Men in Black can't catch this AlienVault
Updated May 29, 2017

Men in Black can't catch this AlienVault

Anonymous | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with AlienVault USM

AV is being used to monitor our network and let us know not only what is happening as packets come in, but as they leave as well. It is being used by our entire organization across all departments. This helps us keep our network secure by alerting us when there is anything suspicious going on such as port scans, malware, DoS attacks, etc. It doesn't prevent anything but it allows you to understand all the traffic going in and out allowing you to find the weaknesses in your network and work with your firewall vendor to correct.
  • Interface & Dashboards are very easy to filter alarms, and dive into trends, etc.
  • Lots of correlations and plugins that can be setup to gather data from all over
  • Includes many different tools from vulnerability scanning, to netflow, to agent based server monitoring
  • It is very difficult to setup some of the extra plugins beyond just basic network monitoring
  • The installation process could be a little more intuitive
  • Hard to snooze, or ignore alerts for specific devices
  • SolarWinds Log & Event Manager, SecureVue and LogRhythm
Price was a big deal for us but we also read very positive reviews of AlienVault from different trade magazines, etc. We found that it included more for your dollar as well as one of the better interfaces for alarm troubleshooting. They have a great dashboard that you can customize and tweak to your needs, as well as reports that run for different regulations.
It is well suited if you are looking for an all in one product. We looked at several other SIEM products but they all required purchasing extra items to do the same thing that AlienVault can. It also requires you to have someone on staff knowledgeable with the product and the monitoring.

AlienVault USM Implementation

I wish it was a little easier with setup wizards for best practice and some more plugins