AlienVault USM Reviews

<a href='' target='_blank' rel='nofollow noopener noreferrer'>Customer Verified: Read more.</a>
611 Ratings
<a href='' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 7.8 out of 100

Do you work for this company? Manage this listing

TrustRadius Top Rated for 2019

Overall Rating

Reviewer's Company Size

Last Updated

By Topic




Job Type


Filtered By:

Reviews (1-11 of 11)

Christian Holton | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Implementation Issues

  • Educating my C-levels on what AlienVault is and why we need it. Again, probably a problem faced more commonly in SMBs. The AlienVault sales team was a huge help in this and didn't seem too pushy.
  • My lack of knowledge. I learn by doing and trying and usually breaking things. In this case, I forced myself to learn the tool via traditional means.
  • The sheer volume of things you can do with this tool can be daunting if you've never used it. Think of the first time you logged in to AWS or Azure and saw all those features staring at you without a clear picture of where to start.
Read Christian Holton's full review
Karl Hart, ACSE, CEH, CHFI, CISSP | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source

Implementation Issues

  • Identification of all network devices and who has access to make changes.
  • Configuration of custom applications or appliances that AlienVault did not have plugins for. This is were Professional Services really helps out.
  • Tuning out of all the noise to get to the data that matters.
Read Karl Hart, ACSE, CEH, CHFI, CISSP's full review
Mike Kerem | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Review Source

Implementation Issues

  • Agent deployment. This has been greatly simplified in newer versions of the platform with the automatic deployment tool. However, if there are a large number of agents that need to be deployed, it is very time consuming as they can still only be done one-at-a-time. There is no ability to create a list of devices with their IP addresses that the system can use to automatically create and deploy the agents.
  • Configuring WIDS can be complicated. The WIDS sensors are not standard or proprietary to AlienVault. We have found the hardware, and developed the imaged that gets deployed to it, to perform this functionality.
Read Mike Kerem's full review
Aaron Rothstein | TrustRadius Reviewer
Score 5 out of 10
Vetted Review
Verified User
Review Source

Implementation Issues

  • The big deliverable was to enable log collection and event generation of our Meraki MX appliances and Cisco SF300 switches, neither of which had a built-in plugin. We spent all of our professional service hours having to build custom rsyslog conf files and plugins for these devices.
Read Aaron Rothstein's full review

Feature Scorecard Summary

Centralized event and log data collection (1)
Correlation (1)
Event and log normalization (1)
Deployment flexibility (1)
Custom dashboards and views (1)
Host and network-based intrusion detection (1)

About AlienVault USM

AlienVault® Unified Security Management® (USM) delivers threat detection, incident response, and compliance management in one unified platform. It is designed to combine all the essential security capabilities needed for effective security monitoring across cloud and on-premises environments, including SIEM, intrusion detection, vulnerability management, as well as continuous threat intelligence updates. The vendor states that even for resource-limited IT security teams, AlienVault USM can be affordable, fast to deploy, and easy to use. It eliminates the need to deploy, integrate, and maintain multiple point solutions in the data center.

Smart, automated data collection & analysis: USM Anywhere automatically collects and analyzes data across the attack surface, helping to quickly gain centralized security visibility without the complexity of multiple disparate security technologies.

Automated threat detection powered by AT&T Alien Labs: With threat intelligence provided by AT&T Alien Labs, USM Anywhere is updated automatically to stay on top of evolving and emerging threats, so the security team can focus on responding to alerts.

Incident response orchestration with AlienApps: USM Anywhere supports a growing ecosystem of AlienApps, enabling the user to orchestrate and automate actions towards other security technologies, able to respond to incidents quickly and easily.

AlienVault USM Features

Security Information and Event Management (SIEM) Features
Has featureCentralized event and log data collection
Has featureCorrelation
Has featureEvent and log normalization
Has featureDeployment flexibility
Has featureIntegration with Identity and Access Management Tools
Has featureCustom dashboards and views
Has featureHost and network-based intrusion detection
Additional Features
Has featureAlienVault Open Threat Exchange

AlienVault USM Screenshots

AlienVault USM Videos (2)

Watch AlienVault USM Anywhere: Five Essential Cloud Security Capabilities in a Single SaaS Platform

Watch See How We're Pushing the Outer Limits of Security

AlienVault USM Downloadables

AlienVault USM Competitors


  • Has featureFree Trial Available?Yes
  • Has featureFree or Freemium Version Available?Yes
  • Has featurePremium Consulting/Integration Services Available?Yes
  • Entry-level set up fee?Optional

AlienVault USM Support Options

 Free VersionPaid Version
Social Media
Video Tutorials / Webinar
Live Chat

AlienVault USM Technical Details

Deployment Types:SaaS
Operating Systems: Unspecified
Mobile Application:No
Supported Countries:Global