Most Helpful Review
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
The dashboard is the solution's most valuable aspect. It brings everything into one central point where I can actually look at it and go, "Okay, I understand what's going on."
The most valuable features of this solution are the data correlation and vulnerability assessment.
OSSIM is the only solution that includes the large number of modules that we need: a vulnerability scanner, a network IDS system, a host IDS system.
The open vault component and the checking of vulnerabilities are the most valuable features. The page management helps with this. If you know how your device is vulnerable at least you can do something about it.
You pay monthly for the solution. I think it's one of the best products. If you compare with other companies, like LogRhythm, etc., the top 8 or 10 CMs, I think Alien Vault has the best price-performance ratio.
The initial setup was straightforward. I didn't have any problems.
With AlienVault you get everything in one box.
The solution has a very good open source community, and whenever we have problems, we are always able to resolve it online.
We are able to diagnose problems before our customers.
It helps a lot because we can troubleshoot issues pretty easily.
We have used it many times to find a root cause of a live issue, then fix the problem in the applications.
Support has been excellent. Sumo Logic's support staff is really good, both their account management staff and direct support.
It provides easy visibility. I also like the shareable queries because we share a lot across groups.
For many of our services, we use Sumo Logic to track errors and send notifications to our Slack channel, if there are issues. Then, we have our support people monitoring this, and they can react quickly.
Scalability has been good for our needs. We haven't run into any scaling issues in regards to size so far.
I have no concerns about the stability of the product. I feel it handles the stress we put on it very well.
I would like the solution to be able to integrate with my firewall, my IDS and my Honeypot solutions so that it can provide real-time reporting as things occur and then have alert sent to me on my phone when suspicious activity is happening.
The price of this solution is very high and it could be cheaper.
We need more dashboards and we need more customization for dashboards.
The initial setup was a bit complex. You've got to do a lot of reading. It's not an intuitive implementation.
The user interface could be improved.
It's under heavy traffic. If you have heavy traffic, the system is slow.
Sometimes technical issues take very long to get resolved.
The solution needs more integration with cyber intelligence systems.
There are some API gaps that are missing.
We would like to have some type of predefined setup for the logs, making the setup easier by default.
We would like the ability to drill down into a dashboard and get into deeper levels.
There needs to be improvement on imported data which can be used within Sumo Logic to do more advanced queries.
I would like better UI-driven functionality to create alerts and reports. Now, we have to understand the syntax, so it is a little difficult for someone to pick it up without using the manuals. If there was more of a graphical user interface, it would be beneficial.
It would be nice to have an improved ability to scroll through logs within a time frame. Right now, we can search for specific errors. However, if we want to look for "before and after" within a specific time frame, it's not easy using the tool. This would be an improvement.
It took a bit of trial and error to get it set up correctly based on everything we had to do. In the end, we had to send everything over HTTP, which was sort of a stop-gap.
If you want to up your subscription through the AWS Marketplace, it can be difficult. You can't just go back to the AWS Marketplace, and say, "I want a bigger one now." You have to contact the sales team, then they do it on the back-end. This could definitely be improved.
Pricing and Cost Advice
The licensing fees for the non-community edition are paid on an annual basis, and there are no costs in addition to this.
OSSIM is free.
The solution is open source, so it's free to use.
AlienVault pricing is the best. Whatever cost you are paying, you are getting a return on every penny... It's not like your IBM, your QRadar, or Splunk, where the cost is too high.
The AWS Marketplace pricing is borderline. Every annual renewal, we always contemplate if we are getting what we think we could out of it or could we do it cheaper with some other product.
The pricing is a little high, but for the features that we receive from Sumo Logic, it suits the price. For some small organizations, the price might be a little high.
I don't pay the bill. I've heard the AWS Marketplace pricing is high, but I like the value.
Pricing has been cheaper than some of the competing tools, like Splunk.
If we went to ELK Stack, which is open source, it would have been less costly, but it would have required more development from our side.
The only limit to the scalability of the product for us is how much we are willing to pay.
The price scaling comes in a bit expensive.
Purchasing the solution through the AWS Marketplace is very easy.
out of 44 in Security Information and Event Management (SIEM)
Average Words per Review
out of 48 in Log Management
Average Words per Review
Compared 47% of the time.
Compared 25% of the time.
Compared 9% of the time.
Compared 12% of the time.
Compared 10% of the time.
Compared 10% of the time.
Also Known As
AlienVault OSSIM, Open Source Security Information and Event Management (SIEM), provides you with a feature-rich open source SIEM complete with event collection, normalization and correlation. Launched by security engineers because of the lack of available open source products, AlienVault OSSIM was created specifically to address the reality many security professionals face: A SIEM, whether it is open source or commercial, is virtually useless without the basic security controls necessary for security visibility.
|Sumo Logic simplifies how you collect and analyze machine data so that you can gain deep visibility across your full application and infrastructure stack. With the Sumo Logic service, you can accelerate modern application delivery, monitor and troubleshoot in real time and improve your security and compliance posture.|
Learn more about AlienVault OSSIM
Learn more about Sumo Logic
|Council Rock School District||Ooyala, Webjet, Akamai, Kaiser Permanente, Alaska Airlines, Hotel Tonight, Dollar Shave Club, Interactive Intelligence, Restoration Hardware, RingCentral, WD-40, Zillow, Sage Software, Tunein Radio, Lookout, Infor, Houzz, Estee Lauder, Brightcove, Actelion, Anki, Elance, Voxer, Cytobank, Medicom Health Interactive, Task Rabbit, Zscaler, Thred Up, Netskope, Tobi, Infoblox, Imperva, Okta, Medallia, RelateIQ, Bazaar Voice, Blurb, Guidewire, Apigee, Swipely, Progress Software, Card Spring, Ubiquiti Networks, Pager Duty, McGraw Hill, Acquia, Limelight Networks, Blucora, Scripps Networks Interactive, Orange, Medidata, 3 Share|
No Data Available
Software R&D Company44%
Comms Service Provider8%
Financial Services Firm7%
See also AlienVault OSSIM Reviews, Sumo Logic Reviews, and our list of Best Security Information and Event Management (SIEM) Companies.