AlienVault is easy to deploy and manage
September 12, 2019

AlienVault is easy to deploy and manage

Anonymous | TrustRadius Reviewer
Score 6 out of 10
Vetted Review

Software Version

USM Anywhere (SaaS)

Overall Satisfaction with AlienVault USM

I am working for an MSSP as a managed SOC for my clients. AlienVault USM is addressing all security events of my customers.

Pros

  • Main strength is the OTX community and all the IOC provided through this.
  • Transparent upgrades of the product.
  • Plugins and parser creation and updates handled by AlienVault so there's no need to develop our own parsers.
  • NIDS and vulnerabilities scanner already included in the license with no additional cost.

Cons

  • Many correlation rules (maybe too many) and we don't know what the real coverage of the risks is.
  • Any ability to customize log parsers.
  • Investigation system not really easy to use.
  • No backups available so if I want to change the SIEM or have a problem with my licensing, I lose everything.
AlienVault USM is more affordable than the other solutions and much easier to deploy and maintain.
Perfectly suited for small environments with limited resources because it is a kind of UTM. The product is very easy to deploy and maintain. Very suitable for a cloud environment. AlienVault USM support is also very reactive.

Less suitable for environment with a high volume of data and who already have IPS and vulnerabilities scanners. The network scanned is not easy to deploy in multiple data centers.

Comments

More Reviews of AlienVault USM