AV Trust Radius Review
November 23, 2015

AV Trust Radius Review

Anonymous | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User
Review Source

Overall Satisfaction with AlienVault Unified Security Management

Used by the organization, AlienVault Unified Security Management addresses log and event collection and analysis. As a bonus, it also adds vulnerability analysis, HIDS / OSSEC and other central management capabilities.
  • Ease of setup - up and running very quickly. Not a ton of knobs and switches to dial in, at least initially.
  • Application of updates to the platform - with lots of moving pieces, and the myriad of Linux dependencies, upgrades could be made a bit less burdensome for administrators.
  • Search features - although quick and on-point, it's the actual location of search boxes that seems quirky. Maybe make the search boxes bigger or different in design?
We looked at the leaders in the space (get the Gartner info if needed), and what drew us to AlienVault was the collection of tools in the tool bag, including one not addressed by others. None of the tools we saw included the capabilities to manage (and deploy) the HIDS agent. Kudos to AlienVault for realizing this is an important step in gathering a holistic view of your endpoints!
Tough question. It's the delicate balance between tuning, noise and relevant info. All products seem to have their idiosyncrasies when it comes to reaching that zen moment. Is it possible to get there faster using the AlienVault platform? I think so.
Yes, I believe the tool is helping the organization visualize underlying threats without an overbearing drain on resources. As with any other security platform, work invested early on will pay off in the longterm. So don't succumb to "quick fix", "little effort" fixes. No tool is a magic bullet.
Do your administrators have any familiarity with Linux? If not, you may want to consider a Windows based platform. You will need to move to the dark side (CLI) for some work within this tool.