Loading product reviews...

security-information-event-management alienvault All Markets > Security Information and Event Management

AlienVault

4.4 out of 5.0 (34 ratings)

Reviews Distribution

5 Stars
4 Stars
3 Stars
2 Stars
1 Star
We don't have any qualitative reviews for this vendor yet


View other vendors in this market
We have aggregated ratings data on AlienVault but all of our reviewers have opted out of sharing their qualitative review feedback. In certain cases we allow reviewers to withhold their qualitative review feedback from public view, in order to protect their confidentiality.
  • 5 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    Great Experince with AlienVault

    Overall Comment

    Customer support has always been extremely helpful and timely. Any issues encountered have been resolved.

    What one piece of advice would you give other prospective customers?

    It really is easy to deploy if you have knowlegable individuals in your organization, particularly with firewall/network skills.

    What do you like most about the product or service?

    It is intuitive and easy to use. It gives enough information for diagnostic and forensics.

    What do you dislike most about the product?

    I like it!

    What one thing do you wish the vendor did differently?

    Provide more information about resolving and remediating security vulnerabilities.

    If you could start over, what would your organization do differently?

    Implementation was rather easy, no modifications have been needed with the exception of custom log collection.


  • 4 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    Solid SIEM for the Money

    Overall Comment

    AlienVault is a full featured cost effective SIEM that provides quality threat intelligence for a lot less than the competition. I knocked off a point for the learning curve compared to some of the competition and for the lack of native user behavior analytics but for the money you really can't do any better.

    What one piece of advice would you give other prospective customers?

    There can be a bit of a learning curve. It's worth investing in the formal AlienVault training.

    What one thing do you wish the vendor did differently?

    I wish a comprehensive manual was available rather than a diverse plethora of PDFs and videos. That way I could have a single source for documentation to read in the event of an internet outage or if I need to brush up on something while traveling.

    If you could start over, what would your organization do differently?

    When we implemented USM it was during a transition between major release. Had I known the major change was imminent I would have waited on the rollout and for formal documentation to be completed.

    Integration & Deployment - Overall comment

    I knocked off one point due to the issues we experienced with deployment however it is my understanding that the issues no longer occur in the latest iteration.


  • 4 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    Great product but takes time to get right

    Overall Comment

    AlienVault's solution has been great for the most part. There are some issues users will need to tackle, such as storage management, that are not the easiest to handle with this product. There have been a few issues with applying upgrades as well.

    What one piece of advice would you give other prospective customers?

    Do your research and compare various products, preferably with firsthand experience.

    What do you like most about the product or service?

    Provides a great deal of information once you get it up and running.

    What do you dislike most about the product?

    Storage management.. there really is none. With third party utilities, I expanded the drive beyond the base level provided by the deployment. So far, I've managed to keep the free space in check by offloading older logs to another Linux system. If you drop below 20% free space, the system's configuration backup will begin failing. There needs to be an option to place the backup elsewhere or adjust the limitation down from 20% free.

    What one thing do you wish the vendor did differently?

    Documentation.. Documentation.. Documentation.. I don't mind dealing with knowledgebases but I should have to go there for just about everything.


  • 5 out of 5.0, Reviewed

    Product(s): Open Source SIEM (OSSIM) by AlienVault

    Overview of Alienvault

    Overall Comment

    The product installed and worked as advertised. We didn't have to contact the vendor too much to create the base environment

    What one piece of advice would you give other prospective customers?

    Plan as much as possible all of the different integration points.

    What do you like most about the product or service?

    Functionality and robustness of the product.

    What do you dislike most about the product?

    Nothing at this time.

    What one thing do you wish the vendor did differently?

    Nothing at this time.

    If you could start over, what would your organization do differently?

    I would have budgeted more funds to have a subject matter expert come in from another security company to speed up the implementation.


  • 5 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    Most complete security solution available

    Overall Comment

    The customer support has been great and the technical expertise has been very helpful

    What one piece of advice would you give other prospective customers?

    Consider the overall value of the different components, features and functions of the AlienVault system. This is not just a basic SIEM this is a Security Managment system that is a great addition for your layered security.

    What do you like most about the product or service?

    The customer support and the overall integration of the different feature in the product.

    If you could start over, what would your organization do differently?

    We would have implemented with the USM version sooner. We had used the OSSIM version for about a year for testing purposes. We were happy with the testing results and chose to move to the USM.


  • 4 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    Great SIEM

    Overall Comment

    Overall everything is great. If i have any problems, i create my ticket in the portal and noramlly get a responce quickly. They see the problem though to make sure it is fixed. This runs great on our VmWare server and have little problems. We have saved a few computers from big infections such as crypto lockers. Having an alert before its too late is a must.

    What one piece of advice would you give other prospective customers?

    Easy to get setup. Listen about how to setup the directives, can be a little confusing at times.

    What do you like most about the product or service?

    Easy to get assistance. Alerts you with enough time to get to that machine to prevent futher damage.

    What do you dislike most about the product?

    Sometimes seems a little slow, but does not affect anything, just me being impatient.

    If you could start over, what would your organization do differently?

    Have my VM as the full disk space and give it more room. Had to expand the hard drive for more logs.


  • 5 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    Excellent Experiences

    Overall Comment

    This is the only vendor I have ever dealt with that would go as far as to have someone assist me setup the trial. The level of support I received just for the trail was as good as I have received from most vendors when I pay for their support. The professional services I used after we purchased the product have gone far and above my expectations.

    What one piece of advice would you give other prospective customers?

    Run the trial into the ground. Make sure to plan what items you want to monitor with Alienvault and then make it your home page until the trial is over. Get to know the product, it can do a lot but it is far from free. Take advantage of the time you have with trials to make sure you understand and can utilize something this robust.

    What do you like most about the product or service?

    I was looking for a product that would allow me to meet multiple PCI Compliance objectives from ONE console. Alienvault has alllowed that and I sincerely appreciate that.

    What do you dislike most about the product?

    The Alienvault USM collects and overwhelming amount of information. I did not realize when we were implementing the software that we could staff a full time employee just to review logs and make changes if attacks occur.

    What one thing do you wish the vendor did differently?

    I actually asked the customer experience person (I may have the title wrong) to only call every other month. Alienvault is so worried about my satisfaction that they schedule to contact their users monthly to make sure everything is running well. I tend to be open about contacting support so that was more often than I needed. Alienvault did respect that request as well.

    If you could start over, what would your organization do differently?

    There is nothing I would do different looking back from this point.


  • 4 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    IMplementation was easy out of the box., But needs some improvements

    Overall Comment

    Overall the experience working with the vendor has been good. Their support is very responsive and able to resolve issues fairly quickly. Their engament personnel do a quaterly checkup to make sure we are not having any un-addressed issues.

    What one piece of advice would you give other prospective customers?

    Make sure you have someone on staff who has some Linux/Unix experience. It will come in very handy.

    What do you like most about the product or service?

    The product has a fairly low learning curve. The support is very good.

    What do you dislike most about the product?

    Some of the modules need updating. They require too much manual intervention. The one that annoys me the most is the inventory. The operating system detection engine is weak compared to it's competitors.

    If you could start over, what would your organization do differently?

    currently we are doing well with this product. I don't believe we would have reached a different conclusion.


  • 5 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM), Open Source SIEM (OSSIM) by AlienVault

    Don't Hire a Cyber Security Professional when you can hire a team for a fraction the cost

    Overall Comment

    The Product has worked better then expected. The install could have been easier but the newer updates have taken the complexity the Customers (ME) were asking for and now it is a breeze to setup use and start seeing attacks and threats!

    What one piece of advice would you give other prospective customers?

    Buy AlienVault and you won't reget it. I haven't met anyone who has.

    What do you like most about the product or service?

    It Works and Does what you want and need 24/7

    What one thing do you wish the vendor did differently?

    Auto Updates and Mass Message Deletion inside the product. It can be a headache but it keeps me in the product like I should.

    If you could start over, what would your organization do differently?

    Focus more time on the training class which isn't cheap or easy to do. Security is on the top of our minds but we aren't Security Experts and the Vocabulary and Skills sets needed for some of the SEIM products are not easy to pickup in a week training. Teaching a basics in Cyber Security Course first would be helpful.


  • 5 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    Everything wonderful overall, but potential stability issues

    Overall Comment

    Our experience with this product has been very good overall. The asset discovery, vulnerability scanner, and log aggregation all function well, with minor blips of performance or stability here or there. It helps to have staff with strong Linux skills to work out the kinks as well as get the most out of the system which is very hackable, which I consider its greatest strength.

    What one piece of advice would you give other prospective customers?

    Do as many trials of SIEMs as you can before comitting to one.

    What do you like most about the product or service?

    Having used other inferior SIEMs in the past, I like how AlienVault USM just works the way we need it to. I also like the additional advanced features, like HIDS agents and vulnerability scanning, which at first I expected we would buy other extra products for.

    What do you dislike most about the product?

    Some stability issues with configuration, and some slow database searches although we do drop millions of events into the database so it has a lot to handle. Perhaps a clustered database would be an ideal technology for scalability?

    What one thing do you wish the vendor did differently?

    I don't have anything to list here.

    If you could start over, what would your organization do differently?

    We would consider paying more up front for the scalable solution with extra sensors, especially as our organization starts moving into a hybrid cloud architecture.


Show More Reviews

Ratings Overview

1 2 3 4 5
Section
1

Evaluation & Contracting

Overall rating of product evaluation and contract negotiation

(32)
4.5

Ability to understand your organization's needs

(29)
4.4

Timely and complete response to product questions

(29)
4.5

Pricing and contract flexibility (pricing and terms)

(29)
4.5
1 2 3 4 5
Section
1

Integration & Deployment

Overall rating of integration and deployment

(33)
4.2

How long did your deployment take?

0 - 3 months (<3)

3 - 6 months (<6)

12 months or more

6 - 9 months (<9)

9 - 12 months (<12)


Availability of quality 3rd-party resources (integrators, service providers, etc.)

(24)
4.0

Ease of integration using standard APIs and tools

(25)
3.8

Quality and availability of end-user training

(29)
4.3

Ease of deployment

(30)
4.1
1 2 3 4 5
Section
1

Service & Support

Overall rating of service and support

(32)
4.4

Did you purchase a support package from the vendor?

Yes

No

I’m unsure


Timeliness of vendor's response

(26)
4.5

Quality of technical support

(26)
4.4

Quality of peer user community

(22)
4.0
1 2 3 4 5
Section
1

Product Capabilities

Overall rating of product capabilities

(33)
4.4

Real-Time Monitoring

(29)
4.6

Threat Intelligence

(30)
4.5

Behavior Profiling

(28)
4.1

Data and User Monitoring

(30)
4.1

Application Monitoring

(29)
4.0

Analytics

(29)
4.2

Log Management and Reporting

(30)
4.6

Deployment/Support Simplicity

(30)
4.2
1 2 3 4 5
Section
1

Additional Context

What was the nature of your involvement?

Vendor/Product Selection

Functional Assessment

Technical Assessment

Rollout and Install

Maintenance and Support

Application Lead

Development/Integration

Executive Sponsor

Vendor Management

User Training

Other...


Why did you purchase a Security Information Event Management solution?

Enable/improve security event alerting, investigation

Enable/improve log collection, reporting and retention capabilities

Meet regulatory or commercial compliance requirements

Enable/improve behavioral analysis of users and other entities

Enable/improve tracking access to and activities related to databases, applications

Enable/improve security incident workflow and reporting

Meet customer or business partner expectations about your security monitoring program

Enable/improve security incident workflow and reporting

Reduce costs for threat management operations

Reduce costs for meeting compliance mandates

Other...


What other vendors were considered?

Splunk

SolarWinds

LogRhythm

Hewlett Packard Enterprise

ManageEngine

AlienVault

IBM

Intel Security (McAfee)

Rapid7

SecureWorks

Tripwire

NetIQ

CheckPoint Software Technologies

Cisco

Elasticsearch

EventTracker

Security Onion

Symantec

Tenable Network Security, Inc

Trend Micro

Trustwave

AccelOps

Check Point Software Technologies

F-Secure

Fortinet

Graylog

RSA, The Security Division of EMC

SecureWorks (Dell)

Other...


What were the key factors that drove your decision for selecting the vendor?

Overall cost

Product functionality and performance

Strong technical/product support

Strong user community

Strong customer focus

Product roadmap and future vision

Availability of managed services

Financial/organizational viability

Strong consulting partnership

Pre-existing relationships

Other...


In which region(s) did your deployment take place? Multiple responses allowed.

North America

Asia/Pacific

North Amerca