Threat protection at the speed of the wire
March 06, 2017

Threat protection at the speed of the wire

Jamie Bass | TrustRadius Reviewer
Score 10 out of 10
Vetted Review

Software Version

USM Appliance (On-Premises)

Overall Satisfaction with AlienVault USM

AlienVault USM is a valuable tool for collecting, aggregating and correlating threat events into actionable intelligence. The GUI is beautiful and gives you clickable drill down information. If I were to build a system from scratch, this product has already done all that and more. It's pretty slick!

  • Ability to collect and process logs from many types of devices. Even have the ability to write custom log parsing to collect data from your custom devices/apps.
  • Ability to correlate data into actionable intelligence. The common operational picture of your local network, combined with the global threat intelligence lets you know if you're in trouble or not. It's an awesome one-stop-shop kind of product and interface.
  • Great support. The sales team, marketing team, and technical support are second to none. They've been able to answer any question that I have had, and they really dig in and engage.
  • There's so much stuff you can do, it can be somewhat daunting at first. They've got great videos and documentation to walk you through stuff though.
  • Cost isn't cheap, but it is fairly inexpensive compared to some of the other vendors.
We checked out Logrithm, splunk, SNORT, and others, and either the cost was too high, or the technical complexity barrier was too high. With AlienVault, they had training to go to, they have documentation and videos, and they have a great support staff that will help get you running. I was hesitant at first when the sales folks told us all this, but a year later, they're a company that holds true on their word.
This is the best data aggregation and correlation capability I've ever seen, and the integration is beautiful. I'd recommend AlienVault to anybody.