AlienVault OSSIM is the bomb!
Overall Satisfaction with AlienVault OSSIM
AlienVault OSSIM is being used across the entire organization. We use the tools to assist in computer security, intrusion detection, and prevention. It provides effective threat detection, incident response, and compliance management, all done within a single appliance. The analysis is run in the background so we don't have to look at all the threats individually and research them from scratch.
Pros
- Threat analysis. It can correlate different events happening to detect a pattern or an attack.
- Dashboard provides a clean, single location to see what is going on in our environment.
- Up to date open threat exchange means everything new popping up out there is included and watched for in our environment.
Cons
- Reporting is not the greatest. I had internal developers take data and create some reports that better fit my needs.
- Navigation through the vulnerability scans is not ideal.
- Asset management is also cumbersome to navigate through.
- It satisfied a requirement of our audit team (internal and external).
- Custom written alerts allow us to be proactive for some events.
- Stable product means we don't spend a lot of time keeping it up and running.
We have not used any other products similar to AlienVault so I do not have anything to compare it to. We did look at a few others when first purchasing, but at this point, I do not recall what they were.
Do you think AlienVault OSSIM delivers good value for the price?
Yes
Are you happy with AlienVault OSSIM's feature set?
Yes
Did AlienVault OSSIM live up to sales and marketing promises?
Yes
Did implementation of AlienVault OSSIM go as expected?
Yes
Would you buy AlienVault OSSIM again?
Yes
Comments
Please log in to join the conversation