AlienVault USM Reviews

<a href='https://www.trustradius.com/static/about-trustradius-scoring#question3' target='_blank' rel='nofollow noopener noreferrer'>Customer Verified: Read more.</a>
610 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 7.8 out of 100

Do you work for this company? Manage this listing

TrustRadius Top Rated for 2019

Overall Rating

Reviewer's Company Size

Last Updated

By Topic

Industry

Department

Experience

Job Type

Role

Filtered By:

Reviews (1-25 of 354)

Matthew Stacks | TrustRadius Reviewer
November 27, 2019

AlienVault USM Anywhere

Score 6 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

AlienVault Unified Security Management (USM) Anywhere is a cloud-based security information and event management solution that provides effective and affordable threat detection, incident response, and compliance management capabilities.

USM Anywhere is well suited to mid-size enterprise environments operating in the cloud. USM Anywhere is also well suited to enterprises whose operations teams require easy deployment and management. Last, USM Anywhere is considered a highly affordable option compared to competitors.

USM Anywhere lags competitors in several areas, such as application monitoring, database monitoring, and integrations with third-party solutions such as cloud access security brokers (CASB), DAM, DAP, and DLP.
Read Matthew Stacks's full review
Christian Holton | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

AlienVault is an amazing product. The only reason my rating isn't higher is that most of my colleagues work for smaller businesses where the IT staff is less than 5 people. There are a lot of moving parts to AlienVault and it is almost another job. Folks in my circle of colleagues, for the most part, don't have the bandwidth that AlienVault demands.
Read Christian Holton's full review
Mpho Lekota | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

AlienVault USM is well suited for any small/medium businesses as well as big corporations. The reporting and dashboard alone are something I always look for in a USM because it makes it easier for me to gather and find the information I am required to have. If detailed reports are what you are looking for or an easy-to-navigate dashboard this is the software for you.
Read Mpho Lekota's full review
Stacey Medina | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

AlienVault USM is well suited for any small/medium businesses as well as big corporations. The reporting and dashboard alone are something I always look for in a USM because it makes it easier for me to gather and find the information I am required to have. If detailed reports are what you are looking for or an easy to navigate dashboard this is the software for you.
Read Stacey Medina's full review
Jeremy Cejka | TrustRadius Reviewer
Score 4 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

To be honest, AlienVault is run of the mill. I can get more power out of Gralyog/ ELK and pay for the threat exchanges they have, and still have complete control over how my SIEM works for me. AlienVault USM isn't a bad product, but as an end user you give up too much control and get little back from the company when it comes to attribute mapping. Also not a fan of the updates the break my appliance for a couple days. Which falls in the category of control. I think USM is a good starter for small companies needing SIEM where resources otherwise prohibit having someone/something better. As businesses grow and compliance becomes more instituted, the businesses need may be very unique where AlienVault may not be able to satisfy the burden of their specific SIEM needs.
Read Jeremy Cejka's full review
Babak Oskouian | TrustRadius Reviewer
November 06, 2019

AlienVault Review

Score 7 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

Because of the price and the fact that it does much more than just SIEM, it has been very valuable to us, however, a redo of the GUI might be in order as it is old and somewhat not very intuitive.
Read Babak Oskouian's full review
Ranjith R | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

It is well suited for a Cloud environment like AWS and Azure, since GCP is a new player in cloud, AlienVault has to improve a lot in terms of support with the data and log sync of instance asset mapping and sensor capability to handle more jobs to get out of unavailability issue among other competitors like Splunk, Sumo Logic and LogRhythm
Read Ranjith R's full review
Cory Watson | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

It is well suited for a small security team that does not have all the time in the world to set it up, tune it, and babysit it.

It is not appropriate if you are looking to easily be able to customize the tool. A lot of the options you have with tools like Splunk are just not here.
Read Cory Watson's full review
Fintan O'Meara | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

Good out of the box product, not a huge amount of configuration required to get up and running, though constant tuning is and should be required. Good integrations available, though if you have a lot of experience security analysts in your organisation there are probably more powerful tools out there, they just require you do most of the correlation and detection rules yourself.
Read Fintan O'Meara's full review
Mario Martinez | TrustRadius Reviewer
September 27, 2019

AlienVault does the job

Score 9 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

AlienVault is well suited for cloud environments and sprawling internal networks. Log ingestion and analysis across your instances and, in our case, AWS, coupled with File Integrity Monitoring and other features are well worth having. It takes some time to get things right and I would suggest, like every tool, that you periodically test its different components to remain confident in its abilities. Smaller systems likely would not benefit as much and it might be a cost/benefit analysis whether to audit changes by hand or monitor them for changes.
Read Mario Martinez's full review
Mark Taghap | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

AlienVault is perfect for all organizations, especially for smaller-staffed IT departments. The installation was relatively easy, especially with AlienVault's vendor partners. We did not need to integrate and monitor multiple point solutions b/c AlienVault does the automatically. Just make sure you test the data flow for PLC devices as it may disrupt the flow of data on these types of devices.
Read Mark Taghap's full review
Agustin Larrarte | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

The on-premise version of Alienvault will be very good for environments that don't change a lot over time, it will provide good information about security issues on your premises. I would not recommend using this if you have a big private cloud where a lot of changes are being made. Go with the cloud version if that's your case.
Read Agustin Larrarte's full review
Jesse Bickel | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

If you have a network that is cloud-based and you are scaling the deployable sensors are simple and fast. Security is not the hump it used to be. I believe their model is truly agile and scalable with ease. I believe if you have a fully on-prem network while this solution is still viable, we found our self relying on our local Meraki and Cisco security tools more so then USM. I believe this was out of comfort and experience more so than functionality.
Read Jesse Bickel's full review
Erich Barlow, MIS | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

It is well suited if you are looking to identify vulnerabilities within your network environment or need to show that you are actively managing them in a meaningful manner. The application will provide a visible manner in which this can be documented for compliance and regulatory requirements. It is not as well suited for identifying potential threats as it provides a LOT of false positives and alerts.
Read Erich Barlow, MIS's full review
Adam Nield | TrustRadius Reviewer
September 05, 2019

Picking up AlienVault USM

Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

For what we have the system for AlienVault ticks all the boxes, and there are still more areas for us to explore within the system. It is great as a SIEM tool, being able to not only record and log events but also correlate events, meaning it recognizes where lots of the same events are occurring and depending on how you set up the system it can react accordingly.
Read Adam Nield's full review
Pankaj KC | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

If you have a bigger organization that has a bigger network infrastructure which needs to be monitored in every aspect, then AlienVault USM is perfect for it. It automatically detects threats and sends out email notifications from which necessary actions can be taken. It has a correlation engine, which quickly detects and alerts on different variants of malware that can affect your organization. It provides full details on the attack method and strategy, the systems in the network involved in the attack (source and destination)with the geo-location, and the associated event that comprised the attack, along with response guidance.

Since it is very expensive I do not recommend it for small organizations it requires additional infrastructures to implement the AlienVault within the premise.
Read Pankaj KC's full review
Ariel Lucas Sandor | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

It's a very nice solution for small and medium deployment scenarios (at least the on-premise version) with slow changes, also is very easy and fast to deploy. On bigger scenarios, it gets slow and a little bit hard to maintain. It's affordable so I would recommend it for small companies.
Read Ariel Lucas Sandor's full review
Brian Lindow | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

Well suited for a small InfoSec team that has limited time to manage the tool and respond to alerts. If you have a larger team that wants more detailed data that could be used for AppDev troubleshooting then a different products is probably better.
Read Brian Lindow's full review
Magdiel Hernandez | TrustRadius Reviewer
Score 5 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

While is well suited if you are small organization starting a security practice, AlienVault fails to deliver when it comes to medium or large corporations, as there is very little flexibility from the tool to create alerts. Also, plugins in this time are definitely not the way to go.
Read Magdiel Hernandez's full review
Ryan Hart, MBA | TrustRadius Reviewer
July 29, 2019

Better than Splunk

Score 10 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

AlienVault USM provides good overall value and support. I am not a fan of on-prem monitoring hardware. Alien Vault USM has fantastic cloud-based monitoring solutions which we host in our cloud environment.
Read Ryan Hart, MBA's full review
Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Review Source

Likelihood to Recommend

AlienVault USM is a good SIEM product for shops that don't have dedicated content creators. If your log source volume is at the TB level on a daily basis, it's not for you. However if you are on a TB level at the monthly level then it's worth looking into. The AT&T purchase has seen a good bit of new development being put into the product around investigation frameworks and integrations. We've gone to a TB tier and have renewed our subscription.
Read this authenticated review

Feature Scorecard Summary

Centralized event and log data collection (1)
8
Correlation (1)
8
Event and log normalization (1)
8
Deployment flexibility (1)
7
Custom dashboards and views (1)
6
Host and network-based intrusion detection (1)
7

About AlienVault USM

AlienVault® Unified Security Management® (USM) delivers threat detection, incident response, and compliance management in one unified platform. It is designed to combine all the essential security capabilities needed for effective security monitoring across cloud and on-premises environments, including SIEM, intrusion detection, vulnerability management, as well as continuous threat intelligence updates. The vendor states that even for resource-limited IT security teams, AlienVault USM can be affordable, fast to deploy, and easy to use. It eliminates the need to deploy, integrate, and maintain multiple point solutions in the data center.

Smart, automated data collection & analysis: USM Anywhere automatically collects and analyzes data across the attack surface, helping to quickly gain centralized security visibility without the complexity of multiple disparate security technologies.

Automated threat detection powered by AT&T Alien Labs: With threat intelligence provided by AT&T Alien Labs, USM Anywhere is updated automatically to stay on top of evolving and emerging threats, so the security team can focus on responding to alerts.

Incident response orchestration with AlienApps: USM Anywhere supports a growing ecosystem of AlienApps, enabling the user to orchestrate and automate actions towards other security technologies, able to respond to incidents quickly and easily.

AlienVault USM Features

Security Information and Event Management (SIEM) Features
Has featureCentralized event and log data collection
Has featureCorrelation
Has featureEvent and log normalization
Has featureDeployment flexibility
Has featureIntegration with Identity and Access Management Tools
Has featureCustom dashboards and views
Has featureHost and network-based intrusion detection
Additional Features
Has featureAlienVault Open Threat Exchange

AlienVault USM Screenshots

AlienVault USM Videos (2)

Watch AlienVault USM Anywhere: Five Essential Cloud Security Capabilities in a Single SaaS Platform

Watch See How We're Pushing the Outer Limits of Security

AlienVault USM Downloadables

AlienVault USM Competitors

Pricing

  • Has featureFree Trial Available?Yes
  • Has featureFree or Freemium Version Available?Yes
  • Has featurePremium Consulting/Integration Services Available?Yes
  • Entry-level set up fee?Optional

AlienVault USM Support Options

 Free VersionPaid Version
Phone
Email
Forum/Community
FAQ/Knowledgebase
Social Media
Video Tutorials / Webinar
Live Chat

AlienVault USM Technical Details

Deployment Types:SaaS
Operating Systems: Unspecified
Mobile Application:No
Supported Countries:Global