Effectiveness at Detecting Security Threats
September 28, 2018
Effectiveness at Detecting Security Threats
Score 7 out of 10
Vetted Review
Verified User
Software Version
USM Anywhere (SaaS)
Overall Satisfaction with AlienVault USM
AlienVault USM is used as a Cloud-Hosted Service by my organization. It is being used by some departments. It has the features like Vulnerability assessment, Intrusion detection, behavioral monitoring, log management etc.
- AlienVault Unified Security Management (USM) delivers a unified, simple and affordable solution for threat detection and compliance. Powered by the latest AlienVault Labs Threat Intelligence and the Open Threat Exchange the largest crowd-sourced threat intelligence exchange, USM enables mid-size organizations to defend against modern threats.
- It is free. The best free SIEM out there. Possibly the only one.
- Every upgrade is a possible chance for re-building the system. About 80% of the time, the upgrade will break something so badly, you need to re-install and start from scratch.
- The system slows down considerably when a large number of events are fed in.
- The community is weak and there is rarely any input from the developers on the community to help out. So a lot of people try it out and then go somewhere else.
- While I think it is a great product, it seems to me like it is falling behind in the last few years. There are some more usable and better products in recent years that would make me buy them instead of AV USM.
AlienVault got it right with the integrations of their product, it makes compliance very handy. They selected the best breed of products to integrate in a single console and make it easy to the customer to become fully compliant, be it PCI DSS, DISA STIG, HIPAA, ISO 27002, etc.