1. Home
  2. Security Information and Event Management (SIEM) Software
  3. AlienVault USM Reviews
  4. User Review of AlienVault USM
Get it!!
October 25, 2019

Get it!!

Anonymous | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User

Software Version

USM Anywhere (SaaS)

Overall Satisfaction with AlienVault USM

It is used by the Security Team in IT Department for log collection and correlation. Currently we feed logs from all our security devices including on-cloud, cloudtrail, cloudwatch, s3 access and Load balancer event logs, we've also incorporated other external vendor sources e.g end point protection, web content filtering logs using proxies.
  • great search and filtering capabilities
  • Alarm filtering capabilities
  • Easy deployment
  • Multiple plugins
  • For SaaS deployments, it would be nice to give customers the capability to create custom plugins
For all the other SIEM solutions that we PoC'd, AlienVault met all our requirements, ease of deployment, easy filtering of unwanted logs etc. I would place it way above the rest of the competition
It is well suited for log collection and rule correlation, regular syslog ingestion is great except where you have scenarios where the event logs come in a different format, sometimes it's hard to find the appropriate plugin for specific logs, most times it's a matter of trying multiple plugins until the right one is identified