AT&T AlienVault USM Review

We already used a lot of the open source products in this suite. This brought them all under one roof and allowed one person do all the work.


Valuable Features

The SIEM and intrusion detection.

Improvements to My Organization

We already used a lot of the open source products in this suite but they were too cumbersome for our IT team to handle. This brought them all under one roof and allowed one person to do what 10 could not in a few hours a day.

Room for Improvement

They need to be faster in developing custom plugins.

Use of Solution

We've been using it for six months.

Stability Issues

We've had no issues so far and the product works great.

Scalability Issues

We have not scaled it yet but it handles our entire environment without a problem.

Customer Service and Technical Support

4/10 - they need to provide faster responses to emails.

Previous Solutions

We previously used Splunk for SIEM.

Initial Setup

It is a complex product, but a lot less complex than the products it's built on like Snort and Splunk.

Pricing, Setup Cost and Licensing

Get the Virtual Appliance and build the unit yourself. The software is the valuable piece as AlienVault is not a hardware builder and the machine they sell is fine but you could build better yourself for much less.

Other Solutions Considered

We also looked at Solarwinds SIEM and network monitoring.

Other Advice

Go slow and get everything into your SIEM so you can do some really neat correlations and alerts.

Disclosure: IT Central Station contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor.
1 visitor found this review helpful
1 Comment
Tami AndrewsVendor

Thank you so much Mike for taking the time to provide your feedback of AlienVault USM.

26 June 17
Guest
Sign Up with Email