AlienVault Locks it Down
March 15, 2018

AlienVault Locks it Down

Kevin White | TrustRadius Reviewer
Score 9 out of 10
Vetted Review

Software Version

USM Anywhere (Cloud)

Overall Satisfaction with AlienVault USM

Sword & Shield is an AlienVault MSSP focusing on security for medium to large businesses. We believe it is the best security management and SIEM platform out there for the cost and value you get. We have a 24/7 managed SOC centered around this platform and also use it to monitor activities within our corporate environment.

Pros

  • Provides a simple, customizable dashboard to easily see the most important things going on in your environment.
  • Goes beyond traditional SIEM by providing things like File Integrity Monitoring, IDS and Asset Management.
  • Very simple integration with common cloud services (AlienVault USM Anywhere only).

Cons

  • From a volume perspective, if you have a ton of log data, it isn't the best tool for traditional SIEM activities.
  • There is no migration from USM Appliance to USM Anywhere. You basically have to start over if you move some things to the cloud and want to capture that information.
I haven't personally used any AlienVault alternatives, but our organization vetted several options and selected AV because of the added security functionality that comes with the software.
It works best in medium to large environments where an organization is looking to get "bang for the buck." If you are just looking for a workhorse SIEM, it's not the best option. I consider AlienVault to be more of a security/threat management platform rather than a SIEM tool.

Comments

  • Tami Andrews | TrustRadius Reviewer
    thanks Kevin! I appreciate you making time to provide your feedback on AlienVault & USM.

More Reviews of AlienVault USM