Securonix Next-Gen SIEM vs USM Anywhere comparison

Securonix Solutions and LevelBlue are both solutions in the Security Information and Event Management (SIEM) category. Securonix Solutions is ranked #13 with an average rating of 8.4, while LevelBlue is ranked #30 with an average rating of 7.3. Securonix Solutions holds a 1.3% mindshare in SIEM, compared to LevelBlue’s 1.2% mindshare. Additionally, 96% of Securonix Solutions users are willing to recommend the solution, compared to 92% of LevelBlue users who would recommend it.

Securonix Next-Gen SIEM

Read 31 Securonix Next-Gen SIEM reviews

4,707 Views
1,579 Comparison Views

96% willing to recommend

USM Anywhere

Read 115 USM Anywhere reviews

2,934 Views
2,043 Comparison Views

92% willing to recommend

Securonix Next-Gen SIEM

USM Anywhere

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 18, 2024

Securonix Next-Gen SIEM and USM Anywhere are two competing products in the SIEM market. Securonix seems to have the upper hand in deployment, while USM Anywhere stands out in terms of feature richness.

Features: Securonix Next-Gen SIEM offers advanced threat detection, robust anomaly detection, and advanced analytics. USM Anywhere includes comprehensive threat detection, vulnerability scanning, and integrated compliance management.

Room for Improvement: Securonix Next-Gen SIEM users suggest needing more intuitive navigation, better documentation, and improvements in performance optimization. USM Anywhere users mention the need for performance optimization, more seamless integration with third-party tools, and enhanced user interface.

Ease of Deployment and Customer Service: Securonix Next-Gen SIEM has a straightforward deployment process, although initial setup can be complex. USM Anywhere's cloud-based deployment simplifies installation, but customer service experiences are mixed.

Pricing and ROI: Securonix Next-Gen SIEM has higher setup costs but justifies the expense through advanced features. USM Anywhere offers competitive pricing and satisfactory ROI.

To learn more, read our detailed Securonix Next-Gen SIEM vs. USM Anywhere Report (Updated: January 2025).

Buyer's Guide

Securonix Next-Gen SIEM vs. USM Anywhere

January 2025

Download the complete report

Helped 831,158 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Securonix Next-Gen SIEM

Ranking in Security Information and Event Management (SIEM)

13th

Average Rating

8.6

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Identity Threat Detection and Response (ITDR) (9th)

USM Anywhere

Ranking in Security Information and Event Management (SIEM)

30th

Average Rating

8.4

Reviews Sentiment

7.0

Number of Reviews

115

Ranking in other categories

Log Management (38th), Endpoint Detection and Response (EDR) (52nd), Compliance Management (12th)

Mindshare comparison

As of January 2025, in the Security Information and Event Management (SIEM) category, the mindshare of Securonix Next-Gen SIEM is 1.3%, down from 1.8% compared to the previous year. The mindshare of USM Anywhere is 1.2%, down from 2.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Security Information and Event Management (SIEM)

Featured Reviews

Ibrahim Albalawi

SOC Leader at a tech consulting company with 51-200 employees

Less false positives, good detection and integration capabilities, and good pricing

The incident response area should be improved. It is more difficult than other products, but overall, it is good. The platform has a lot of options and functionality. So, you need to check almost everything. For new engineers or people who don’t have much experience with this kind of platform, it is a bit difficult, but for experienced engineers, it is not that difficult. When you have been doing a lot of work for about one or two hours, and you have a lot of tabs open, it slows down or gets stuck. There is a delay of 10 to 15 seconds in opening tabs or dashboards. I don't know why this happens, but for me, it is not a big issue. I just wait, and that's all.

Read full review

Kris Nawani

Co-Founder/Director at Bangkok MSP Company Limited

Offers complete coverage without the need to install additional software

USM Anywhere is used for threat detection and investigation. It provides a solution with built-in threat intelligence and various other investigation tools The solution offers complete coverage without the need to install additional software, as it is maintained by the vendor. It helps in saving…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The detection of threats and reduction of false positive alarms as compared to other solutions are valuable features. It has improved threat detection response and reduced a lot of noise from false positives as compared to our previous SIEM solutions."

"There aren't any positive aspects of the solution. It was a complete failure. There are no redeeming features."

"The second feature is that within the SNYPR product there is a functionality called Spotter. We use that for link analysis diagrams and to run the stats command. That's extremely useful because it replaces a tedious, manual process we used to use, using Microsoft Excel and a couple of other methods, to bring data together."

"One of the most valuable features it has is the thread chaining. One of the common issues that we always had was the number of anomalies that we used to get and the number of alerts that we used to get. But with this approach of thread chaining, we've found the false-positive rate has decreased very significantly. That was something that we never could have achieved before."

"The most valuable feature is that it works on user behavior and event rarities."

"Risk scoring was nice. We could exactly see which user had the highest risk score, and then we could pick it up and work on it."

"We can select the resource group name or functionality directly of which type of security tool logs we want. We don't need to write the query for that; we just have to select."

"The feature that I have found most valuable is their analytics platform where they have the open security data-link, which they introduced. This is typically different from the other vendors."

More Securonix Next-Gen SIEM pros

"The asset management of nodes has been a large help in terms of being able to track applications with more detail and have changes made being monitored into one source."

"The Event Correlation and vulnerability scans have been the most useful. As a 24/7 SOC, we use the incoming alarms to give an overview of suspicious traffic going through the network. It's easy to look at the correlated events and see the broad picture of traffic for that customer. Vulnerability scans are good for providing patch and remediation guidelines to keep customer systems secure."

"Easy to use, scalable, stable, and very intuitive platform that provides protection against security threats."

"Asset discovery and vulnerability scanner are good features. The integration between this solution and OTX, which is an AlienVault platform for Open Threat Exchange, is also a valuable feature. It is also quick and easy to deploy, so you can quickly engage with a customer's environment."

"The most valuable feature is vulnerability management because it gives you insight into your environment to know what systems need to be updated or patched."

"AlienVault's reporting is good. I like that vulnerability assessment is part of the solution, and the UI is intuitive. Also, the overhead is low, which is to say we don't need a dedicated SOC team to manage and analyze things constantly. We're a small company that doesn't have those resources."

"It provides a single pane of glass view, coupled with a whole security ecosystem. The ability to manage everything from a central point, including vulnerability assessments, asset management - including the services provided by the various hosts, NIDS, HIDS, etc. - provides a very efficient way of dealing with things."

"The vulnerability manager and the file integration are very good."

More USM Anywhere pros

Cons

"We thought they were going to be a great product, however, they're actually not great at all as an MSP."

"It could be improved a little bit more for admin users. There should be more administrative options related to security for admin users. For example, for forensic purposes, the admin should be able to stop a specific user from erasing some information. I would be helpful in certain situations, such as during an internal fraud."

"There is room for improvement in the product's integration with ServiceNow and in the reporting features."

"Sometimes, the injectors lag and are not loading. It would be nice if that could be improved."

"It takes too long to generate Spotter reports. For example, a 90-day report is around 100 megabytes. That takes a while, but a one-day report can be generated in a few seconds. We would be happy if they sped up the process."

"Securonix could open up information regarding the indicators of compromise or cyber-threat intelligence database that they use. The idea is that they share what threats they are detecting."

"The solution could provide more automation."

"The analytics-driven approach for finding sophisticated threats and reducing false positives is positive and good, but the platform requires a more dynamic concept. Everything is a bit static."

More Securonix Next-Gen SIEM cons

"This solution could be easier to use."

"The price of AT&T AlienVault USM could be reduced."

"We would like more plugins. This being the main point of improvement which would benefit the users."

"There is room for improvement in Log parsing."

"It would be nice to see some machine learning and monitoring of the configuration in network devices."

"It should be able to communicate with other security solutions to stop threats."

"I've been using it just for my own personal upskilling in terms of how the product works. At the moment, it is pretty straightforward and simple, and it is working how it is supposed to. The feedback would come once it is deployed to customer sites. They'll be using it on a more frequent basis, and that's when the feedback would come in terms of the areas in which they're facing issues or are looking for simplicity."

"Pay attention to false-positive event automatic correlations."

More USM Anywhere cons

Pricing and Cost Advice

"I rate the pricing an eight on a scale of one to ten, where one is cheap, and ten is very expensive. It is a pretty expensive tool."

"We went in on a three-year agreement which has an annual licensing fee, based upon the number of people that we're monitoring. There have not been any additional costs to the standard licensing fees."

"A good thing about Securonix is that they don't charge by volume of data or number of devices... They charge by the number of employees, which is a much more predictable number for me, versus data. Our costs are in the $100,000 range over a three-year subscription."

"Compared to other known brands in the industry, the overall cost of the licenses is a bit higher than what customers expect."

"We have a license from our 5.0, so that license just continued. We paid them the extra cloud-hosting costs for a year which were about $300,000."

"Compared to other brands it seems more affordable to us."

"I had heard that it was much cheaper than Splunk and some of the other tools, and they gave us a nice package with support. They accommodated the number of users and support very well."

"The pricing is good, but by adding more things, the licensing becomes more complex because an EPS license fluctuates a lot. This licensing concept is going to be problematic in the long run."

More Securonix Next-Gen SIEM pricing and cost advice

"Its price is much lower than McAfee ESM."

"It's affordable for most customers."

"So far, I feel the product's pricing is a good value. The technology is decent. You get what you pay for. I think it's fair."

"It has good pricing."

"Negotiate the best package for your environment."

"It's saved security costs."

"Its price is in the medium to upper range."

"It is affordable, and it also has many features that the premium products such as ArcSight and QRadar have. It is a very good platform for a SIEM solution. Everything is included in the price."

More USM Anywhere pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

831,158 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

21%

Financial Services Firm

11%

Manufacturing Company

Government

Computer Software Company

19%

Educational Organization

Financial Services Firm

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Which is the best SIEM tool for a mid-sized financial services firm: Arcsight or Securonix?

In my market, a lot of financial companies had or have an ArcSight installation. Just because in former times it was pretty good. Now a lot of them are looking for a more effective solution due to ...

See all answers

What is your primary use case for Securonix Security Analytics?

We use Securonix Next-Gen SIEM as a SIEM, security incident and event management solution in our organization.

See all answers

What do you like most about Securonix Next-Gen SIEM?

The two major features of this product we extensively use are the UEBA capability and the multi-tenant approach with the centralized data logs system. Customers are very happy with these features.

See all answers

What do you like most about AT&T AlienVault USM?

The most valuable feature of the solution is the ease of deployment that it provides to users. The integrations that the product has with third-party applications are useful.

See all answers

What is your experience regarding pricing and costs for AT&T AlienVault USM?

The pricing is amazing and really cheap.

See all answers

What needs improvement with AT&T AlienVault USM?

There are scalability issues due to a 60 TB limit, which restricts its use for large customers like banks. It is also limited when used with bigger products and has complex password requirements.

See all answers

Comparisons

IBM Security QRadar vs Securonix Next-Gen SIEM

Compared 12% of the time

Microsoft Sentinel vs Securonix Next-Gen SIEM

Compared 12% of the time

Splunk Enterprise Security vs Securonix Next-Gen SIEM

Compared 9% of the time

Sumo Logic Security vs Securonix Next-Gen SIEM

Compared 8% of the time

Wazuh vs Securonix Next-Gen SIEM

Compared 6% of the time

More Securonix Next-Gen SIEM Competitors

AlienVault OSSIM vs USM Anywhere

Compared 21% of the time

Wazuh vs USM Anywhere

Compared 17% of the time

Splunk Enterprise Security vs USM Anywhere

Compared 11% of the time

IBM Security QRadar vs USM Anywhere

Compared 9% of the time

CrowdStrike Falcon vs USM Anywhere

Compared 9% of the time

More USM Anywhere Competitors

Product Reports

Buyer's Guide

Securonix Next-Gen SIEM

December 2024

Download Securonix Next-Gen SIEM product report

Buyer's Guide

USM Anywhere

December 2024

Download USM Anywhere product report

Also Known As

Securonix Security Analytics

AT&T AlienVault USM, AlienVault, AlienVault USM, Alienvault Cybersecurity

Learn More

Securonix Solutions

Video not available

LevelBlue

Overview

Securonix Next-Gen SIEM is a security information and event management solution designed to provide advanced threat detection, response, and compliance capabilities. It leverages machine learning and big data analytics to offer a comprehensive security platform for modern enterprises.

Securonix Next-Gen SIEM utilizes advanced analytics and machine learning to detect complex threats that traditional SIEM solutions might miss. Its architecture is built on Hadoop, enabling scalability and the processing of large volumes of data in real-time. This allows organizations to gain deep insights into security incidents, prioritize threats, and automate response actions. The solution also includes behavior analytics to detect insider threats and unknown attacks, integrating seamlessly with existing IT infrastructure.

What are the critical features of Securonix Next-Gen SIEM?

Advanced Threat Detection: Uses machine learning algorithms to identify sophisticated threats and reduce false positives.
Behavior Analytics: Analyzes user and entity behavior to detect insider threats and anomalies.
Scalable Architecture: Built on Hadoop, it scales to handle large data volumes, providing real-time analytics.
Automated Response: Automates incident response to mitigate threats quickly and efficiently.
Integration Capabilities: Easily integrates with various IT and security tools for comprehensive coverage.

What is the ROI expectations?

Improved Threat Detection: Enhanced ability to detect and respond to advanced threats, reducing risk.
Operational Efficiency: Automation of repetitive tasks allows security teams to focus on more critical activities.
Cost Savings: Scalability and efficient data processing reduce the need for additional hardware and resources.
Compliance Support: Helps in meeting regulatory compliance requirements through detailed reporting and monitoring.

Securonix Next-Gen SIEM is implemented across various industries, including finance, healthcare, and retail. Its flexibility and advanced analytics capabilities make it suitable for environments with complex security needs. In finance, it helps detect fraud, while in healthcare, it ensures patient data security. In retail, it protects against data breaches and payment fraud.

In summary, Securonix Next-Gen SIEM offers advanced threat detection, scalability, and integration capabilities, making it a robust solution for modern enterprises.

USM Anywhere centralizes security monitoring of networks and devices in the cloud, on premises, and in remote locations, helping you to detect threats virtually anywhere.

Discover

Network asset discovery
Software & services discovery
AWS asset discovery
Azure asset discovery
Google Cloud Platform asset discovery

Analyze

SIEM event correlation, auto-prioritized alarms
User activity monitoring
Up to 90-days of online, searchable events

Detect

Cloud intrusion detection (AWS, Azure, GCP)
Network intrusion detection (NIDS)
Host intrusion detection (HIDS)
Endpoint Detection and Response (EDR)

Respond

Forensics querying
Automate & orchestrate response
Notifications and ticketing

Assess

Vulnerability scanning
Cloud infrastructure assessment
User & asset configuration
Dark web monitoring

Report

Pre-built compliance reporting templates
Pre-built event reporting templates
Customizable views and dashboards
Log storage

Sample Customers

Dtex Systems, Pfizer, Western Union, Harris, ITG

Abel & Cole, Bank of Ireland, Bluegrass Cellular, CareerBuilder, Claire's, Hays Medical Center, Hope International, McCurrach, McKinsey & Company, Party Delights, Pepco Holdings, Richland School District, Ricoh, SaveMart, Shake Shack, Steelcase, TaxAct, Taylor Morrison, Vonage and Zoom

Buyer's Guide

Securonix Next-Gen SIEM vs. USM Anywhere

January 2025

Free Report: Securonix Next-Gen SIEM vs. USM Anywhere

Find out what your peers are saying about Securonix Next-Gen SIEM vs. USM Anywhere and other solutions. Updated: January 2025.

DOWNLOAD NOW

831,158 professionals have used our research since 2012.

See our Securonix Next-Gen SIEM vs. USM Anywhere report.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.