AlienVault is a very good investment
Updated July 27, 2017
AlienVault is a very good investment
Score 9 out of 10
Vetted Review
Verified User
Overall Satisfaction with AlienVault USM
It'a very good product to manage and monitor the network. It's very powerful; it has to be well configured.
The support is available to help if needed!
It helps to better understand what happens on the network as well.
The support is available to help if needed!
It helps to better understand what happens on the network as well.
- Monitoring: The possibility to monitor all devices of your network with SNMP management
- Vulnerability scan: Very simple and powerfull feature. It scans your network and gives you all device vulnerabilities on your LAN.
- Nagios module: Integrated Tools in AlienVault Unified Security Management Platform. Very useful to have all theses tools in one place.
- False positive: there are still too much false positives detected when we use the alarm module. A lot of packets are caught in severity medium or high but are not threats. It is just standard traffic.
Using AlienVault USM
2 - System and network administrator and a system and network manager.
We are using the product to supervise the network.
We are using the product to supervise the network.
Every time we have needs on the product we have to call the support [team].
- Security threats
- Log tracks
- Alerts
- To generate attack list before the weekly security meeting
- Alert every time there is a change in AD or in the firewall
Evaluating AlienVault USM and Competitors
- Price
- Product Features
- Product Reputation
No change.
AlienVault USM Implementation
- Implemented in-house
Yes - installation
configuration
quick training
configuration
quick training
Change management was minimal
- Configuration on our infrastructure
AlienVault USM Training
- Online training
- Self-taught
According to me, minimum training is inevitable.
Configuring AlienVault USM
If there is more than one person using AlienVault in the company I would recommend writing "best practices" documentation to do things the same way.
No - we have not done any customization to the interface
No - we have not done any custom code
I haven't really done any customisation so far. But I certainly will.
AlienVault USM Support
Pros | Cons |
---|---|
Quick Resolution Good followup Knowledgeable team Problems get solved Kept well informed No escalation required Support understands my problem Support cares about my success Quick Initial Response | Difficult to get immediate help |
Yes - the support told me that it should be resolved in a future update. Not done yet...
Using AlienVault USM
Pros | Cons |
---|---|
Like to use Well integrated | Difficult to use Requires technical support Slow to learn Cumbersome Feel nervous using Lots to learn |
- List the past attacks
- Sending an email with understandable details of the event every time it happend
AlienVault USM Reliability
Integrating AlienVault USM
- Active directory
- Firewall
- Switch
All logs are routed to AlienVault.
- SNMP traps of all network devices
Yes
- Single Signon
Do the training before you use it.
Relationship with AlienVault
Upgrading AlienVault USM
Yes - It went smoothly and with minimal down time.
There were no unexpected impacts.
There were no unexpected impacts.
- fix glitches
- fix the glitches still not fixed.