AlienVault USM Anywhere, a SIEM that is easy on your pocket.
August 29, 2020
AlienVault USM Anywhere, a SIEM that is easy on your pocket.
Score 8 out of 10
Vetted Review
Verified User
Software Version
USM Anywhere (SaaS)
Overall Satisfaction with AlienVault USM
We are a reseller of Alienvault USM and provide managed SOC services. We recently deployed for a telecom operator to monitor business-critical services including Windows and Linux. It's not for all departments, mainly for agents deployed on critical servers only to monitor the activities and discover anamolies.
Pros
- Deployment is straight forward
- AlienVault USM forensic and response app is great. You can create rules to shut down, disable networking, etc. automatically if Windows becomes infected.
- AlienVault allows seamless integration with third-party products like Cisco, Office365 etc.
Cons
- A lot of false-positive alarms
There are other products like IBM QRadare and HP ArcSight, but they are much expensive than AlienVault USM which provides similar functionality.
Comments
Please log in to join the conversation