AlienVault, great tool for small and medium size business. It works!
November 01, 2016

AlienVault, great tool for small and medium size business. It works!

Anonymous | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User

Overall Satisfaction with AlienVault Unified Security Management

AlienVault allows us to monitor the network and devices within our organization. Devices are pointed to AlienVault to gather information about their health and whether malicious threats are present or possibly housed there to be exploited at a later time. The information is then examined and alerts and possible threats are given to us to review. We use the tools AlienVault provides to then do correlation and deeper examination of possible threats.

Pros

  • Monitoring of Windows devices with host based intrusion detection.
  • Correlation of network based events using NIDS and SIEM.
  • Knowledge of what is on your networks and what is occurring within them.

Cons

  • Linux and UNIX based host agents. Only basic functions are available at this time.
  • Tracking moving assets such as laptops.
IBM ISS, fireeye, Palo Alto networks, Trendmicro, Norton, and McAfee. Each tool does one or two things well. If I were to look at best of breed tools for an item I would spend millions and never have the type of coverage I needed because most of my time would be just administering them. AlienVault provides a better overall solution.
AlienVault is well suited for small to medium size businesses where they need precise information as resources are minimal. Having four tools within a single dashboard allows for greater viability and decision making capabilities as it is right in front of you. The amount of work AlienVault puts into ensuring that threat signatures are updated gives greater strength of protection faster than other tools that I have used.

Comments

More Reviews of AlienVault USM