AlienVault, great tool for small and medium size business. It works!
November 01, 2016
AlienVault, great tool for small and medium size business. It works!
Score 10 out of 10
Vetted Review
Verified User
Overall Satisfaction with AlienVault Unified Security Management
AlienVault allows us to monitor the network and devices within our organization. Devices are pointed to AlienVault to gather information about their health and whether malicious threats are present or possibly housed there to be exploited at a later time. The information is then examined and alerts and possible threats are given to us to review. We use the tools AlienVault provides to then do correlation and deeper examination of possible threats.
Pros
- Monitoring of Windows devices with host based intrusion detection.
- Correlation of network based events using NIDS and SIEM.
- Knowledge of what is on your networks and what is occurring within them.
Cons
- Linux and UNIX based host agents. Only basic functions are available at this time.
- Tracking moving assets such as laptops.
IBM ISS, fireeye, Palo Alto networks, Trendmicro, Norton, and McAfee. Each tool does one or two things well. If I were to look at best of breed tools for an item I would spend millions and never have the type of coverage I needed because most of my time would be just administering them. AlienVault provides a better overall solution.
Comments
Please log in to join the conversation