Lego block SIEM
Overall Satisfaction with AlienVault OSSIM
As an organization, we leveraged alien vault as a SIEM solution for ourselves and also as a managed services offering for our customers. The scope was to support environments from a security perspective collecting logs and generating reports and analytics for the purposes of IT security. This included custom reporting, leveraging on-premises appliances and delivery is security as a service.
Pros
- Collection of logs
- Pricing
- Ability to customize reports
Cons
- Out of the box reporting
- Correlation of events
- AI
- Custom reporting
- Log collection
- Analytics
- Costly appliances with low ROI
- Datadog, Splunk Enterprise Security (SIEM), Azure Sentinel, IntSights Cyber Intelligence, from Rapid7 and Stellar Data Recovery & Erasure
Originally my organization leveraged alien value due to the lower cost of entry and ability to manage it as a service provider. Unfortunately, after several years of working with this tool, it became unwieldy to use as it felt that almost every useful report had to be created by hand. As other tools have come out with the ability to do automated responses such as Stellar Data processor, we have begun to evaluate alternatives.
Do you think AlienVault OSSIM delivers good value for the price?
No
Are you happy with AlienVault OSSIM's feature set?
No
Did AlienVault OSSIM live up to sales and marketing promises?
No
Did implementation of AlienVault OSSIM go as expected?
Yes
Would you buy AlienVault OSSIM again?
No
Comments
Please log in to join the conversation