Anomali vs USM Anywhere comparison

The compared Anomali and AT&T solutions aren't in the same category. Anomali is ranked #31 in XDR , with an average rating of 7.0, and holds a 0.2% mindshare in the category. AT&T is ranked #19 in SIEM , with an average rating of 7.2, and holds a 1.2% mindshare. Additionally, 66% of Anomali users are willing to recommend the solution, compared to 92% of AT&T users who would recommend it.

Anomali

Read 2 Anomali reviews

246 Views
149 Comparison Views

66% willing to recommend

USM Anywhere

Read 114 USM Anywhere reviews

3,838 Views
2,605 Comparison Views

92% willing to recommend

Anomali

USM Anywhere

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Anomali and USM Anywhere based on real PeerSpot user reviews.

Find out what your peers are saying about CrowdStrike, SentinelOne, Darktrace and others in Extended Detection and Response (XDR).

To learn more, read our detailed Extended Detection and Response (XDR) Report (Updated: October 2024).

Buyer's Guide

Extended Detection and Response (XDR)

October 2024

Download the complete report

Helped 813,418 peers since 2012

Categories and Ranking

Anomali

Average Rating

7.0

Number of Reviews

Ranking in other categories

Advanced Threat Protection (ATP) (27th), Threat Intelligence Platforms (6th), Extended Detection and Response (XDR) (31st)

USM Anywhere

Average Rating

8.4

Number of Reviews

114

Ranking in other categories

Log Management (24th), Security Information and Event Management (SIEM) (19th), Endpoint Detection and Response (EDR) (35th), Compliance Management (9th)

Mindshare comparison

While both are Security Software solutions, they serve different purposes. Anomali is designed for Extended Detection and Response (XDR) and holds a mindshare of 0.2%, up 0.2% compared to last year.
USM Anywhere, on the other hand, focuses on Security Information and Event Management (SIEM), holds 1.2% mindshare, down 2.9% since last year.

Extended Detection and Response (XDR)

Security Information and Event Management (SIEM)

Featured Reviews

Peter Pamuk

Managing Member at Conterre Consulting LLC.

Mar 12, 2023

Easy and quick credential monitoring; tech support could be improved

Our primary use case for this solution is as a threat intelligence platform. We stream various threat feeds into this platform. We also make correlations between the feeds to duplicate the data, aggregate it and then present it to our security solutions for advanced security The way that this…

Read full review

Omer Jamil

Supervisor, Security Operations at Bpm

Jan 16, 2024

An easy-to-deploy tool that needs to improve its vulnerability scanning feature

In my company, we use the solution in our security operation center to monitor the client environment and as a solution that provides us with continuous monitoring ability The benefits experienced by our company from the use of the solution stem from the fact that it has been working pretty well…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The feature I have found most valuable is credential monitoring. This feature is easy and quick."

"I have found Cyber threat intelligence (CTI) very useful and concise. The solution is easy to use."

"The most valuable feature of the solution is the ease of deployment that it provides to users. The integrations that the product has with third-party applications are useful."

"AlienVault's reporting is good. I like that vulnerability assessment is part of the solution, and the UI is intuitive. Also, the overhead is low, which is to say we don't need a dedicated SOC team to manage and analyze things constantly. We're a small company that doesn't have those resources."

"It allows for a lot of out-of-the-box features: vuln scanning, HIDS/HIPS, and IDS."

"The solution has all the features that we need, however they do not work correctly."

"As we have to service several servers, we can manage them in a economical way, which is beneficial to our team and business."

"AlienVault has an advanced component within one package. With this, we can cover more area with one solution."

"Asset discovery and vulnerability scanner are good features. The integration between this solution and OTX, which is an AlienVault platform for Open Threat Exchange, is also a valuable feature. It is also quick and easy to deploy, so you can quickly engage with a customer's environment."

"Log-monitoring and alerting enable us to know when things happen that we need to know about."

More USM Anywhere pros

Cons

"A lot of tools can give you many features, such as CTI intelligence and a tax service reduction. However, many people are combining different tools together to have more capabilities. It is up to the consumer whether they want to have multiple tools or have one tool that serves the purpose. Anomali Enterprise could improve by combining all the other tools' features into one solution."

"Less code in integration would be nice when building blocks."

"AlienVault needs to continue to integrate with other third-party technologies that clients want to have monitored."

"I've been told that AlienVault doesn't have a full version of NES running in there, but I'm not sure if that's accurate or if my engineer made it that way. I'm not sure he was completely honest either because we had NES in the environment before. Those tools could be improved because AlienVault is a SIEM, and it added all these other features."

"I feel that some areas of improvement would be vulnerability scanning. We use a separate product that seems to do a much better job."

"Different functions to customize reports should be added."

"More complimentary training needs to be done for use with this tool. If you get into a bind, then it will cost you."

"The reporting module could be a little easier to handle, as it requires quite some trial and error until you get the reports you want. Also, it would be great to have a graphical interface for the Network Intrusion Detection System's rule management."

"Support can be slow at times, but the quality is high. Posted knowledge base articles could use improvement."

"It would be hard for any legitimate MSSP to use it."

More USM Anywhere cons

Pricing and Cost Advice

"When comparing the price of Anomali Enterprise to other solutions it is in the medium to high range. However, I am satisfied with the price."

"So far, I feel the product's pricing is a good value. The technology is decent. You get what you pay for. I think it's fair."

"It's affordable for most customers."

"We checked out several competitors. For what it can do and the cost, it was the best option!"

"The ROI is quite good."

"The vulnerability management solution is worse than buying a Nessus Professional license."

"Its price is much lower than McAfee ESM."

"AlienVault is certainly not nearly as expensive as Splunk or QRadar. It's decently priced, but I don't have the exact figure."

"It is a product that is priced in a medium range, making it neither a cheap nor a costly product."

More USM Anywhere pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

813,418 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

16%

Computer Software Company

15%

Government

10%

Manufacturing Company

Computer Software Company

17%

Educational Organization

Financial Services Firm

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Anomali ThreatStream?

The feature I have found most valuable is credential monitoring. This feature is easy and quick.

See all answers

What needs improvement with Anomali ThreatStream?

I think that this solution should improve its integrations. This part of the solution could be bigger and moved into the no-code direction. Less code in integration would be nice when building blocks.

See all answers

What is your primary use case for Anomali ThreatStream?

See all answers

What do you like most about AT&T AlienVault USM?

The most valuable feature of the solution is the ease of deployment that it provides to users. The integrations that the product has with third-party applications are useful.

See all answers

What is your experience regarding pricing and costs for AT&T AlienVault USM?

The price is really variable depending on what tier the customer is subscribing to. I think USM Anywhere recently started a 125, a 250, and then 500 and 1000 tier. So it depends on the organization...

See all answers

What needs improvement with AT&T AlienVault USM?

The only issue that you need to bypass is the issue with integration with some other log sources, some other application security applications. The issue is still present. The process of collecting...

See all answers

Comparisons

ThreatConnect Threat Intelligence Platform (TIP) vs Anomali

Compared 30% of the time

Recorded Future vs Anomali

Compared 20% of the time

ThreatQ vs Anomali

Compared 13% of the time

Microsoft Defender Threat Intelligence vs Anomali

Compared 6% of the time

Palo Alto Networks AutoFocus vs Anomali

Compared 5% of the time

More Anomali Competitors

Wazuh vs USM Anywhere

Compared 17% of the time

AlienVault OSSIM vs USM Anywhere

Compared 17% of the time

Splunk Enterprise Security vs USM Anywhere

Compared 10% of the time

IBM Security QRadar vs USM Anywhere

Compared 9% of the time

Microsoft Sentinel vs USM Anywhere

Compared 9% of the time

More USM Anywhere Competitors

Product Reports

Buyer's Guide

Extended Detection and Response (XDR)

October 2024

Download Anomali product report

Buyer's Guide

USM Anywhere

September 2024

Download USM Anywhere product report

Also Known As

Match, Lens, ThreatStream, STAXX

AT&T AlienVault USM, AlienVault, AlienVault USM, Alienvault Cybersecurity

Learn More

Anomali

Video not available

AT&T

Overview

Anomali provides threat intelligence solutions offering comprehensive insights to enhance security operations. It helps detect, identify, and respond to cyber threats more efficiently.

Anomali is designed to integrate seamlessly with existing security frameworks, making it indispensable for detecting advanced threats. Users find it valuable for its ability to provide threat visibility, leveraging a vast array of threat intelligence sources. Its analytical capabilities enable organizations to prioritize and respond to threats swiftly. The flexibility of Anomali to fit into diverse IT ecosystems is a notable strength, though some users suggest improvements in report customization features for increased utility in specific contexts.

What are the key features of Anomali?

Threat Intelligence Platform: Aggregates threat data from multiple sources for enhanced threat visibility.
Incident Management: Streamlines the response process with comprehensive incident tracking.
Integrations: Works with a wide range of security tools for cohesive security operations.
Custom Alerting: Offers alerts that can be tailored to specific threat profiles.

What benefits should users expect from Anomali?

Enhanced Decision Making: Provides actionable intelligence to improve response strategies.
Improved Threat Detection: Accelerates the identification of potential threats before they impact operations.
Reduced Response Time: Facilitates quicker analysis and resolution of security incidents.

Anomali is effectively employed across various industries, enhancing cybersecurity frameworks in finance, healthcare, and government sectors. Its adaptability to different industry requirements makes it a versatile choice for strengthening threat detection and response capabilities.

USM Anywhere centralizes security monitoring of networks and devices in the cloud, on premises, and in remote locations, helping you to detect threats virtually anywhere.

Discover

Network asset discovery
Software & services discovery
AWS asset discovery
Azure asset discovery
Google Cloud Platform asset discovery

Analyze

SIEM event correlation, auto-prioritized alarms
User activity monitoring
Up to 90-days of online, searchable events

Detect

Cloud intrusion detection (AWS, Azure, GCP)
Network intrusion detection (NIDS)
Host intrusion detection (HIDS)
Endpoint Detection and Response (EDR)

Respond

Forensics querying
Automate & orchestrate response
Notifications and ticketing

Assess

Vulnerability scanning
Cloud infrastructure assessment
User & asset configuration
Dark web monitoring

Report

Pre-built compliance reporting templates
Pre-built event reporting templates
Customizable views and dashboards
Log storage

Sample Customers

Bank of England, First Energy, UBISOFT, Bank of Hope, Blackhawk Network

Abel & Cole, Bank of Ireland, Bluegrass Cellular, CareerBuilder, Claire's, Hays Medical Center, Hope International, McCurrach, McKinsey & Company, Party Delights, Pepco Holdings, Richland School District, Ricoh, SaveMart, Shake Shack, Steelcase, TaxAct, Taylor Morrison, Vonage and Zoom

Buyer's Guide

Extended Detection and Response (XDR)

October 2024

Download Free Report

Find out what your peers are saying about CrowdStrike, SentinelOne, Darktrace and others in Extended Detection and Response (XDR). Updated: October 2024.

DOWNLOAD NOW

813,418 professionals have used our research since 2012.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.