Loading product reviews...

security-information-event-management alienvault All Markets > Security Information and Event Management

AlienVault

4.2 out of 5.0 (17 ratings)

Reviews Distribution

5 Stars
4 Stars
3 Stars
2 Stars
1 Star
We don't have any qualitative reviews for this vendor yet


View other vendors in this market
We have aggregated ratings data on AlienVault but all of our reviewers have opted out of sharing their qualitative review feedback. In certain cases we allow reviewers to withhold their qualitative review feedback from public view, in order to protect their confidentiality.
  • 4 out of 5.0, Reviewed

    Product(s): Open Source SIEM (OSSIM) by AlienVault

    Great product with great technical support.

    Overall Comment

    Implementation was fairly easy and straightforward. Tech support was great. Follow-up was sometimes hard to get but once we get someone on the phone, they are terrific. The product itself is great. Very user-friendly and great UI. Reporting is easy and the dashboard is very useful.

    What do you like most about the product or service?

    Ease of use.

    What do you dislike most about the product?

    n/a

    Product capabilities - overall comment

    This product has all the functionality we were looking for including a good reporting dashboard and an OTX interface.

    Service & support - overall comment

    With the exception of sometimes not getting timely follow-up, support is very good.

    Integration & Deployment - Overall comment

    Implementation was quick and relatively problem free. Support was very helpful.


  • 4 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    AlienVault- a lot of bang for your buck.

    Overall Comment

    Implementation although easy was a bit confusing on actual proper setup. Encompasses a lot in a USM to overall understanding is a bit confusing in the beginning. Interface is setup nicely and easy to work with. Integration is nicely done also. Support is responsive. Client side protection is a little cumbersome and can't figure out how to deploy in RO domain controllers without the GUI. Definitely worth the money at this point for a fully integrated solution with budget in mind. Fills a niche for the SMB and enterprise with a sensitive budget.

    What do you like most about the product or service?

    A completely integrated solution that will allow me to stop paying for some one off solutions I purchased. I like the single vendor POC.

    What do you dislike most about the product?

    The FIM piece is not your final soltuion, you will need to look elsewhere for a product that is more focused on this piece. Carry costs are a little steep but you are actively getting updates so there is always a cost associated with that.

    Product capabilities - overall comment

    Satisifed with what was presented and what we are experiencing. FIM is a little cumbersome and we were not aware of our sensor not being able to handle a full deployment, but for the price it was worth that short fall. It will handle our critical servers and our red flag machines. This was a bit of a surprise but not an issue if we purchased a sensor that can handle more EPS.

    Service & support - overall comment

    So far very responsive and no issues. Really can't elaborate as we have not experienced any problems. We are not fully implemented as of yet, but when we do have issues they are quick to respond and help.

    Integration & Deployment - Overall comment

    All went well. Only issue is there are more "false positives" than we were led to believe, but not too much of an issue. Just a learning vertical in order to discern what an actionable item is and what is not. This is a necessary evil with all USM's. Let me be clear, this was not a deal breaker, just not something we were aware of in the demos.


  • 4 out of 5.0, Reviewed

    Product(s): Open Source SIEM (OSSIM) by AlienVault

    Implementation was easy, configuration was complex.

    Overall Comment

    AlienVault was very easy to work with and support group is superb.

    What one piece of advice would you give other prospective customers?

    Get the training and make sure you train several administrators.

    What do you like most about the product or service?

    Integration with other products and log sources.

    What do you dislike most about the product?

    configuration of events is not easy.

    What one thing do you wish the vendor did differently?

    Made reporting easier to implement.

    If you could start over, what would your organization do differently?

    Used more third party implementation support.

    Service & support - overall comment

    The service and support is timely. Updates are delivered frequently.

    Integration & Deployment - Overall comment

    Integration with multiple sources was straight forward and deployment was easy. Configuration was difficult in the reporting / alerting area.


  • 4 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    AlienVault - Easy to read dashboards to help bring you into compliance.

    Overall Comment

    AlienVault was easy to work with and provided excellent product demos before actual installation.

    What one piece of advice would you give other prospective customers?

    Get as much training as possible on the product to get the most out of the tool as possible.

    What do you like most about the product or service?

    Dashboards are easy to read and provide and good breakdown/dissemination of information.

    What do you dislike most about the product?

    Learning to use the tool.

    If you could start over, what would your organization do differently?

    We would get more training for other users in the organization so as power users left we had more internal "experts".

    Service & support - overall comment

    AlienVault has a dedicated rep for us to deal with and offers webinars on a regular basis to help us get the most out of the tool.

    Integration & Deployment - Overall comment

    Product integrated well in to our environment, the biggest obstacle was setting up AlienVault properly to avoid false-positive alerts.

    1 of 1 peer(s) found this review helpful.


  • 5 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    Implementation has been easy - taking training prior to rollout is recommended.

    Overall Comment

    Great contact with the vendor to assure a smooth rollout. Very concerned with making the product a success for our company.

    What one piece of advice would you give other prospective customers?

    So many good products - make sure the tool fits your need.

    What do you like most about the product or service?

    The insight into our network and events that were difficult to track in the past.

    What do you dislike most about the product?

    I don't know if there is anything I dislike -- still trying to get used to the GUI.

    What one thing do you wish the vendor did differently?

    So far nothing comes to mind.

    If you could start over, what would your organization do differently?

    Take training week prior to rollout.

    Service & support - overall comment

    Service has been good. No contact with support needed yet, so I am giving this a Neutral for now.


  • 4 out of 5.0, Reviewed

    Product(s): Open Source SIEM (OSSIM) by AlienVault

    Open Source for SMB

    Overall Comment

    Fairly simple to implement.

    What one piece of advice would you give other prospective customers?

    Research support options

    What do you like most about the product or service?

    scalable

    What do you dislike most about the product?

    lack of support

    What one thing do you wish the vendor did differently?

    Better support

    If you could start over, what would your organization do differently?

    Budget better


  • 4 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    Good solution with low cost of entry compared to competitors but additional services costs required to support integrations.

    Overall Comment

    Good product with low cost of entry but services costs can add up over time.

    What one piece of advice would you give other prospective customers?

    A lot of configuration assistance (paid) required from vendor for log integrations.

    What do you like most about the product or service?

    Low cost

    What do you dislike most about the product?

    Complexity, requires significant vendor assistance

    What one thing do you wish the vendor did differently?

    More canned configuration for log integration available

    If you could start over, what would your organization do differently?

    Look at broader list of vendor offerings.


  • 5 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM),Open Source SIEM (OSSIM) by AlienVault,AlienVault Unified Security Management for AWS

    AlienVault on the rise to become a quadrant leader.

    Overall Comment

    It was great working with the vendor. They help provide ROI and are willing to show how they can complement other security products that already exists in your environment.

    What one piece of advice would you give other prospective customers?

    Organize the details before starting the project and understand what you get for the 1 Day on site consulting to configure your appliance if you go with an on-premise solution.

    What do you like most about the product or service?

    It's a great tool that does what they state.

    What do you dislike most about the product?

    I do not currently have any dislikes.

    What one thing do you wish the vendor did differently?

    Further explain the details on the 1 Day on site consulting service to setup AlienVault.

    If you could start over, what would your organization do differently?

    No issues with process.

    Product capabilities - overall comment

    The data points are right on. They provide what they say they will.

    Service & support - overall comment

    We have not had to contact service/support yet.


  • 5 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM)

    AlienVault is the best based on upfront cost and cost to maintain. Easily deployable.

    Overall Comment

    Great sales and tech support. Product works well and takes little effort to maintain.

    What one piece of advice would you give other prospective customers?

    Don't look at just cost. Think of the cost of managing the backend. AlienVault takes less FTEs and hardware to manage than some of the big guys

    What do you like most about the product or service?

    Lightweight and just works. Plays well with others

    What do you dislike most about the product?

    Dashboards, but that's the same for most SEIMs

    What one thing do you wish the vendor did differently?

    Allow individual view per analyst

    If you could start over, what would your organization do differently?

    None

    Product capabilities - overall comment

    Does as good as ArcSight which is what I had before but for a lot less money and less resource intensive

    Service & support - overall comment

    Always available

    Integration & Deployment - Overall comment

    Easily deployed and plays well with others


  • 4 out of 5.0, Reviewed

    Product(s): AlienVault Unified Security Management (USM),Open Source SIEM (OSSIM) by AlienVault

    Good product for a small company especially with a small budget and staff

    Overall Comment

    Very good featureset in relation to cost

    What one piece of advice would you give other prospective customers?

    Know your requirements first

    What do you like most about the product or service?

    Ability to correlate multiple sources quickly

    What do you dislike most about the product?

    Upgrade path is somewhat difficult

    What one thing do you wish the vendor did differently?

    Better support capability

    If you could start over, what would your organization do differently?

    Start with the commercial version, we started with the open source but overhead and experience to maintain was too costly

    Product capabilities - overall comment

    As mentioned, good feature set for money

    Service & support - overall comment

    Mostly done internally but support when required was very helpful

    Integration & Deployment - Overall comment

    Able to integrate with existing DBs and data sources fairly easy

    1 of 1 peer(s) found this review helpful.


Show More Reviews

Ratings Overview

1 2 3 4 5
Section
1

Evaluation & Contracting

Overall rating of product evaluation and contract negotiation

(15)
4.2

Ability to understand your organization's needs

(12)
4.3

Timely and complete response to product questions

(12)
4.3

Pricing and contract flexibility (pricing and terms)

(12)
4.3
1 2 3 4 5
Section
1

Integration & Deployment

Overall rating of integration and deployment

(16)
4.0

How long did your deployment take?

0 - 3 months (<3)

3 - 6 months (<6)

12 months or more

6 - 9 months (<9)

9 - 12 months (<12)


Availability of quality 3rd-party resources (integrators, service providers, etc.)

(11)
3.8

Ease of integration using standard APIs and tools

(11)
3.6

Quality and availability of end-user training

(12)
3.9

Ease of deployment

(13)
3.9
1 2 3 4 5
Section
1

Service & Support

Overall rating of service and support

(15)
4.2

Did you purchase a support package from vendor?

Yes

No


Timeliness of vendor's response

(10)
4.2

Quality of technical support

(10)
4.2

Quality of peer user community

(9)
3.7
1 2 3 4 5
Section
1

Product Capabilities

Overall rating of product capabilities

(16)
4.3

Real-Time Monitoring

(13)
4.6

Threat Intelligence

(13)
4.2

Behavior Profiling

(11)
3.8

Data and User Monitoring

(13)
3.9

Application Monitoring

(12)
3.8

Analytics

(12)
3.9

Log Management and Reporting

(13)
4.5

Deployment/Support Simplicity

(13)
4.1
1 2 3 4 5
Section
1

Additional Context

What was the nature of your involvement?

Executive Sponsor

Technical Assessment

Vendor/Product Selection

Functional Assessment

Application Lead

Development/Integration

Maintenance and Support

Rollout and Install

Vendor Management

Other...


Why did you purchase a Security Information Event Management solution?

Enable/improve security event alerting, investigation

Enable/improve log collection, reporting and retention capabilities

Enable/improve security incident workflow and reporting

Meet regulatory or commercial compliance requirements

Enable/improve tracking access to and activities related to databases, applications

Reduce costs for threat management operations

Enable/improve behavioral analysis of users and other entities

Enable/improve security incident workflow and reporting

Meet customer or business partner expectations about your security monitoring program

Reduce costs for meeting compliance mandates


What other vendors were considered? Multiple responses allowed.

Splunk

LogRhythm

SolarWinds

IBM

Hewlett Packard Enterprise

Intel Security (McAfee)

ManageEngine

CheckPoint Software Technologies

EventTracker

NetIQ

AlienVault

SecureWorks

SecureWorks (Dell)


What were the key factors that drove your decision for selecting the vendor?

Overall cost

Product functionality and performance

Product roadmap and future vision

Strong customer focus

Strong user community

Availability of managed services

Strong technical/product support

Financial/organizational viability

Pre-existing relationships

Strong consulting partnership

Other...


In which region(s) did your deployment take place? Multiple responses allowed.

North America

North Amerca