AT&T AlienVault USM Archived Reviews (More than two years old)

Filter by:Reset all filters
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Tharaka Ranasinghe
Real User
Network and Security Engineer at a tech services company with 51-200 employees
Feb 25 2018

What is most valuable?

AlienVault USM has a vulnerability assessment feature and only one SIEM feature compared to other SIEM solutions.

How has it helped my organization?

AlienVault has an advanced component within one package. With this, we can cover more area with one solution. As a example, it has vulnerability assessment component built-in. From this, we can do the vulnerability assessment easily and we do not have to buy another solution for the vulnerability… more»

What needs improvement?

AlienVault must improve their correlation feature. Some of the events do not match with the correlation rules and some of the correlation events are false-positive.

What other advice do I have?

It is the most valuable tool that I have seen of the SIEM solutions.
Real User
Network Operations Manager / Systems Engineer at a tech services company
Jan 14 2018

What is most valuable?

The asset management of nodes has been a large help in terms of being able to track applications with more detail and have changes made being monitored into one source. The vulnerability scanning has also been an aide of reviewing the systems and having feedback of what is missing patches and holes in our environment that need review and remediation. The all-in-one aspect has been helpful to see… more»

How has it helped my organization?

The all-in-one source for the needs of compliance has put everything into one location without the need of other applications and tools to accomplish the tasks. It brought our logs into one place for review and set up alarms based on changes we were missing due to lack of having one place for everything to go. Vulnerability scanning helped out shortcomings of what was not patched in the past and… more»

What needs improvement?

Source material on the forums to be more up-to-date with the changes happening within the product. Forums being out-of-date with information due to the changes makes troubleshooting a little more difficult - specific to the HIDS agents. Troubleshooting connectivity is limited to very view articles with very little information. Perhaps adding templates into the HIDS agents for collection based on… more»
Learn what your peers think about AT&T AlienVault USM. Get advice and tips from experienced pros sharing their opinions. Updated: April 2020.
418,646 professionals have used our research since 2012.
Consultant
Security Analyst at a tech services company
Aug 08 2017

What is most valuable?

Deployment was very easy. I got my servers and devices reporting very quickly.

How has it helped my organization?

Quickly got insight into my environment.

What needs improvement?

It would be great if there was a feature to add in watch lists, like McAfee or QRadar have -- to keep track of IPs, domain, etc. that I have identified as being malicious. Also, being able to connect… more»

What's my experience with pricing, setup cost, and licensing?

Very reasonable and for the value of the product, we couldn't ask for better pricing.

Which solution did I use previously and why did I switch?

Yes, McAfee ESM. Even after upgrading to Version 10, the interface was still hard to navigate through and did not work on every browser. Writing effective rules was difficult.

Which other solutions did I evaluate?

We did a SIEM solution comparison with McAfee ESM, IBM QRadar, and Fortinet.
Vendor
IT User
Aug 07 2017

What do you think of AT&T AlienVault USM?

What is most valuable?

SIEM capabilities, vulnerability scanning, asset discovery/management features.

How has it helped my organization?

Increased visibility, threat detection.

What needs improvement?

The web UI can be clunky at times, with poor error handling. Updates need more QC before release.

For how long have I used the solution?

One year.

What was my experience with deployment of the solution?

Deployment has always been smooth.

What do I think about the stability of the solution?

No, it has been quite stable.

What do I think about the scalability of the solution?

Nothing except for networking challenges.

How are customer service and technical support?

Customer Service: Seven out of 10. Technical Support: Seven out of 10. First level of support is hit…
Consultant
Professional Services Engineer at a tech services company with 11-50 employees
Jul 20 2017

What is most valuable?

The tool is a great way to meet logging requirements for PCI and HIPAA standards. It is very flexible and customizable.

How has it helped my organization?

I came into the company with USM Appliance already in place. However, from my previous experience with logging and security appliances, there have been many tasks that used to be a manual process like… more»

What needs improvement?

Stability on certain components could be better, but for a system that is on 24/7/365 without reboots, it's fairly trouble free.

What's my experience with pricing, setup cost, and licensing?

When compared with other options, AlienVault is significantly less expensive for the amount of features that are packed into it.

What other advice do I have?

AlienVault support is what really makes this product a great investment. They are constantly improving their product and happy to help with anything that comes up.

Which other solutions did I evaluate?

I was not part of the product decision.
Consultant
Technical Writer at a tech services company with 11-50 employees
Jul 04 2017

What is most valuable?

I have worked with a Managed Security Team that uses AlienVault USM for the past two years. The user interface is as good as it gets. The setup is greatly simplified with intensive documentation and a… more»

How has it helped my organization?

The USM has been instrumental in the discovery and tracking down of emerging threats which has helped us instantly evaluate and resolve security incidents for our clients.

What needs improvement?

I would say the menus could use some tweaking and custom rule creation could be made simpler.

What's my experience with pricing, setup cost, and licensing?

AlienVault is one of the best to consider in terms of price advantage. AV is giving tools that charge you based on EPS a run for their money. Forget about procuring licensing and setting up… more»

Which solution did I use previously and why did I switch?

AlienVault was the first and only choice.

Which other solutions did I evaluate?

Splunk Enterprise Security.
Vendor
Security Architecture and Operations Lead at a university with 1,001-5,000 employees
Jan 25 2017

What is most valuable?

The NIDS/HIDS features have probably been the best features for us in our environment. We've had some open-source options and, while they work, it isn't the same as having commercial support. SIEM is… more»

How has it helped my organization?

We've been able to professionally generate alerts for IDS, SIEM and vulnerabilities where we didn't have those capabilities before.

What needs improvement?

Reporting still needs a lot of work, especially on the vulnerability side. Vulnerability management UI could be improved as well. Vulnerability reports are clunky and difficult to manage. The layout… more»

Which solution did I use previously and why did I switch?

We used Nexpose for vulnerability management and moving away from that was the primary reason we went with AlienVault.

What other advice do I have?

We've been very happy with the purchase. While the list of supported vendors in the SIEM continues to grow, I do wish that creating plugins was a little easier.

Which other solutions did I evaluate?

Before choosing this product, we did not evaluate other options., we looked at Nessus SecurityCenter with Log Management.
Vendor
Information Systems Network Technician at a local government with 501-1,000 employees
Nov 21 2016

What is most valuable?

It's a single solution that is meeting the needs of multiple of my PCI compliance objectives.

How has it helped my organization?

I was able to replace our log management solution with this product. A single server that allows for log management, vulnerability scanning, and file integrity monitoring.

What needs improvement?

The alarms section of the USM is very robust, yet I still find myself having to look back through the events to find more details. It would be nice if I could navigate… more»

What's my experience with pricing, setup cost, and licensing?

Speak with a rep to get the correct design. AlienVault will scale depending on the size of your environment but the licensing gets tricky when you get away from the single… more»

Which solution did I use previously and why did I switch?

We did not previously have many of the systems that AlienVault offers. We switched to get a robust single solution.

What other advice do I have?

Use AlienVault's free trial of the USM. They will help you get the system installed which is very helpful to make sure you get test best test possible.

Which other solutions did I evaluate?

I was not able to find any other tool that was able to meet as many needs as I the AlienVault USM. I spent the entire trial testing AlienVault to make sure it would suit… more»

What is AT&T AlienVault USM?

AlienVault USM Anywhere is a cloud-based security management solution that accelerates and centralizes threat detection, incident response, and compliance management for your cloud, hybrid cloud, and on-premises environments. USM Anywhere includes purpose-built cloud sensors that natively monitor your Amazon Web Services (AWS) and Microsoft Azure cloud environments. On premises, lightweight virtual sensors run on Microsoft Hyper-V and VMware ESXi to monitor your virtual private cloud and physical IT infrastructure.

With USM Anywhere, you can rapidly deploy sensors into your cloud and on-premises environments while centrally managing data collection, security analysis, and threat detection from the AlienVault Secure Cloud.

Five Essential Security Capabilities in a Single SaaS Platform

AlienVault USM Anywhere provides five essential security capabilities in a single SaaS solution, giving you everything you need for threat detection, incident response, and compliance management—all in a single pane of glass. With USM Anywhere, you can focus on finding and responding to threats, not managing software. An elastic, cloud-based security solution, USM Anywhere can readily scale to meet your threat detection needs as your hybrid cloud environment changes and grows.

  1. Asset Discovery
  2. Vulnerability Assessment
  3. Intrusion Detection
  4. Behavioral Monitoring
  5. SIEM

Try USM Anywhere in your environment—free for the first 14 days. 
www.alienvault.com/products/usm-anywhere/free-trial

Also known as
AlienVault, AlienVault USM, Alienvault Cybersecurity
AT&T AlienVault USM customers

Abel & Cole, Bank of Ireland, Bluegrass Cellular, CareerBuilder, Claire's, Hays Medical Center, Hope International, McCurrach, McKinsey & Company, Party Delights, Pepco Holdings, Richland School District, Ricoh, SaveMart, Shake Shack, Steelcase, TaxAct, Taylor Morrison, Vonage and Zoom

BUYER'S GUIDE
Download our free AT&T AlienVault USM Report and get advice and tips from experienced pros sharing their opinions.