AT&T AlienVault USM Competitors and Alternatives
Read reviews of AT&T AlienVault USM competitors and alternatives
Review of LogRhythm
Oct 31 2018
We use it to examine traffic patterns and anomalies, but have a hard time visually sifting through the noise
What is most valuable?We do a lot of the alerting, as far as user accounts. We have NetFlow information going into it, so we can examine a lot of traffic patterns and anomalies, especially if something stands out and is not the baseline. This helps a lot.
How has it helped my organization?We're still struggling to get a real return on it and finding something that isn't false noise. There have been a few things, such as weird service accounts that have an encrypted password which are locking things out. However, we haven't… more»
What needs improvement?We still have a lot of noise, so this is a problem. We are having a hard time visually sifting through it. We need help dialing it in. We don't have the in-house expertise. Do we hire someone just for this purpose and have them sit there… more»
What other advice do I have?I am rating the solution a six out of ten, because we have not gotten it to work yet. With all its components, there is such a learning curve. I haven't gotten far enough along in the process to know if the solution has a shortcoming or if… more»
Which other solutions did I evaluate?We went back and forth between LogRhythm, Splunk, and AlienVault. I liked LogRhythm mostly for how it integrated with the network infrastructure. It was my decision, and I'm not 100% sure that I picked the right one. LogRhythm works well… more»
Review of IBM
Jun 17 2018
What is most valuable?The threat protection network is the most valuable feature because when you get an offense, you can actually trace it back to where it originated from, how it originated, and why.
How has it helped my organization?Normally, an offense comes in and an offense is something negative, to put it plainly, that impacted your environment. Once it comes through, you can then see from the QRadar log sources, who or what… more»
What needs improvement?I would like to see a more user-friendly product. I would like them to make it much more user-friendly. At this stage, you need to use a lot of widgets to do your searches. To advance searches, you… more»
Which solution did I use previously and why did I switch?We used Splunk in the past and we are using both products at the same time.
What other advice do I have?Just spec it correctly and it will do its job for you. It has an active community. IBM patches the product regularly when problems are picked up. I haven’t heard about a lot of problems from other… more»
Which other solutions did I evaluate?I wasn't completely part of the whole process when they chose a product. I know they evaluated AlienVault, which unfortunately I do not have any experience with. I'm not able to provide pointers as to… more»
Sep 10 2019
What is most valuable?The most valuable features of this solution are the data correlation and vulnerability assessment.
What needs improvement?The price of this solution is very high and it could be cheaper. Normally it is sold to financial institutions, which is why it is high.
What's my experience with pricing, setup cost, and licensing?There are two versions of AlienVault available. The Community Edition is free, and the other version requires a license. The licensing fees for the non-community edition are paid on an annual basis, and there are no costs in addition to this.
What other advice do I have?There is a cloud version of this solution available, called AlienVault USM Anywhere, which defends data that is outside of the premises. The OSSIM version is an open-source product, unlike AlienVault USM, or the cloud version, AlienVault USM Anywhere. You have to rely on the community for support… more»
Review of Elastic
Aug 19 2019
What is most valuable?This is one of the best open-source log management and log analyzer tools in the world.
How has it helped my organization?This solution assists in tuning our applications.
What needs improvement?The documentation for this solution is very important, and more needs to be developed. It was not as good as we expected, and because of that, we prefer to work on… more»
What's my experience with pricing, setup cost, and licensing?We use the open-source version, so there is no charge for this solution.
Which solution did I use previously and why did I switch?We used Splunk in parallel with this solution. In my role as a Security Operations Center Analyst, I think that Splunk is more useful for me. This is because I do not work… more»
What other advice do I have?Our company uses Logstash for gathering the data, and Kibana for searching. The two are used together. This is a solution that I recommend. It is the best open-source… more»
Which other solutions did I evaluate?The solution does not work as well as Splunk.
Review of SolarWinds
Aug 19 2019