We just raised a $30M Series A: Read our story

AlienVault OSSIM Alternatives and Competitors

Get our free report covering AT&T, Elastic, Splunk, and other competitors of AlienVault OSSIM. Updated: October 2021.
542,608 professionals have used our research since 2012.

Read reviews of AlienVault OSSIM alternatives and competitors

AA
Chief Information Security Officer (CISO) at a financial services firm with 51-200 employees
Real User
Top 20
Good correlation rules, competitive pricing, and good stability

Pros and Cons

  • "The correlation rules and the user platform are most valuable."
  • "They can add behavior analytics and AI or machine learning technology. They also improve their correlation engine. In addition to collecting logs from devices, they can collect the traffic and then correlate these logs and the traffic information."

What is our primary use case?

We use it for log and threat management and compliance.

What is most valuable?

The correlation rules and the user platform are most valuable.

What needs improvement?

They can add behavior analytics and AI or machine learning technology. They also improve their correlation engine. In addition to collecting logs from devices, they can collect the traffic and then correlate these logs and the traffic information. 

They can also improve a lot of rules and vulnerability assessment. For vulnerability management, they can add more features. 

For how long have I used the solution?

I have been using this solution for three years. 

What do I think about the stability of the solution?

It is stable. You just log in, and there are no issues.

What do I think about the scalability of the solution?

I use it as software as a service. Scalability depends on whether I have included redundancy in the link or communication between my network and the third-party network.

How are customer service and technical support?

Their technical support is okay. I have contacted them for technical issues, and they have dealt with those issues very well.

How was the initial setup?

Its initial setup is of medium complexity. I would rate it a seven out of ten in terms of complexity.

What's my experience with pricing, setup cost, and licensing?

They have changed the pricing policy. Its price is competitive. Its price is less than half of the price of QRadar, LogRhythm, and Splunk.

Which other solutions did I evaluate?

We evaluated AlienVault and ManageEngine.

What other advice do I have?

I would recommend this solution depending on the size of the organization and whether you require software as a service or on-prem. I prefer ClearSkies for small organizations that require software as a service and have up to 500 employees. In Saudi Arabia, we consider organizations with up to 500 employees as small. Organizations with 500 to 1,000 employees are considered mid-sized. Organizations with more than 1,000 employees are considered large. This categorization would vary based on the region. ClearSkies is the best for software as a service and small organizations with up to 500 employees.

I would rate ClearSkies SaaS NG SIEM an eight out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
TA
Security Manager at BKL
Real User
Top 10
Seamless integration with FortiGate, and has an easy setup, but is lacking user behavior analytics

Pros and Cons

  • "The seamless integration with FortiGate is the solution's most valuable aspect."
  • "When compared with some competitors, in terms of performance, the CPU and RAM requirements and the capability of coordination with development all need some improvement."

What is our primary use case?

We primarily use the solution for integration with FortiGate Firewall. We use it for multiple authentification, malware detection, and protection from DDoS attacks.

What is most valuable?

The seamless integration with FortiGate is the solution's most valuable aspect.

What needs improvement?

When compared with some competitors, in terms of performance, the CPU and RAM requirements and the capability of coordination with development all need some improvement.

The solution should offer user behavior analytics in a future release.

For how long have I used the solution?

I've been using the solution for two years.

What do I think about the stability of the solution?

The solution is stable.

What do I think about the scalability of the solution?

We don't have any expansion requirements, so I've never looked into scalability.

How are customer service and technical support?

We've never reached out to technical support. If we need assistance, we typically look for FortiGate documents or scan their blog site. We handle any problems internally.

Which solution did I use previously and why did I switch?

We previously used an open-source solution called Elastic.

How was the initial setup?

The initial setup is easy.

What about the implementation team?

We received support from an integrator.

Which other solutions did I evaluate?

We evaluated AlienVault and SolarWinds. These were both within our limited budget, but we chose FortiSIEM because it integrated seamlessly with FortiGate firewall.

What other advice do I have?

We use the on-premises deployment model.

I'd recommend this solution to companies that have a FortiGate firewall and are on a limited budget. 

I'd rate the solution six out of ten.

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Get our free report covering AT&T, Elastic, Splunk, and other competitors of AlienVault OSSIM. Updated: October 2021.
542,608 professionals have used our research since 2012.