AT&T AlienVault USM Competitors and Alternatives

Get our free report covering Splunk, Elastic, IBM, and other competitors of AT&T AlienVault USM. Updated: September 2019.
370,655 professionals have used our research since 2012.

Read reviews of AT&T AlienVault USM competitors and alternatives

Real User
Senior Architect at a energy/utilities company with 201-500 employees
Oct 31 2018

What is most valuable?

We do a lot of the alerting, as far as user accounts. We have NetFlow information going into it, so we can examine a lot of traffic patterns and anomalies, especially if something stands out and is not the baseline. This helps a lot.

How has it helped my organization?

We're still struggling to get a real return on it and finding something that isn't false noise. There have been a few things, such as weird service accounts that have an encrypted password which are locking things out. However, we haven't… more»

What needs improvement?

We still have a lot of noise, so this is a problem. We are having a hard time visually sifting through it. We need help dialing it in. We don't have the in-house expertise. Do we hire someone just for this purpose and have them sit there… more»

What other advice do I have?

I am rating the solution a six out of ten, because we have not gotten it to work yet. With all its components, there is such a learning curve. I haven't gotten far enough along in the process to know if the solution has a shortcoming or if… more»

Which other solutions did I evaluate?

We went back and forth between LogRhythm, Splunk, and AlienVault. I liked LogRhythm mostly for how it integrated with the network infrastructure. It was my decision, and I'm not 100% sure that I picked the right one. LogRhythm works well… more»
Vulnera08667
Reseller
Vulnerability Manager at a tech services company with 51-200 employees
Jun 17 2018

What is most valuable?

The threat protection network is the most valuable feature because when you get an offense, you can actually trace it back to where it originated from, how it originated, and why.

How has it helped my organization?

Normally, an offense comes in and an offense is something negative, to put it plainly, that impacted your environment. Once it comes through, you can then see from the QRadar log sources, who or what… more»

What needs improvement?

I would like to see a more user-friendly product. I would like them to make it much more user-friendly. At this stage, you need to use a lot of widgets to do your searches. To advance searches, you… more»

If you previously used a different solution, which one did you use and why did you switch?

We used Splunk in the past and we are using both products at the same time.

What other advice do I have?

Just spec it correctly and it will do its job for you. It has an active community. IBM patches the product regularly when problems are picked up. I haven’t heard about a lot of problems from other… more»

Which other solutions did I evaluate?

I wasn't completely part of the whole process when they chose a product. I know they evaluated AlienVault, which unfortunately I do not have any experience with. I'm not able to provide pointers as to… more»
Tamer Serag Ahmed
Consultant
Cyber Security Consultant at Besafe-tech
Sep 10 2019

What is most valuable?

The most valuable features of this solution are the data correlation and vulnerability assessment.

What needs improvement?

The price of this solution is very high and it could be cheaper. Normally it is sold to financial institutions, which is why it is high.

What's my experience with pricing, setup cost, and licensing?

There are two versions of AlienVault available. The Community Edition is free, and the other version requires a license. The licensing fees for the non-community edition are paid on an annual basis, and there are no costs in addition to this.

What other advice do I have?

There is a cloud version of this solution available, called AlienVault USM Anywhere, which defends data that is outside of the premises. The OSSIM version is an open-source product, unlike AlienVault USM, or the cloud version, AlienVault USM Anywhere. You have to rely on the community for support… more»
AmirJalilzadeh
Real User
Security Operation Center Analyst at Sadad
Aug 19 2019

What is most valuable?

This is one of the best open-source log management and log analyzer tools in the world.

How has it helped my organization?

This solution assists in tuning our applications.

What needs improvement?

The documentation for this solution is very important, and more needs to be developed. It was not as good as we expected, and because of that, we prefer to work on… more»

What's my experience with pricing, setup cost, and licensing?

We use the open-source version, so there is no charge for this solution.

If you previously used a different solution, which one did you use and why did you switch?

We used Splunk in parallel with this solution. In my role as a Security Operations Center Analyst, I think that Splunk is more useful for me. This is because I do not work… more»

What other advice do I have?

Our company uses Logstash for gathering the data, and Kibana for searching. The two are used together. This is a solution that I recommend. It is the best open-source… more»

Which other solutions did I evaluate?

The solution does not work as well as Splunk.
Sameer Gangan
Consultant
‎IT Consultant at a consultancy with 5,001-10,000 employees
Aug 19 2019

What is most valuable?

The most valuable feature of this solution is the log monitoring.

What needs improvement?

The flash-based interface can be improved because sometimes, the speed of monitoring is reduced. The interface should be replaced with something else. Training for this solution needs to be improved, as new employees are sometimes unfamiliar with the product. The gadgets in SolarWinds should all be… more»

If you previously used a different solution, which one did you use and why did you switch?

Prior to this solution, we were using AlienVault and IBM QRadar. I have also used Nagios, which is faster than SolarWinds LEM regarding alerts.

What other advice do I have?

This is one of the good products in this market. People are always looking for easy-to-use products, and don't want to invest time on learning new or complex things. This is a solution that I recommend, although there are a lot of products that are better. I would rate this solution a seven out of… more»
Get our free report covering Splunk, Elastic, IBM, and other competitors of AT&T AlienVault USM. Updated: September 2019.
370,655 professionals have used our research since 2012.
Sign Up with Email