and well worth your time to learn a few quick and dirty ways of getting more information from your SIEM Incentivized Verified User Anonymous Read full review	Discontinued Products No answers on this topic	OpenText No answers on this topic
Online Training	LevelBlue It was very well organized and helpful in using the product to the fullest extent. The instructor allowed time for folks who were involved with managed services to receive tuning tips in order to better support their customers. In addition, the course materials were automatically updated when the new version came out. Incentivized Verified User Anonymous Read full review	Discontinued Products No answers on this topic	OpenText No answers on this topic
Implementation Rating	LevelBlue AlienVault USM was a very simple to implement and get up and running. We started with a trial version and had that up and going within an hour of receiving email instructions from the sales engineer. We never had to contact support to get the system up and going. It was extremely easy to convert over to a full license once we started with a paid version. Incentivized Verified User Anonymous Read full review	Discontinued Products No answers on this topic	OpenText No answers on this topic
Alternatives Considered	LevelBlue Splunk's ES is a paid add-on on top of an already pricey product. Finding a MSSP that supports Splunk and isn't a 6 figure annual commitment seems unlikely. LogRhythm did not have a cloud-based solution when we were considering SIEMs. Fantastic product though and have a good MSSP base. Devo did not have a MSSP partner base when we looked. Their product is fantastic too. AlienVault USM has good partners to choose from as well as an affordable cloud model, that's why we chose it. Incentivized Verified User Anonymous Read full review	Discontinued Products I haven't used Norton for a while, but when I did use it I felt that it slowed down my computer and had constant pop-ups, which were both equally frustrating and annoying. It was also very difficult to remove from my computer. Malwarebytes is a great, straightforward program I've used for virus scanning. It's pretty bare bones but I think if you just want something to scan for viruses it gets the job done quickly and reliably. In my opinion McAfee offers similar benefits as Norton but its more intuitive and doesn't impact system performance. Incentivized Verified User Anonymous Read full review	OpenText While we consider alternatives from time to time when putting together our budget, we haven't felt the need to thoroughly test a competitor since webroot has been working well for us and we are comfortable with the pricing. Incentivized AR Alan Richtmyer Senior Manager, IT & InfoSec Read full review
Scalability	LevelBlue The AlienVault USM is not very scalable. Some scalability can be achieved by installing additional sensors, but this only offers 500eps per sensor and is still overall limited by the installation type of VM or physical. We have also noticed the EPS (events per second) is rated overall and not towards a single source. A single source on a very healthy VMware partition tops out at 2,000eps for us, no matter how we configure it. Maybe this is a problem of the 5.2 release? Incentivized Verified User Anonymous Read full review	Discontinued Products No answers on this topic	OpenText Ease of implementation across various devices is easy and efficient regardless of scale. Whether it is 5 devices or 500 the product continually proves its the best in its class. Incentivized Christopher Audie Systems Administrator & Developer Read full review
Return on Investment	LevelBlue Once you hit the 150 asset mark, you have to jump to their unlimited license. There is no middle ground. We were only 10 or so assets above the 150 so we had to chose to either not monitor those assets or pay the price of the upgrade. AlienVault brings all the information to one place which makes it much quicker to track down problems. Incentivized Verified User Anonymous Read full review	Discontinued Products Blocks unsafe websites Virus detection and removal Protects sensitive data Incentivized Verified User Anonymous Read full review	OpenText It has had a mostly positive impact as we have not had any breaches. The only negative impact has been when Webroot Antivirus + Internet Security Complete (SecureAnywhere) changed something on their end that caused one of our business applications to not be usable by end-users. That cost our business a fair amount as it took 4 days before it could be used again. Incentivized BS Brandon Schmidt Systems and Applications Technician Read full review
ScreenShots