Try our new research platform with insights from 80,000+ expert users

Netwrix Auditor vs USM Anywhere comparison

Netwrix and LevelBlue are both solutions in the Security Information and Event Management (SIEM) category. Netwrix is ranked #33 with an average rating of 9.0, while LevelBlue is ranked #31 with an average rating of 7.3. Netwrix holds a 0.3% mindshare in SIEM, compared to LevelBlue’s 0.9% mindshare. Additionally, 100% of Netwrix users are willing to recommend the solution, compared to 92% of LevelBlue users who would recommend it.
Netwrix Auditor
Read 7 Netwrix Auditor reviews
  • 244 Views
  • 148 Comparison Views
100% willing to recommend
USM Anywhere
Read 115 USM Anywhere reviews
  • 2,186 Views
  • 1,503 Comparison Views
92% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

USM Anywhere and Netwrix Auditor are both recognized solutions, but their strengths vary. Users appreciate the pricing and support of USM Anywhere, but Netwrix Auditor's features make it a superior choice despite its higher cost.

Features: USM Anywhere is valued for its comprehensive threat detection capabilities, easy integration with other tools, and competitive pricing. Netwrix Auditor stands out for its detailed auditing, advanced reporting functionalities, and extensive data visibility.

Room for Improvement: USM Anywhere users suggest improvements in reporting, dashboard customization, and interface design. Netwrix Auditor users seek enhancements in scalability, performance under high loads, and user interface speed.

Ease of Deployment and Customer Service: USM Anywhere is praised for a straightforward deployment process and responsive customer service. Netwrix Auditor users report a smooth deployment process but have mixed feedback on customer service responsiveness.

Pricing and ROI: USM Anywhere users find its pricing competitive with a good return on investment. Netwrix Auditor, while more expensive, is deemed worth the cost due to its superior features and functionality.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Netwrix Auditor vs. USM Anywhere Report (Updated: April 2025).
Buyer's Guide
Netwrix Auditor vs. USM Anywhere
April 2025
Download the complete report
Helped 848,253 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Netwrix Auditor
Ranking in Security Information and Event Management (SIEM)
33rd
Average Rating
9.2
Reviews Sentiment
7.7
Number of Reviews
7
Ranking in other categories
GRC (10th), Identity and Access Management as a Service (IDaaS) (IAMaaS) (18th), Active Directory Management (3rd)
USM Anywhere
Ranking in Security Information and Event Management (SIEM)
31st
Average Rating
8.4
Reviews Sentiment
7.0
Number of Reviews
115
Ranking in other categories
Log Management (42nd), Endpoint Detection and Response (EDR) (53rd), Compliance Management (12th)
 

Mindshare comparison

As of April 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Netwrix Auditor is 0.3%, up from 0.0% compared to the previous year. The mindshare of USM Anywhere is 0.9%, down from 2.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM)
 

Featured Reviews

Mohamed Tantawy - PeerSpot reviewer
Can track every admin action in large environments and includes AI modules to detect and prevent unauthorized changes
The initial setup of Netwrix Auditor was straightforward. Some functions require agents while others are agentless, simplifying implementation. It consumed minimal server and client resources, and the wizard-based console made it simple to deploy with the help of architectural teams. All required ports were in place, and they covered all critical services and databases effectively. I would rate the easiness of the initial setup as a nine out of ten. The deployment of Netwrix Auditor took around three weeks, mainly due to the preparation of the environment and servers. The deployment process involved actions such as preparing virtual servers and building databases. Once deployed, it took only about a week to complete. Third-party consultants assisted us with deployment. Only one or two engineers were needed for deployment and maintenance, which could be handled remotely with minimal complexity.
Read full review
Kris Nawani - PeerSpot reviewer
Offers complete coverage without the need to install additional software
USM Anywhere is used for threat detection and investigation. It provides a solution with built-in threat intelligence and various other investigation tools The solution offers complete coverage without the need to install additional software, as it is maintained by the vendor. It helps in saving…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I am impressed with the tool's reporting feature and notifications."
"The most valuable feature is the real-time monitoring."
"It maintains audit logs for the duration of time that you wish, as long as you have the storage capacity to do so."
"Netwrix provides features that no other solution on the market does."
"The most valuable features of Netwrix Auditor are its affordability compared to similar products and its comprehensive monitoring of admin activities."
"I have found user behavior analysis and the ability to run risk assessments important features. Additionally, the interface and online documentation are very good."
"What I find the most valuable about Netwrix Auditor is the way it shows risk. The reports are very clear."
"Log-monitoring and alerting enable us to know when things happen that we need to know about."
"The USM is a work horse, no matter what devices or the number of logs we throw at it, the system processes them in real time, correlates the events, and alerts on only events that need human review."
"The asset discovery and inventory capabilities in USM Anywhere is quite good."
"Ease of deployment across various environments."
"There are multiple tools for information security. The solution includes all the latest advances on the network and host intrusion detection systems."
"This solution can completely detect and prevent incidents on your network."
"Vulnerability scanning helped out shortcomings of what was not patched in the past and what needed to be patched. This assisted with fine tuning the environment for compliance."
"It allows for a lot of out-of-the-box features: vuln scanning, HIDS/HIPS, and IDS."
More USM Anywhere pros
 

Cons

"There is room for improvement with the introduction of AI functionality."
"I expect usability features to become more refined over time. I'm interested to see how it evolves and continues to improve."
"If you buy direct, there is a minimum of 150 licenses that must be procured. The price point and barrier of entry is a little bit higher than it would be if you purchased the solution from an authorized reseller partner, rather than buying it and managing yourself."
"An improvement would be if there was an another way to manage the logs besides email because it's not so practical."
"When there are issues I would like remediation to be in one place."
"There is room for improvements when it comes to the licensing."
"The solution lacks self-service on password reset. It also needs to improve its scalability."
"The Linux compatibility of this solution could be improved."
"Search performance can be slow. The Raw Logs feature is painfully slow. And if we're talking about the newer, the Anywhere product, you can't even schedule reports on the thing. There are probably a dozen other features I'd really like to see there, but that would be one of the biggies."
"I've been told that AlienVault doesn't have a full version of NES running in there, but I'm not sure if that's accurate or if my engineer made it that way. I'm not sure he was completely honest either because we had NES in the environment before. Those tools could be improved because AlienVault is a SIEM, and it added all these other features."
"We would like more plugins. This being the main point of improvement which would benefit the users."
"The reporting aspect could be improved. While there are a lot of different options available, there are still pieces which are missing."
"AT&T AlienVault USM can improve searchable data. It should be available for more than 90 days. If you need more than 90 days of data, you have to put a request and they give you raw data, which is not easy to search. A good addition would be to allow users to search data older than 90 days."
"Their threat intelligence platform needs to be broadened. They should integrate it with more threat intelligence platforms. For the threat feed that they get from open intelligence, I would like them to add a few premium threat intelligence platforms. They can provide a bundle in which AlienVault has the threat intelligence background of other premium products."
"Source material on the forums to be more up-to-date with the changes happening within the product. Forums being out-of-date with information due to the changes makes troubleshooting a little more difficult - specific to the HIDS agents."
"The solution already has quite good tools, however, they need better integration tools for linking with Office 365, Google Suite, and so on."
More USM Anywhere cons
 

Pricing and Cost Advice

"This solution is reasonably priced. I would rate it a nine out of ten."
"The tool's price is fair."
"There is a license for this solution and we are on an annual license. The price is reasonable."
"It's affordable for most customers."
"The pricing is a good value. The key thing is that for the new product, the licensing of it, is subscription-based and it's based on data. Clients need to be really careful when thinking about that, because odds are they're going to need to put a lot more data into it than what they initially estimate, which is going to drive their subscription costs up."
"AT&T AlienVault USM is an expensive solution and we pay for the license and the support separately. We paid for the license and support for three years."
"I don't know exactly, but I know it is based on the number of logs and the retention duration, such as 30 days or something like that. So, the smallest package is about 500 a month for 30 days of logs. There is a virtual machine. You need resources for it. It is a log collecting VM. They provide the software, and you just have to load a virtual machine. So, you're going to incur some CPU RAM and storage for wherever this log collecting appliance is running, which typically is in our cloud and on our platform for the customer."
"The price of this solution is reasonable, which is one of the reasons why we selected it over other solutions."
"It's saved security costs."
"They are a little more expensive than Microsoft."
"Do the one month trial and try to work out the kinks during it, as it has free support and service hours."
More USM Anywhere pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
848,253 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
14%
Manufacturing Company
10%
Computer Software Company
9%
Government
8%
Computer Software Company
19%
Financial Services Firm
8%
Comms Service Provider
7%
Educational Organization
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Netwrix Auditor?
The most valuable features of Netwrix Auditor are its affordability compared to similar products and its comprehensive monitoring of admin activities.
See all answers
What is your experience regarding pricing and costs for Netwrix Auditor?
The pricing of Netwrix Auditor varies based on the number of users and devices in our environment, but it is generally very cost-effective compared to other solutions. We don't pay for licenses sep...
See all answers
What needs improvement with Netwrix Auditor?
The solution currently meets my needs, but there is room for improvement with the introduction of AI functionality as suggested by the vendor. Additionally, expanding capabilities like database act...
See all answers
What do you like most about AT&T AlienVault USM?
The most valuable feature of the solution is the ease of deployment that it provides to users. The integrations that the product has with third-party applications are useful.
See all answers
What is your experience regarding pricing and costs for AT&T AlienVault USM?
The pricing is amazing and really cheap.
See all answers
What needs improvement with AT&T AlienVault USM?
There are scalability issues due to a 60 TB limit, which restricts its use for large customers like banks. It is also limited when used with bigger products and has complex password requirements.
See all answers
 

Comparisons

Quest Change Auditor for Active Directory vs Netwrix Auditor Logo
Quest Change Auditor for Active Directory vs Netwrix Auditor
Compared 20% of the time
Lepide vs Netwrix Auditor Logo
Lepide vs Netwrix Auditor
Compared 13% of the time
ManageEngine ADAudit Plus vs Netwrix Auditor Logo
ManageEngine ADAudit Plus vs Netwrix Auditor
Compared 13% of the time
SolarWinds Access Rights Manager vs Netwrix Auditor Logo
SolarWinds Access Rights Manager vs Netwrix Auditor
Compared 13% of the time
Tenable Identity Exposure vs Netwrix Auditor Logo
Tenable Identity Exposure vs Netwrix Auditor
Compared 8% of the time
More Netwrix Auditor Competitors
AlienVault OSSIM vs USM Anywhere Logo
AlienVault OSSIM vs USM Anywhere
Compared 27% of the time
Wazuh vs USM Anywhere Logo
Wazuh vs USM Anywhere
Compared 14% of the time
Splunk Enterprise Security vs USM Anywhere Logo
Splunk Enterprise Security vs USM Anywhere
Compared 12% of the time
Rapid7 InsightIDR vs USM Anywhere Logo
Rapid7 InsightIDR vs USM Anywhere
Compared 11% of the time
IBM Security QRadar vs USM Anywhere Logo
IBM Security QRadar vs USM Anywhere
Compared 8% of the time
More USM Anywhere Competitors
 

Product Reports

Buyer's Guide
Netwrix Auditor
March 2025
Netwrix Auditor reportDownload Netwrix Auditor product report
Buyer's Guide
USM Anywhere
March 2025
USM Anywhere reportDownload USM Anywhere product report
 

Also Known As

No data available
AT&T AlienVault USM, AlienVault, AlienVault USM, Alienvault Cybersecurity
 

Overview

Netwrix Auditor is a security-focused solution that monitors IT environments by tracking changes, ensuring compliance, and enhancing visibility into user activities. It offers detailed auditing, real-time alerts, and robust reporting tools. Its intuitive interface and comprehensive features boost efficiency, productivity, and organizational growth.
Netwrix

USM Anywhere centralizes security monitoring of networks and devices in the cloud, on premises, and in remote locations, helping you to detect threats virtually anywhere.

Discover

  • Network asset discovery
  • Software & services discovery
  • AWS asset discovery
  • Azure asset discovery
  • Google Cloud Platform asset discovery

Analyze

  • SIEM event correlation, auto-prioritized alarms
  • User activity monitoring
  • Up to 90-days of online, searchable events

Detect

  • Cloud intrusion detection (AWS, Azure, GCP)
  • Network intrusion detection (NIDS)
  • Host intrusion detection (HIDS)
  • Endpoint Detection and Response (EDR)

Respond

  • Forensics querying
  • Automate & orchestrate response
  • Notifications and ticketing

Assess

  • Vulnerability scanning
  • Cloud infrastructure assessment
  • User & asset configuration
  • Dark web monitoring

Report

  • Pre-built compliance reporting templates
  • Pre-built event reporting templates
  • Customizable views and dashboards
  • Log storage
LevelBlue
 

Sample Customers

AT&T, SanDisk, Siemens, Verizon, Electrolux, Allianz, Societe Generale
Abel & Cole, Bank of Ireland, Bluegrass Cellular, CareerBuilder, Claire's, Hays Medical Center, Hope International, McCurrach, McKinsey & Company, Party Delights, Pepco Holdings, Richland School District, Ricoh, SaveMart, Shake Shack, Steelcase, TaxAct, Taylor Morrison, Vonage and Zoom
Buyer's Guide
Netwrix Auditor vs. USM Anywhere
April 2025
Free Report: Netwrix Auditor vs. USM Anywhere
Find out what your peers are saying about Netwrix Auditor vs. USM Anywhere and other solutions. Updated: April 2025.
DOWNLOAD NOW
848,253 professionals have used our research since 2012.
See our Netwrix Auditor vs. USM Anywhere report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.