AlienVault Reviews

Filter by:Reset all filters
industry
Filter Unavailable
Company Size
Filter Unavailable
Job Level
Filter Unavailable
rating
Filter Unavailable
Consultant
Manager, Enterprise Risk Consulting at a tech company with 1,001-5,000 employees
Jul 06 2017

What is most valuable?

Flexible Deployment Architecture – This is where the Open Source roots really start to flex their muscles when it comes to AV USM. The main components of the architecture are as follows: * AV Sensor: AV Sensors perform Asset Discovery,... more»

How has it helped my organization?

A jack-of-all trades: The best thing about AlienVault USM is it being a “Jack-of-All Trades” solution. It provides SIEM, HIDS/NIDS, FIM, NetFlow, Asset Management, Vulnerability Management, etc., under one USM platform. None of the commercial... more»

What needs improvement?

This product is jack-of-all trades, but master of none. As mentioned in the good, being a jack-of-all trades is well suited for certain organizations. However, the lack of mature functionality and expertise in any of those areas is a strong... more»
Real User
Systems Administrator at a healthcare company
Aug 12 2018

What is most valuable?

It's hard to pick just one valuable feature for this product. I like everything the product has to offer. The dashboards are very descriptive and contain just the right amount of information. The activity alarms and events contain a plethora... more»

How has it helped my organization?

This product has streamlined productivity by having all the information in one place. It has really helped eliminate a lot of manual work because its automation is pretty robust and important. It puts everything in one place for me. It is... more»

What needs improvement?

Honestly, the product itself is great. The only room for improvement I can mention is the initial installation procedures. I found that the online installation instructions for the product were missing important details, they lacked necessary... more»
Find out what your peers are saying about AlienVault, Splunk, LogRhythm and others in Security Information and Event Management (SIEM).
291,145 professionals have used our research since 2012.
Real User
Systems Engineer at a university with 201-500 employees
Jun 04 2017

What is most valuable?

* Real-time email alerts * Event correlations * Log management * System monitoring * Network monitoring * Up-time monitoring * OTX threat intelligence * Vulnerability scanning reporting There are too many to list.

How has it helped my organization?

It has given us insight into our network: * What is on it * What traffic is on it * What is happening on our servers It is one location to view many things.

What needs improvement?

The menu system can be a little confusing, until you use it for a while. Such as at the top right there is a “settings” menu. Which is more of a user profile menu. I would like that to say what it is “My Profile.” Under the “Settings” menu I... more»
Real User
Information Security Manager at a tech services company with 201-500 employees
Jun 30 2017

What is most valuable?

The ease of use and customization. The USM is a work horse, no matter what devices or the number of logs we throw at it, the system processes them in real time, correlates the events, and alerts on only events that need human review.

How has it helped my organization?

We used to have to monitor and review logs for each device. Now, everything comes into AlienVault and it alerts us when we need to respond. We now have real-time monitoring 24x7x365 using an in-house team.

What needs improvement?

The one thing I continue to dislike about the USM is the limitation on reports. Hard to get what you need in a report and once you do, there is no control over the formatting.
Real User
SOC Analyst II at a comms service provider with 11-50 employees
Apr 10 2018

What is most valuable?

The Event Correlation and vulnerability scans have been the most useful. As a 24/7 SOC, we use the incoming alarms to give an overview of suspicious traffic going through the network. It's easy to look at the correlated events and see the... more»

How has it helped my organization?

AlienVault has provided a nice, unified system for monitoring and reporting. Since we use this for customer security services, the vulnerability scans have come in handy for overall system health checks, for making sure customers aren't... more»

What needs improvement?

The UI and overall processes need a little bit more love. The development job postings have the requirement, for prospective candidates, of "values progress over perfection". This shows in the error banners that come up when you select... more»
Real User
admin at a non-tech company with self employed
Jun 13 2018

What is most valuable?

* Centralized logs: All the details are in one place. This is helpful if you have over 100 servers. * Centralized IDS: We need this as we are able to see what is happening in (almost) real time.

How has it helped my organization?

From my perspective, it saves me about two to seven hours weekly. Now, I can easily check (in one place) all the logs and data in relation to attacks. It also gives me an overview if a server is not configured properly.

What needs improvement?

* Plugins could be better utilized, as some of them do not recognize all logs. * We could add little more customization to dashboards.
Real User
Network Operations Manager / Systems Engineer at a tech services company
Jan 14 2018

What is most valuable?

The asset management of nodes has been a large help in terms of being able to track applications with more detail and have changes made being monitored into one source. The vulnerability scanning has also been an aide of reviewing the systems... more»

How has it helped my organization?

The all-in-one source for the needs of compliance has put everything into one location without the need of other applications and tools to accomplish the tasks. It brought our logs into one place for review and set up alarms based on changes... more»

What needs improvement?

Source material on the forums to be more up-to-date with the changes happening within the product. Forums being out-of-date with information due to the changes makes troubleshooting a little more difficult - specific to the HIDS agents.... more»
Real User
Information Systems Network Technician at a local government with 501-1,000 employees
Nov 21 2016

What do you think of AlienVault?

Valuable Features It's a single solution that is meeting the needs of multiple of my PCI compliance objectives. • Improvements to My Organization I was able to replace our log management solution with this product. A single server that allows for log management, vulnerability scanning, and file integrity monitoring. • Room for Improvement The alarms section of the USM is very robust, yet I still find myself having to look back through the events to find more details. It would be nice if I could navigate straight to the event from the alarm. • Use of Solution I've been using it for six months. • Stability Issues I had a renegade plugin that was installed by the company who helped me with the initial setup. The plugin was missing a command to rotate logs and would...
See 47 More AlienVault Reviews

Articles

User Assessments By Topic About AlienVault

Find out what your peers are saying about AlienVault, Splunk, LogRhythm and others in Security Information and Event Management (SIEM).
291,145 professionals have used our research since 2012.

AlienVault Questions

AlienVault Projects By Members

AlienVault Consultants

What is AlienVault?

Unified Security Management (USM) is AlienVault’s comprehensive approach to security monitoring, delivered in a unified platform. The USM platform includes five core security capabilities that provide resource-constrained organizations with all the security essentials needed for effective threat detection, incident response, and compliance, in a single pane of glass. Designed to monitor cloud, hybrid cloud and on-premises environments, AlienVault USM significantly reduces complexity and reduces deployment time so that users can go from installation to first insight in minutes for the fastest threat detection.

The vendor says unlike traditional security point technologies, AlienVault Unified Security Management does the following:

o   Unifies essential security controls into a single all-in-one security monitoring solution

o   Monitors your cloud, hybrid cloud, and on-premises infrastructure

o   Delivers continuous threat intelligence to keep you aware of threats as they emerge and change

o   Provides comprehensive threat detection and actionable incident response directives

o   Deploys quickly, easily, and with minimal effort

o   Reduces TCO over traditional security solutions

Also known as
AlienVault Unified Security Management
AlienVault customers

Abel & Cole, Bank of Ireland, Bluegrass Cellular, CareerBuilder, Claire's, Domino's, GameStop, Hays Medical Center, Hope International, McCurrach, McKinsey & Company, Party Delights, Pepco Holdings, Richland School District, Ricoh, SaveMart, Shake Shack, Steelcase, Subaru, TaxAct, US Air Force, Vonage, Ziosk

BUYER'S GUIDE
Not sure which Security Information and Event Management (SIEM) solution is right for you?

Download our free Security Information and Event Management (SIEM) Report and find out what your peers are saying about AlienVault, Splunk, LogRhythm, and more!

Sign Up with Email