Distributed Alienvault USM for >5 years
September 23, 2015
Distributed Alienvault USM for >5 years
Score 10 out of 10
Vetted Review
Verified User
Software Version
5.1.1
Overall Satisfaction with AlienVault Unified Security Management
We use AlienVault Unified Security Management as a central SIEM, HIDS, NIDS and vulnerability scanning. Our incident response team uses it daily, while our systems group has automated processes that protect external services.
Pros
- Centralized SIEM, even though collectors are distributed within segments.
- Correlation rules between HIDS/NIDS/SIEM is often left out of other products.
- Interface UX is well done and easily traverse-able to pinpoint concerns quickly.
Cons
- Upgrade process often leaves a lot to be desired.
- Requires a lot of hardware resources to make web UI load times bearable.
- Aanval
Seemed to have a better track record and roadmap.
Comments
Please log in to join the conversation