1. Home
  2. Security Information and Event Management (SIEM) Software
  3. AlienVault USM Reviews
  4. User Review of AlienVault USM
Review from Brier & Thorn - a TIER I MSSP for AlienVault
November 25, 2015

Review from Brier & Thorn - a TIER I MSSP for AlienVault

Alissa Knight | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Reseller

Overall Satisfaction with AlienVault Unified Security Management

We are a Managed Security Service Provider, leveraging AlienVault as the federated monitoring infrastructure for our Security Operations Center.

It addresses the problem of log management/Security Information and Event Management through correlation and aggregation of security event logs.

  • Identification of known bad IP addresses
  • Access to packet payloads triggering events
  • Management/updating of network IDS rules
  • Upgrade to new major releases is poorly QAed and tested introducing new bugs that should have been caught in the QA process which has brought down customer production equipment
  • Ongoing attention and updates to submitted bugs
Rare to find a SIEM that provides the packet dump/payloads of packets that trigger events
Well suited for organizations that have the necessary internal resources to monitor/manage an enterprise SIEM deployment, monitor and respond to security events, and triage events filtering out false positives