Simple and easy to install/manage SIEM tool with small infrastructure footprint.
August 13, 2019

Simple and easy to install/manage SIEM tool with small infrastructure footprint.

Brian Lindow | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Software Version

USM Anywhere (SaaS)

Overall Satisfaction with AlienVault USM

AlienVault is our SIEM tool that addresses the enterprise looking for indications of compromise. This was a finding in an internal audit a few years ago so it follows more of a compliance requirement.

Pros

  • Active Directory login requests
  • Logs on the Domain Controls
  • Only showing alerts that have a high indication of compromise and reduces false positives.

Cons

  • Trimming of log files to stay within limits
  • Projecting any future storage costs from AlienVault
AlienVault was much less expensive with less effort to install and manage.
Well suited for a small InfoSec team that has limited time to manage the tool and respond to alerts. If you have a larger team that wants more detailed data that could be used for AppDev troubleshooting then a different products is probably better.

Comments

  • Tami Andrews | TrustRadius Reviewer
    Tami Andrews
    (Vendor Representative) commented 6 years ago
    Brian - Thank you for taking time to share your feedback on your experience with USM Anywhere.

More Reviews of AlienVault USM

  1. Home
  2. Security Information and Event Management (SIEM) Software
  3. AlienVault USM Reviews
  4. User Review of AlienVault USM