AT&T AlienVault USM Pros and Cons

AT&T AlienVault USM Pros

Consulta85d2
Consultant at a tech services company with 11-50 employees
On any given day I could give you a different answer regarding the most valuable features of the product. The feature that is most important is the fact that it has a lot of features, that it's not just a log collection and correlation system, that it has a lot of other components built in. The bundle of features is really the killer feature.
View full review »
Vpf4dc
VP at Castra Consulting
The IDS and the threat intelligence are very useful. They are very intuitive and data-rich.
View full review »
SystemsA3512
Systems Administrator at a healthcare company
The dashboards are very descriptive and contain just the right amount of information. The activity alarms and events contain a plethora of data that is very descriptive and useful.
View full review »
Learn what your peers think about AT&T AlienVault USM. Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
418,116 professionals have used our research since 2012.
Patrick Noc
admin at KIL A&T
I can easily check (in one place) all the logs and data in relation to attacks. It also gives me an overview if a server is not configured properly.
View full review »
Christian Caldarone
ISO (Information Security Officer) with 10,001+ employees
It provides a single pane of glass view, coupled with a whole security ecosystem. The ability to manage everything from a central point, including vulnerability assessments, asset management - including the services provided by the various hosts, NIDS, HIDS, etc. - provides a very efficient way of dealing with things.
View full review »
CoFoundef572
Co-Founder at a photography company with 11-50 employees
Log-monitoring and alerting enable us to know when things happen that we need to know about.
View full review »
SOCmgr67
‎SOC Manager at a tech services company with 11-50 employees
The most valuable feature of this solution is security management for PCI DSS.
View full review »
reviewer752880
Security Analyst at a tech services company with 1-10 employees
Its powerful correlation engine helps reduce time in manually correlating events.
View full review »
Denis L
Sales Engineer at BAKOTECH LLC
This solution can identify many threats inside the organization (compromised endpoints, configuration issues), as well as "outside" threats (botnets, network scanners, web-attacks, etc).
View full review »
kr1spy84
Security Systems Administrator at Vertical Screen
AlienVault provides a checklist answer when using SIEM.
View full review »

AT&T AlienVault USM Cons

Consulta85d2
Consultant at a tech services company with 11-50 employees
Search performance can be slow. The Raw Logs feature is painfully slow. And if we're talking about the newer, the Anywhere product, you can't even schedule reports on the thing. There are probably a dozen other features I'd really like to see there, but that would be one of the biggies.
We've had some stability problems, not a lot, but a few. Updates seem to be the worst. That seems to be when the stability problems come up.
View full review »
Vpf4dc
VP at Castra Consulting
One area that has room for improvement is storage. AllienVault is a good place to put logs, but sometimes it's a tough place to go get logs... The logger can only hold so much data. If they improved that, that would help.
View full review »
SystemsA3512
Systems Administrator at a healthcare company
The only room for improvement I can mention is the initial installation procedures. I found that the online installation instructions for the product were missing important details, they lacked necessary steps.
View full review »
Learn what your peers think about AT&T AlienVault USM. Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
418,116 professionals have used our research since 2012.
Patrick Noc
admin at KIL A&T
Plugins could be better utilized, as some of them do not recognize all logs.
It was easy on PoC, but when we got to the product it was different story. We had to learn the product again and got feeling that the PoC was a different product.
View full review »
Christian Caldarone
ISO (Information Security Officer) with 10,001+ employees
The reporting module could be a little easier to handle, as it requires quite some trial and error until you get the reports you want. Also, it would be great to have a graphical interface for the Network Intrusion Detection System's rule management.
View full review »
CoFoundef572
Co-Founder at a photography company with 11-50 employees
they seem to have bugs from time to time that go unfixed for a while and that is frustrating. I'm not saying the product needs to be bug-free, but they need to be responsive to bugs.
View full review »
SOCmgr67
‎SOC Manager at a tech services company with 11-50 employees
This solution could be easier to use.
View full review »
reviewer752880
Security Analyst at a tech services company with 1-10 employees
The only complex area of the setup was writing the custom scripts.
It should be able to communicate with other security solutions to stop threats.
View full review »
Denis L
Sales Engineer at BAKOTECH LLC
It would be nice to see some machine learning and monitoring of the configuration in network devices.
View full review »
kr1spy84
Security Systems Administrator at Vertical Screen
We develop additional rules and scripts to make it more usable.
View full review »
Learn what your peers think about AT&T AlienVault USM. Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
418,116 professionals have used our research since 2012.