Effective for small teams
April 25, 2019
Effective for small teams
Score 10 out of 10
Vetted Review
Verified User
Software Version
USM Anywhere (SaaS)
Overall Satisfaction with AlienVault USM
We use AlienVault USM internally to view what kind of security events are going on in our PCI/DSS infrastructure. Additionally, we have an MSSP that has access to AlienVault to keep an eye on things for us after hours. As a merchant, having real-time updates to what is going on in our infrastructure is crucial.
- Alerting.
- Log aggregation.
- Cloud management.
- Slow when viewing lots of logs.
- Buggy when removing assets.
- Cannot automate reports.
- Vulnerability scanning does not work.
Graylog and Logstash are worlds faster than AlienVault. Additionally, we can automate report generation on these platforms. AlienVault USM however, gives us the benefit of cloud management, rather than relying on on-prem/cloud infrastructure. AlienVault USM also comes with many prepackaged defaults which make it easy for small teams without dedicated security engineers to get it up and running.