Review of AlienVault by a Community Bank
February 20, 2017
Review of AlienVault by a Community Bank
Score 8 out of 10
Vetted Review
Verified User
Software Version
USM Appliance (On-Premises)
Overall Satisfaction with AlienVault USM
AlienVault USM is being used within my organization, to monitor the computer network for threat detection and incident response throughout the entire organization. We have set up asset discovery and inventory, which has allowed us to fully see what is on our network, and when new things come on to the network. We have also set up SIEM and log management, this allows us to set up alerts for certain conditions happening on our network.
- Asset Discovery and Management - easy to set up a scan of your network, and you can automate the scans on different time intervals. Based on the response from the scan, AlienVault can determine with pretty good accuracy what type of system it is.
- SIEM & Log Management. - AlienVault installs an agent on Windows devices that can pull in all logs and analyze them, for various information, rather it be malicious activity or known activities.
- Behavioral Monitoring and Intrusion Detection - AlienVault has rule sets built in that when analyzing your logs, will report and notify you of malicious activity on your network.
- Vulnerability Assesment - the interface and reporting was a weakness on AlienVault, this definitely will not replace some other vulnerability scanners such as Tenable's Nessus.