AT&T AlienVault USM Competitors and Alternatives
Read reviews of AT&T AlienVault USM competitors and alternatives
Review of LogRhythm
Oct 31 2018
We use it to examine traffic patterns and anomalies, but have a hard time visually sifting through the noise
What is most valuable?We do a lot of the alerting, as far as user accounts. We have NetFlow information going into it, so we can examine a lot of traffic patterns and anomalies, especially if something stands out and is not the baseline. This helps a lot.
How has it helped my organization?We're still struggling to get a real return on it and finding something that isn't false noise. There have been a few things, such as weird service accounts that have an encrypted password which are locking things out. However, we haven't… more »
What needs improvement?We still have a lot of noise, so this is a problem. We are having a hard time visually sifting through it. We need help dialing it in. We don't have the in-house expertise. Do we hire someone just for this purpose and have them sit there… more »
What other advice do I have?I am rating the solution a six out of ten, because we have not gotten it to work yet. With all its components, there is such a learning curve. I haven't gotten far enough along in the process to know if the solution has a shortcoming or if… more »
Which other solutions did I evaluate?We went back and forth between LogRhythm, Splunk, and AlienVault. I liked LogRhythm mostly for how it integrated with the network infrastructure. It was my decision, and I'm not 100% sure that I picked the right one. LogRhythm works well… more »
Review of Elastic
Aug 19 2019
What is most valuable?This is one of the best open-source log management and log analyzer tools in the world.
How has it helped my organization?This solution assists in tuning our applications.
What needs improvement?The documentation for this solution is very important, and more needs to be developed. It was not as good as we expected, and because of that, we prefer to work on… more »
What's my experience with pricing, setup cost, and licensing?We use the open-source version, so there is no charge for this solution.
Which solution did I use previously and why did I switch?We used Splunk in parallel with this solution. In my role as a Security Operations Center Analyst, I think that Splunk is more useful for me. This is because I do not work… more »
What other advice do I have?Our company uses Logstash for gathering the data, and Kibana for searching. The two are used together. This is a solution that I recommend. It is the best open-source… more »
Which other solutions did I evaluate?The solution does not work as well as Splunk.
Review of IBM
Jun 21 2019
What is most valuable?Provided that the report is prebuilt and I can find what I am looking for, the reporting is the most valuable feature in this solution. The reports are very good and very presentable.
What needs improvement?There are reports that I would like to generate that are either not included, or I cannot find. If there is no report for information that needs to be presented then it is one of the biggest issues for the customer. The ticketing system is not fully automated and needs to be improved. There should… more »
What other advice do I have?This is a good solution, but I am familiar with the capabilities of the other products and IBM needs to make some improvements. I would rate this solution a seven out of ten.
Which other solutions did I evaluate?I have used several other products including ArcSight, AlienVault, and Splunk. Some of these solutions are on-premises or in-house. I do not like Splunk, but I think that ArcSight is a good solution. ArcSight is complicated, but it is a more mature solution with much greater options than IBM is… more »
Review of Fortinet
Mar 16 2020
What is most valuable?We are utilizing the previous site end dividers and the IPS, IDS DDoS features. The log analysis and reporting are both quite good.
What needs improvement?The solution doesn't have online analysis. We can't analyze certain parts of the logs. For example, we can't analyze current logs. It would be helpful if we could use the system we use to monitor everything to also check the live traffic or live logs. The solution lacks business intelligence… more »
What other advice do I have?We are Fortinet partners. For those organizations that need to use a product for reporting or some analysis of logs, this is a good solution. I'd rate the solution seven out of ten. The features are basic, and there's not too much business intelligence behind them. If it offered more of that, I'd… more »
Which other solutions did I evaluate?There is a lot of competition for Fortinet in this area, including USM and Palo Alto.
Review of SolarWinds
Aug 19 2019