I have deployed AlienVault OSSIM in a couple of small environments for monitoring.
Chief Operating Officer at a insurance company with 201-500 employees
Stable, scalable, and useful reporting
Pros and Cons
- "The paid version of the solution has reporting and better scalability options."
- "When comparing AlienVault OSSIM to other solutions it looks a bit outdated. Additionally, they need to improve their integration."
What is our primary use case?
What is most valuable?
The paid version of the solution has reporting and better scalability options.
What needs improvement?
When comparing AlienVault OSSIM to other solutions it looks a bit outdated. Additionally, they need to improve their integration.
For how long have I used the solution?
I have been using AlienVault OSSIM for approximately seven years.
What do I think about the stability of the solution?
The solution is stable.
What do I think about the scalability of the solution?
The free version is lacking some of the scalability options.
Which solution did I use previously and why did I switch?
I have used QRadar and ArcSight.
How was the initial setup?
The configuration of the solution is difficult. There are videos we can watch but we do not have time to watch videos. We want there to be better documentation that we can use.
What's my experience with pricing, setup cost, and licensing?
We are using a free version of the solution. If you purchase a license there are more features available but the price is a little high. The solution should be cheaper to allow more customers to be able to afford it.
Which other solutions did I evaluate?
I have evaluated ELK Stack and Security Onion.
What other advice do I have?
I rate AlienVault OSSIM an eight out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer:
Last updated: Sep 28, 2021Flag as inappropriate
Product CategoriesSecurity Information and Event Management (SIEM)
Download our free AlienVault OSSIM Report and get advice and tips from experienced pros sharing their opinions.
- What's The Best Way to Trial SIEM Solutions?
- Which is the best SIEM solution for a government organization?
- What is the difference between IT event correlation and aggregation?
- What Questions Should I Ask Before Buying SIEM?
- What are the threats associated with using ‘bogus’ cybersecurity tools?
- Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?
- What are the pros and cons of internal SOC vs SOC-as-a-Service?
- What is the difference between SIEM and SOAR platforms?
- How does Network Detection and Response (NDR) Differ from SIEM?
- What is the difference between log management and SIEM?