Try our new research platform with insights from 80,000+ expert users

USM Anywhere vs i-SIEM [EOL] comparison

Cybereason and LevelBlue are both solutions in the Security Information and Event Management (SIEM) category. Additionally, 100% of Cybereason users are willing to recommend the solution, compared to 92% of LevelBlue users who would recommend it.
i-SIEM [EOL]
Read 1 i-SIEM [EOL] review
    100% willing to recommend
    USM Anywhere
    Read 115 USM Anywhere reviews
    • 2,186 Views
    • 1,503 Comparison Views
    92% willing to recommend
     

    Comparison Buyer's Guide

    Download the report
    Executive SummaryUpdated on Apr 20, 2025

    USM Anywhere and i-SIEM compete in security information and event management. USM Anywhere has the upper hand due to its ease of use and customer support, while i-SIEM offers enhanced scalability and advanced features for complex deployments.

    Features: USM Anywhere provides comprehensive threat detection, unified security management, and integrated threat intelligence. It is known for its intuitive platform. i-SIEM delivers robust data processing capabilities and is suitable for larger environments due to its enhanced scalability and powerful data handling.

    Ease of Deployment and Customer Service: USM Anywhere is recognized for straightforward cloud-based deployment and responsive customer service, making it easy to implement and maintain. i-SIEM, while offering more customization, has a complex setup that can pose challenges.

    Pricing and ROI: USM Anywhere generally offers a more favorable initial setup cost with a steady ROI due to its user-friendly interface. i-SIEM requires a significant initial investment but can achieve high ROI in large-scale operations with its advanced capabilities.

    DOWNLOAD THE COMPLETE REPORT
    To learn more, read our detailed Security Information and Event Management (SIEM) Report (Updated: April 2025).
    Buyer's Guide
    Security Information and Event Management (SIEM)
    April 2025
    Download the complete report
    Helped 849,190 peers since 2012

    Review summaries and opinions

    We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
     

    Categories and Ranking

    i-SIEM [EOL]
    Average Rating
    9.0
    Number of Reviews
    1
    Ranking in other categories
    No ranking in other categories
    USM Anywhere
    Average Rating
    8.4
    Reviews Sentiment
    7.0
    Number of Reviews
    115
    Ranking in other categories
    Log Management (42nd), Security Information and Event Management (SIEM) (31st), Endpoint Detection and Response (EDR) (53rd), Compliance Management (12th)
     

    Featured Reviews

    DC
    The alert fatigue and false positive rates have just plummeted, which is really exciting.
    empow has a few areas of improvement as with any other technology, such as continuing to drive innovation in the dashboard. While we've been extremely impressed with the dashboard's ease of use, flexibility, ability to drill down deeply, and focus very intently on an area of interest, there will always be opportunities to be more innovative and open it up to a wider audience than just the operations group, for example. With reporting, there is always a desire to have custom reporting for every client of empow. Relative to keeping up with the sheer pace of cloud-native technologies, it should provide more options for clients to deploy their technologies in unique ways. This is an area that I recommend that they maintain focus.
    Read full review
    Kris Nawani - PeerSpot reviewer
    Offers complete coverage without the need to install additional software
    USM Anywhere is used for threat detection and investigation. It provides a solution with built-in threat intelligence and various other investigation tools The solution offers complete coverage without the need to install additional software, as it is maintained by the vendor. It helps in saving…
    Read full review

    Quotes from Members

    We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
     

    Pros

    "As a result of the automation, we are able to manage SIEM with a small security team. I'm in a unique position where we have been growing the security organization quite rapidly over the last three and a half years. But, as a direct result of the empow transition and legacy collection of tools towards the empow platform, we've been able to keep that head count flat. We've been able to redirect a lot of the security team's time away from the wash, rinse, repeat activities of responding to alarms where we have a high degree of confidence that they will be false positives, adjusting the rules accordingly. This can be a bit frustrating for the analyst when they have to spend hours a day dealing with these types of probable false positives. So, it has helped not only us keep our headcount flat relative to the resources necessary to provide the assurances that our executives expect of us for monitoring, but allows our analyst team to spend the majority of their time doing what they love. They are spending their time meaningfully with a higher degree of confidence and enjoying getting into the incident response type activity."
    "AlienVault's reporting is good. I like that vulnerability assessment is part of the solution, and the UI is intuitive. Also, the overhead is low, which is to say we don't need a dedicated SOC team to manage and analyze things constantly. We're a small company that doesn't have those resources."
    "Asset discovery and vulnerability scanner are good features. The integration between this solution and OTX, which is an AlienVault platform for Open Threat Exchange, is also a valuable feature. It is also quick and easy to deploy, so you can quickly engage with a customer's environment."
    "In terms of monitoring, my best feature would be the monitoring of components across the network. It monitors the respective nodes and any new node that comes onto the network and provides reports. The reporting dashboards are really helpful for management in terms of making decisions around patch management."
    "The USM is a work horse, no matter what devices or the number of logs we throw at it, the system processes them in real time, correlates the events, and alerts on only events that need human review."
    "AT&T AlienVault USM is good for ELK Stack, the user experience is great because of its architecture. The ELK has a great performance and it has very good speed in the search and Kibana. Additionally, the visuals and dashboards and very nice and customizable."
    "The new cloud-based panel is excellent both for client review as well as for our SOC to review and respond to threats. It is much easier to configure and use than the previous solution from AlienVault.​"
    "We had used previous products and found AlienVault centralized the logging for our security."
    "It has allowed us to see what is happening on our servers."
    More USM Anywhere pros
     

    Cons

    "Relative to keeping up with the sheer pace of cloud-native technologies, it should provide more options for clients to deploy their technologies in unique ways. This is an area that I recommend that they maintain focus."
    "Support can be slow at times, but the quality is high. Posted knowledge base articles could use improvement."
    "I feel that some areas of improvement would be vulnerability scanning. We use a separate product that seems to do a much better job."
    "The only room for improvement I can mention is the initial installation procedures. I found that the online installation instructions for the product were missing important details, they lacked necessary steps."
    "USM Anywhere relies a lot on the community putting the data in. Often, you'll right-click on the attack, but nothing will be found. That's a weakness of it."
    "The dashboard could be improved as well as the level of customization."
    "I've been told that AlienVault doesn't have a full version of NES running in there, but I'm not sure if that's accurate or if my engineer made it that way. I'm not sure he was completely honest either because we had NES in the environment before. Those tools could be improved because AlienVault is a SIEM, and it added all these other features."
    "Search performance can be slow. The Raw Logs feature is painfully slow. And if we're talking about the newer, the Anywhere product, you can't even schedule reports on the thing. There are probably a dozen other features I'd really like to see there, but that would be one of the biggies."
    "The reporting is mediocre and is something that needs to be improved."
    More USM Anywhere cons
     

    Pricing and Cost Advice

    "I don't have to put up with any longer with these hypercomplex licensing agreements. Every time I want to add some additional reporting as a compliance centric or regulatory specific, e.g., GDPR, PCI, or Sarbanes-Oxley, many providers would have an additional license for this, which felt a bit ridiculous to me. With the simplified licensing architecture, there were no hidden "gotchas" down the road with empow. Something I have experienced with other providers that I've worked with in the past."
    "With a higher degree of fidelity in the alarms, we were able to avoid adding additional resources to our teams. We take into account the cost of security resources in the market and the significantly higher fidelity from the alarms that are being generated. This drove down our costs with our MSSP. It drove down my cost for human capital internally. It drove down our need to have multiple resources supporting the underlying infrastructure and health and maintenance of empow as a platform from several resources down to one. Therefore, human capital costs were significantly reduced. Our operating expenses were significantly reduced. Our capital costs were significantly reduced while tripling our capacity and our run rate reduced. It was almost a "too good to be true" situation. Fortunately, for us, it worked out very nicely."
    "QRadar, ArcSight and Splunk are some of the most expensive SIEM products out there in the market and not everyone has the budget to buy them. In such cases, AV USM is a very cost effective alternative."
    "We ran a few PoCs. The price and feature set were the best with AlienVault."
    "AT&T AlienVault USM is an expensive solution and we pay for the license and the support separately. We paid for the license and support for three years."
    "Use an MSSP instead. It is much cheaper."
    "​The price point is good.​"
    "It's saved security costs."
    "Its price is much lower than McAfee ESM."
    "I don't think the product's pricing is a good value because they try to raise the price 50 percent every year... AlienVault needs to understand that not all customers are huge enterprises... Their sales team is way too aggressive. The price they advertise is not always the price you get."
    More USM Anywhere pricing and cost advice
    report
    See which vendors are best for you
    Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
    See recommendations
    849,190 professionals have used our research since 2012.
     

    Top Industries

    By visitors reading reviews
    Computer Software Company
    16%
    Real Estate/Law Firm
    12%
    Financial Services Firm
    10%
    Legal Firm
    9%
    Computer Software Company
    20%
    Financial Services Firm
    9%
    Comms Service Provider
    7%
    Educational Organization
    7%
     

    Company Size

    By reviewers
    Large Enterprise
    Midsize Enterprise
    Small Business
    No data available
     

    Questions from the Community

    Ask a question
    Earn 20 points
    What do you like most about AT&T AlienVault USM?
    The most valuable feature of the solution is the ease of deployment that it provides to users. The integrations that the product has with third-party applications are useful.
    See all answers
    What is your experience regarding pricing and costs for AT&T AlienVault USM?
    The pricing is amazing and really cheap.
    See all answers
    What needs improvement with AT&T AlienVault USM?
    There are scalability issues due to a 60 TB limit, which restricts its use for large customers like banks. It is also limited when used with bigger products and has complex password requirements.
    See all answers
     

    Comparisons

    DNIF HYPERCLOUD vs i-SIEM [EOL] Logo
    DNIF HYPERCLOUD vs i-SIEM [EOL]
    Compared 100% of the time
    More i-SIEM [EOL] Competitors
    AlienVault OSSIM vs USM Anywhere Logo
    AlienVault OSSIM vs USM Anywhere
    Compared 28% of the time
    Wazuh vs USM Anywhere Logo
    Wazuh vs USM Anywhere
    Compared 14% of the time
    Splunk Enterprise Security vs USM Anywhere Logo
    Splunk Enterprise Security vs USM Anywhere
    Compared 12% of the time
    Rapid7 InsightIDR vs USM Anywhere Logo
    Rapid7 InsightIDR vs USM Anywhere
    Compared 11% of the time
    IBM Security QRadar vs USM Anywhere Logo
    IBM Security QRadar vs USM Anywhere
    Compared 8% of the time
    More USM Anywhere Competitors
     

    Product Reports

    Buyer's Guide
    Security Information and Event Management (SIEM)
    April 2025
    i-SIEM [EOL] reportDownload i-SIEM [EOL] product report
    Buyer's Guide
    USM Anywhere
    March 2025
    USM Anywhere reportDownload USM Anywhere product report
     

    Also Known As

    No data available
    AT&T AlienVault USM, AlienVault, AlienVault USM, Alienvault Cybersecurity
     

    Overview

    i-SIEM [EOL] delivers comprehensive monitoring and threat detection capabilities suitable for today's security challenges. It integrates with existing systems, enabling efficient threat analysis and response for knowledgeable users.

    i-SIEM [EOL] offers advanced security analytics and seamless integration with security infrastructure, making it a favored choice among technology professionals. Its intuitive design caters to efficient threat management. Users appreciate its capability to process large data volumes for timely threat detection and remediation. The platform ensures effective incident response through automated processes, assisting professionals in maintaining robust security postures.

    What are the key features of i-SIEM [EOL]?
    • Advanced Threat Detection: Utilizes real-time analytics for identifying potential security threats.
    • Integration Capabilities: Easily connects with diverse security tools for a cohesive security strategy.
    • Automated Incident Response: Facilitates swift responses to security incidents to mitigate risks.
    What benefits and ROI can i-SIEM [EOL] offer?
    • Reduced Security Risks: Proactively identifies and addresses vulnerabilities before exploitation.
    • Operational Efficiency: Automation reduces manual workload and minimizes error.
    • Cost-Effectiveness: Streamlines processes to lower overall security management costs.

    i-SIEM [EOL] is implemented across industries like finance, healthcare, and manufacturing, where security and compliance are critical. Its flexibility in handling specific industry requirements makes it suitable for enhancing security postures and operational efficiency.

    Cybereason

    USM Anywhere centralizes security monitoring of networks and devices in the cloud, on premises, and in remote locations, helping you to detect threats virtually anywhere.

    Discover

    • Network asset discovery
    • Software & services discovery
    • AWS asset discovery
    • Azure asset discovery
    • Google Cloud Platform asset discovery

    Analyze

    • SIEM event correlation, auto-prioritized alarms
    • User activity monitoring
    • Up to 90-days of online, searchable events

    Detect

    • Cloud intrusion detection (AWS, Azure, GCP)
    • Network intrusion detection (NIDS)
    • Host intrusion detection (HIDS)
    • Endpoint Detection and Response (EDR)

    Respond

    • Forensics querying
    • Automate & orchestrate response
    • Notifications and ticketing

    Assess

    • Vulnerability scanning
    • Cloud infrastructure assessment
    • User & asset configuration
    • Dark web monitoring

    Report

    • Pre-built compliance reporting templates
    • Pre-built event reporting templates
    • Customizable views and dashboards
    • Log storage
    LevelBlue
     

    Sample Customers

    University of Oklahoma, Donnelley
    Abel & Cole, Bank of Ireland, Bluegrass Cellular, CareerBuilder, Claire's, Hays Medical Center, Hope International, McCurrach, McKinsey & Company, Party Delights, Pepco Holdings, Richland School District, Ricoh, SaveMart, Shake Shack, Steelcase, TaxAct, Taylor Morrison, Vonage and Zoom
    Buyer's Guide
    Security Information and Event Management (SIEM)
    April 2025
    Download Free Report
    Find out what your peers are saying about Splunk, Wazuh, Microsoft and others in Security Information and Event Management (SIEM). Updated: April 2025.
    DOWNLOAD NOW
    849,190 professionals have used our research since 2012.

    We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.