Empowering Security Zenith with Unified Vigilance.
As an IT researcher at a university, we use AlienVault USM for centralized security monitoring, threat detection, incident response, …
Starting at $1,075 per month
View PricingOverview
What is AlienVault USM?
AlienVault® Unified Security Management® (USM) delivers threat detection, incident response, and compliance management in one unified platform. It is designed to combine all the essential security capabilities needed for effective security monitoring across cloud and on-premises environments, including SIEM, intrusion detection, vulnerability management, as…
Recent Reviews
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Popular Features
- Centralized event and log data collection (8)9.090%
- Correlation (8)8.787%
- Event and log normalization/management (8)8.282%
- Custom dashboards and workspaces (8)7.272%
Reviewer Pros & Cons
Pricing
Essentials
$1,075
Cloud
per month
Standard
$1,695
Cloud
per month
Premium
$2,595
Cloud
per month
Entry-level set up fee?
- Setup fee optional
For the latest information on pricing, visithttps://www.alienvault.com/products/pri…
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting / Integration Services
Features
Return to navigation
Product Details
- About
- Competitors
- Tech Details
- Downloadables
- FAQs
What is AlienVault USM?
AlienVault® Unified Security Management® (USM) delivers threat detection, incident response, and compliance management in one unified platform. It is designed to combine all the essential security capabilities needed for effective security monitoring across cloud and on-premises environments, including SIEM, intrusion detection, vulnerability management, as well as continuous threat intelligence updates. The vendor states that even for resource-limited IT security teams, AlienVault USM can be affordable, fast to deploy, and easy to use. It eliminates the need to deploy, integrate, and maintain multiple point solutions in the data center.
Smart, automated data collection & analysis: USM Anywhere automatically collects and analyzes data across the attack surface, helping to quickly gain centralized security visibility without the complexity of multiple disparate security technologies.
Automated threat detection powered by AT&T Alien Labs: With threat intelligence provided by AT&T Alien Labs, USM Anywhere is updated automatically to stay on top of evolving and emerging threats, so the security team can focus on responding to alerts.
Incident response orchestration with AlienApps: USM Anywhere supports a growing ecosystem of AlienApps, enabling the user to orchestrate and automate actions towards other security technologies, able to respond to incidents quickly and easily.
AlienVault USM Features
Security Information and Event Management (SIEM) Features
- Supported: Centralized event and log data collection
- Supported: Correlation
- Supported: Event and log normalization/management
- Supported: Deployment flexibility
- Supported: Integration with Identity and Access Management Tools
- Supported: Custom dashboards and workspaces
- Supported: Host and network-based intrusion detection
Additional Features
- Supported: AlienVault Open Threat Exchange
AlienVault USM Screenshots
AlienVault USM Videos
AlienVault USM Competitors
AlienVault USM Technical Details
| Deployment Types | Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Unspecified |
| Mobile Application | No |
| Supported Countries | Global |
AlienVault USM Downloadables
- Unified Security Management vs. SIEM: a Technical Comparison
- AlienVault USM Anywhere: Datasheet
- AlienVault Fast Facts
- AlienVault USM Anywhere: Datasheet
- Beginner’s Guide to Open Source Intrusion Detection Tools
- SIEM for Beginners: Everything You Wanted to Know About Log Management But Were Afraid to Ask
Frequently Asked Questions
Splunk Cloud and Fortinet on IBM Cloud are common alternatives for AlienVault USM.
Reviewers rate Deployment flexibility highest, with a score of 9.2.
The most common users of AlienVault USM are from Mid-sized Companies (51-1,000 employees).
Comparisons
Compare with
Reviews and Ratings
(736)Attribute Ratings
Reviews
(1-25 of 332)Companies can't remove reviews or game the system. Here's why
June 02, 2023
AlienVault USM for threat monitoring
AlienVault USM is much cheaper, easier to deploy and maintain than other solutions. OTX is extremely useful in highlighting known threats and malvares. The feature of triggering alarms based on risks identified and vulnerability breaches is very effective. Overall AlienVault's features at it's price point makes it a top tier contender in the market.
June 01, 2023
will I continue to use USM, Yes I would
Easy to deploy and ease of use, good training by ATT
October 04, 2021
MSSP Review
Score 8 out of 10
Vetted Review
Verified User
I have used Splunk and QRadar which are quite manual and resource-intensive to get set up. On the other hand, AlienVault USM seems to have everything you need out of the box to get set up.
AlienVault appears to do what it is expected to do. The software captures potential intruders, provides aggregated and non-aggregated logs, provides interesting information on threats, and does vulnerability detection. The software appears to do just as good or better job as competing software tools, although Splunk appears to do a better job at log aggregation. The graphics are easy to see and the software runs seamlessly.
March 22, 2021
Great if you can deploy and manage on-premises SIEMs
QRadar is one of the top SIEMs on the market. AlienVault USM is more suitable for companies or clients having a smaller budget, as AlienVault USM is cheaper than QRadar. Regarding features, QRadar trumps AlienVault USM, as it is a product with a vast array of features.
November 11, 2020
AlienVault - Not Worth the Price
The cost of AlienVault is what sold us on AlienVault. However, considering the amount of time and effort that has gone into getting it set up and realizing that views and reports cannot be shared across groups makes it not worth the savings.
August 29, 2020
AlienVault USM Anywhere, a SIEM that is easy on your pocket.
There are other products like IBM QRadare and HP ArcSight, but they are much expensive than AlienVault USM which provides similar functionality.
August 07, 2020
Unbeatable Security Machine
- AlienVault USM
AlienVault was recommended by our PCI consultants.
August 02, 2020
Best product I've seen for a smaller enterprise network.
I evaluated Crowd Strike. It didn't provide any insight into my network equipment, only Mac and Windows clients. I wanted a complete SIEM and log manager.
July 29, 2020
Great SIEM for enterprise environments
The only other product I've used similar to AlienVault is SolarWinds SIEM (formerly TriGeo). It too could be difficult to implement and maintain, but it's user interface was much worse. While AlienVault USM Anywhere charges for the amount of data being processed, SolarWinds was a local install that didn't have that limitation. It was priced by the number of nodes monitored. If you get your filtering setup properly on AlienVault, there's not really a limit to the number of data sources, just the amount of overall data. AlienVault also makes it much easier to add data sources than SolarWinds in my experience.
July 13, 2020
AlienVault USM is a really beneficial SIEM solution.
Darktrace - While also a fantastic product, its use case is slightly different from a SIEM, and we found that AlienVault's broad SIEM capabilities complemented Darkrace's focussed use case well.
CyberShark - Cloud SIEM solutions do not often allow full control of or access to the actual backend of the solutions - you aren't able to customise alert rules and create custom correlations yourself for example. As we have in-house skills to do this, we found AlienVault a better solution giving us more control.
CyberShark - Cloud SIEM solutions do not often allow full control of or access to the actual backend of the solutions - you aren't able to customise alert rules and create custom correlations yourself for example. As we have in-house skills to do this, we found AlienVault a better solution giving us more control.
July 11, 2020
Great tool for medium shops
We already had familiarity with the platform but we needed cloud support so we upgraded to USM. We reviewed a few other options but decided USM was the best fit our requirements and price point.
July 09, 2020
Aliens are coming! or are they?
I've only used AlienVault and no other products of this nature.
AlienVault USM Anywhere provided the right gamut of features at the right price, with not a great deal of time or effort required to fully implement. As an added bonus, we can tick many checkboxes for various compliance standards, all from one solution. Complexity is an enemy of security, so being able to consolidate from several disparate platforms into one provides numerous business and ITsec advantages.
July 03, 2020
One of the best SIEMs out there
May 26, 2020
Solid unified security solution
The tools reviewed were quite sophisticated. The reason for choosing AlienVault USM was mainly inclusiveness (multiple services integrated) of the solution as well as the cost-benefit ratio. Integrating the solution into our current infrastructure also appeared relatively easy--minimal hiccups and setup time along with good support from their configuration partners and large collection of KBs.
May 19, 2020
First use of AlienVault USM
April 27, 2020
Great introduction to SIEMs
AlienVault USM is considerably more user-friendly, but it does fall short with the search functionality that a query language offers when looking for specific logs/statistics/data.
April 24, 2020
AlienVault USM anywhere
USM anywhere is easy to deploy and has sufficient documentation to guide administrators throughout the process of configuration and log creation. It also verifies threats against the Open Threat Exchange platform. USM gives remediation advice and insights to all threats detected on the assets. USM is user-friendly and easy to navigate through. Multitenant interactions allow it to blend well with existing solutions in any environment.
April 03, 2020
Built with security professionals in mind.
I chose AlienVault to try it in the lab environment and assess its strengths and weaknesses.
March 18, 2020
AlienVault is amazing
The price and the ease-of-use, and the support from AlienVault are better. I had a lot of trouble starting out, but they guided me very well. The training provided by AlienVault was fantastic, because I could play without the fear of breaking anything.
March 12, 2020
AlienVault USM for Investigation Efficiency
In terms of user-friendliness and overall navigation, I think AlienVault USM has the advantage. Also, AlienVault USM provides its own threat intelligence and then integrates it into its SEIM, which is a very helpful feature.
March 09, 2020
AlienVault USM Review
We had used Splunk, which is not even close to its pricing not at all budget-friendly. Splunk implementation requires more man-power and is a time-consuming process because no default directives are present and in implementation, each and every case needs to be checked. Complete installation and deployment is a long process but it is best in performance among all SIEM tools in the market.