We performed a comparison between IBM X-Force Exchange and USM Anywhere based on real PeerSpot user reviews.
Find out what your peers are saying about Recorded Future, Check Point Software Technologies, Microsoft and others in Threat Intelligence Platforms."This product has helped to increase staff productivity."
"The most valuable feature is you have the expertise of human experience directly involved. There is a team of experts."
"It's quite integratable so you can actually integrate and get IP malware and URL information. It also gives you some form of intelligence into what you're trying to investigate or what you're trying to understand."
"The asset management functionality (active and passive scans) is also really important. You can't protect what you do not know about, so having an inventory of all your devices and software is critical to a security management program."
"It is my "security person" looking at irregularities and letting me know when something has occurred."
"There are multiple tools for information security. The solution includes all the latest advances on the network and host intrusion detection systems."
"The solution has all the features that we need, however they do not work correctly."
"The Event Correlation and vulnerability scans have been the most useful. As a 24/7 SOC, we use the incoming alarms to give an overview of suspicious traffic going through the network. It's easy to look at the correlated events and see the broad picture of traffic for that customer. Vulnerability scans are good for providing patch and remediation guidelines to keep customer systems secure."
"Asset discovery seems to be good."
"The vulnerability scanning is helpful to identify the areas that need patching or fixes installed."
"We had used previous products and found AlienVault centralized the logging for our security."
"You have to look for the new information from X-Force. X-Force will provide it but you have to look for it. We need clearer visibility."
"We would like to have more AI capabilities to detect threats and improve its productivity from a cybersecurity standpoint."
"I would like to see better integration with other systems, solutions, and vendors."
"It was easy on PoC, but when we got to the product it was different story. We had to learn the product again and got feeling that the PoC was a different product."
"The vulnerability reporting needs to have options to be able to sort or customize the output."
"The lack of mature functionality and expertise in any of those areas is a strong negative."
"AlienVault must improve their correlation feature. Some of the events do not match with the correlation rules and some of the correlation events are false-positive."
"One area that has room for improvement is storage. AllienVault is a good place to put logs, but sometimes it's a tough place to go get logs... The logger can only hold so much data. If they improved that, that would help."
"Pay attention to false-positive event automatic correlations."
"I've been told that AlienVault doesn't have a full version of NES running in there, but I'm not sure if that's accurate or if my engineer made it that way. I'm not sure he was completely honest either because we had NES in the environment before. Those tools could be improved because AlienVault is a SIEM, and it added all these other features."
"We would like more plugins. This being the main point of improvement which would benefit the users."
IBM X-Force Exchange is ranked 7th in Threat Intelligence Platforms with 3 reviews while USM Anywhere is ranked 11th in Security Information and Event Management (SIEM) with 113 reviews. IBM X-Force Exchange is rated 8.0, while USM Anywhere is rated 8.4. The top reviewer of IBM X-Force Exchange writes "Speed threat assessment ,security investigations leveraging on real time actionable threat intel integrated to your Security Intelligence Platform". On the other hand, the top reviewer of USM Anywhere writes "Easy to use and affordable". IBM X-Force Exchange is most compared with VirusTotal, IBM Security QRadar, ThreatConnect Threat Intelligence Platform (TIP), Recorded Future and CrowdStrike Falcon, whereas USM Anywhere is most compared with Wazuh, AlienVault OSSIM, IBM Security QRadar, Splunk Enterprise Security and Zabbix.
We monitor all Threat Intelligence Platforms reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.