1. Home
  2. Security Information and Event Management (SIEM) Software
  3. AlienVault USM Reviews
  4. User Review of AlienVault USM
Great tool for medium shops
Updated July 11, 2020

Great tool for medium shops

Anonymous | TrustRadius Reviewer
Score 7 out of 10
Vetted Review
Verified User

Software Version

USM Anywhere (SaaS)

Overall Satisfaction with AlienVault USM

USM is used across the whole organization and helped us complete and maintain security requirements for an SoC 2 Type 2 compliance. We used USM for Cloud and on-premise for multiple isolated environments. The tool works well but does require much fine-tuning and can be complex without proper training and or guidance.
  • Stability
  • Content filtering
  • Documentation
  • Self service onboarding
  • In-app recommendations for common configurations.
  • Improved error resolution.
We already had familiarity with the platform but we needed cloud support so we upgraded to USM. We reviewed a few other options but decided USM was the best fit our requirements and price point.
USM is well suited for AWS but isn't well suited for on-premise environments to fulfill the role of a NIDS without a potentially uncommon network port mirroring if there are 6+ subnets to monitor. USM will require, as could be expected, security auditing and certain configurations before being useful. USM is best used in well-organized environments and it may not be the best tool if you're looking to get environment security information on an unorganized environment.

Using AlienVault USM

2 - AlienVault is used to complete and maintain SoC 2 Type 2 compliance. Therefore the department responsible for managing AlienVault is the technical group in our case, the DevOps / IT department. There is single primary administrator that manages the AlienVault environments with 1 secondary administrator for Business continuum for the organization.
2 - The technical group for our organization that also manages the AlienVault is responsible for all technical responsivities not including software development. This includes but is not limited too, network, storage, server, email, security of all endpoints and networks, workstations, SaaS monitoring, deployment, and more. The typical skills to complete those areas with additional skills in web servers and integrations.
  • Audit
  • Compliance
  • Monitoring
  • debugging
  • secondary inventory
  • billing
  • environment usage
This tools our needs which were not large to begin with. We do not take advantage of all functionality therefore the path of another better fitting option with a lower cost is a possibility. While this is unlikely because the product is a good once it is out of the realm. Also onboard is time is more consuming then desired.