Try our new research platform with insights from 80,000+ expert users

AWS Security Hub vs AlienVault OSSIM comparison

The compared AT&T and Amazon Web Services (AWS) solutions aren't in the same category. AT&T is ranked #12 in SIEM , with an average rating of 7.4, and holds a 1.6% mindshare in the category. Amazon Web Services (AWS) is ranked #13 in CSPM , with an average rating of 7.9, and holds a 3.5% mindshare. Additionally, 80% of AT&T users are willing to recommend the solution, compared to 89% of Amazon Web Services (AWS) users who would recommend it.
AlienVault OSSIM
Read 31 AlienVault OSSIM reviews
  • 4,307 Views
  • 4,221 Comparison Views
80% willing to recommend
AWS Security Hub
Read 26 AWS Security Hub reviews
  • 7,636 Views
  • 3,283 Comparison Views
89% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

AlienVault OSSIM and AWS Security Hub are often compared in the security information and event management category. AWS Security Hub generally has more advanced features and integrations, giving it an edge despite AlienVault OSSIM's competitive pricing and support.

Features: AlienVault OSSIM users like its open-source model, integrative functionality, and cost-effectiveness. AWS Security Hub is praised for its comprehensive security coverage, automated compliance checks, and extensive integration with AWS services.

Room for Improvement: AlienVault OSSIM should improve scalability, reporting efficiency, and integration capabilities. AWS Security Hub could benefit from better integration with non-AWS services, more intuitive policy management, and enhancements in user interface navigation.

Ease of Deployment and Customer Service: AlienVault OSSIM is straightforward to deploy but has mixed customer service feedback. AWS Security Hub has a more complex deployment process but strong customer service support and robust documentation.

Pricing and ROI: AlienVault OSSIM is favored for its cost-effectiveness due to its open-source model. AWS Security Hub, though more expensive, provides excellent ROI with its advanced security features and seamless AWS integration.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed AWS Security Hub vs. AlienVault OSSIM Report (Updated: October 2024).
Buyer's Guide
AWS Security Hub vs. AlienVault OSSIM
October 2024
Download the complete report
Helped 885,264 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AlienVault OSSIM
Average Rating
7.4
Reviews Sentiment
7.1
Number of Reviews
31
Ranking in other categories
Security Information and Event Management (SIEM) (12th)
AWS Security Hub
Average Rating
7.6
Reviews Sentiment
6.5
Number of Reviews
26
Ranking in other categories
Security Orchestration Automation and Response (SOAR) (6th), Cloud Security Posture Management (CSPM) (13th)
 

Mindshare comparison

While both are Security Software solutions, they serve different purposes. AlienVault OSSIM is designed for Security Information and Event Management (SIEM) and holds a mindshare of 1.6%, down 4.1% compared to last year.
AWS Security Hub, on the other hand, focuses on Cloud Security Posture Management (CSPM), holds 3.5% mindshare, down 4.5% since last year.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
AlienVault OSSIM1.6%
Splunk Enterprise Security7.2%
Wazuh5.8%
Other85.4%
Security Information and Event Management (SIEM)
Cloud Security Posture Management (CSPM) Mindshare Distribution
ProductMindshare (%)
AWS Security Hub3.5%
Wiz14.3%
Prisma Cloud by Palo Alto Networks9.3%
Other72.9%
Cloud Security Posture Management (CSPM)
 

Featured Reviews

BP
Brandon Pearce
Independent Contractor at a comms service provider with 5,001-10,000 employees
Enables cost-effective security management for small businesses
Scaling for USM is always challenging for any product unless it is purpose-built or overbuilt at the front end. They will use Palo Alto and its competitors, and LevelBlue will manage that implementation. The main area where the AlienVault product was lacking around the 2018 timeframe was in its ability to scale. By pushing it to a cloud-based system, they've largely alleviated scale issues. It's native in Amazon but will also run in Azure. They have worked with cloud service providers to offer enough throughput at a cost reasonable for a corporation. Scaling was their biggest problem, and they've largely conquered those issues.
Read full review
Karthik Ekambaram - PeerSpot reviewer
Karthik Ekambaram
Director at Scybers
Has helped identify misconfigurations and prioritize risks but lacks multi-cloud support and deeper integration features
AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfigurations, even Microsoft for that matter. Regarding the integration of AWS Security Hub with third-party tools, I am not certain whether we can integrate them, but there is no need to do so. However, AWS Security Hub cannot integrate with other cloud providers, so it only supports the AWS environment. The compliance checks within AWS Security Hub are good, but we don't use them much. We utilize compliance frameworks such as CIS compliance frameworks and ISO 27017 framework, which are beneficial, but it can improve in other areas too, such as including NIST and other frameworks beyond just ISO and CIS. Improvements can be applicable for scalability, particularly on integration with multi-cloud environments, and compliance frameworks can be added for more variety as well. The unified dashboard in AWS Security Hub is adequate; I cannot say it is exceptional, but the content available in the dashboards is satisfactory for now.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The solution is free to use."
"AlienVault OSSIM is an enterprise solution that sells easily. It is rated highly by organizations."
"There are a lot of people you will find using OSSIM since they are also offering OTX as a service"
"The open vault component and the checking of vulnerabilities are the most valuable features. The page management helps with this. If you know how your device is vulnerable at least you can do something about it."
"The product is easy to use."
"If you compare with other companies, like LogRhythm, etc., the top 8 or 10 CMs, I think AlienVault has the best price-performance ratio."
"A very good feature of AlienVault OSSIM is that it has many domains that can be integrated from different solutions."
"You pay monthly for the solution. I think it's one of the best products. If you compare with other companies, like LogRhythm, etc., the top 8 or 10 CMs, I think Alien Vault has the best price-performance ratio."
More AlienVault OSSIM pros
"One of the most effective features of AWS Security Hub is the easy access to a dashboard with a ready-to-use security score."
"The best feature of AWS Security Hub is that you can get compliance or your cloud's current security posture."
"It's a security posture management tool from AWS. Basically, it identifies misconfigurations, similar to Trusted Advisor but on a larger scale."
"This solution is for security posture management for the cloud, showing the security posture of your cloud infrastructure and giving you good insight into whether your infrastructure is secure or not."
"The most valuable feature of the solution stems from the fact that it is easy to manage...It is a scalable solution."
"Easily integrates with third-party tools"
"AWS Security Hub's unified dashboard does help streamline my process of identifying vulnerabilities, but we don't use Inspector."
"The solution shows us our compliance score."
More AWS Security Hub pros
 

Cons

"They can add more compliance templates."
"There needs to be more support or some kind of training program so users can self-learn the system more effectively."
"The price of this solution is very high and it could be cheaper."
"There are somewhat more false positives with the user behavior analytics, which could benefit from an additional machine learning model to detect user patterns more rapidly."
"The initial setup was not so easy, partly because the documentation was not up to date."
"The biggest thing I always complain about is that the user intake is a very old version."
"AlienVault OSSIM could improve by having better integration with some of the newer tools."
"ArcSight works better than AlienVault right now."
More AlienVault OSSIM cons
"There is room for improvement in implementing AI capabilities. It would be beneficial for Security Hub to implement preventative measures and to directly apply recommendations instead of just suggesting them."
"There is room for improvement in implementing AI capabilities."
"I would like a more fine-grained capability for creating custom rules and a more user-friendly experience programmatically in writing queries and configuring custom security rules, making it quicker and easier."
"The solution should be easier to learn and use"
"Many findings are too generic or irrelevant to the environment, which can lead to false positives."
"We need more granular-level customizations to enable or disable the rules in AWS Security Hub."
"The telemetry doesn't always go into the control center. When you have multiple instances running in AWS, you need a control tower to take feeds from Security Hub and analyze your results. Sometimes exemptions aren't passed between the control tower and Security Hub. The configuration gets mixed up or you don't get the desired results."
"Security Hub is currently not worth investing in, as it requires more configurations and integration with other services to work effectively."
More AWS Security Hub cons
 

Pricing and Cost Advice

"We are using the community version, which can be used for free."
"The tool's licensing costs are yearly."
"AlienVault OSSIM is free."
"The licensing fees for the non-community edition are paid on an annual basis, and there are no costs in addition to this."
"When comparing AlienVault OSSIM to Microsoft Sentinel, AlienVault OSSIM incurs additional costs due to its licensing price structure. If you are using AlienVault for security purposes at a certain level it can have a higher price point than the current pricing of Microsoft Sentinel."
"We are using a free version of the solution. If you purchase a license there are more features available but the price is a little high. The solution should be cheaper to allow more customers to be able to afford it."
"OSSIM is open source, and USM is the paid license. So, if you want, you can switch to USM. There you will have to buy a license, and they have a support team that helps you out on issues you face."
"OSSIM is free."
More AlienVault OSSIM pricing and cost advice
"The price of the solution is not very competitive but it is reasonable."
"AWS Security Hub's pricing is pretty reasonable."
"AWS Security Hub is not an expensive tool. I would consider it to be a cheap solution. AWS Security Hub follows the PAYG pricing model, meaning you will have to pay for whatever you use."
"There are multiple subscription models, like yearly, monthly, and packaged."
"Security Hub is not an expensive solution."
"The cost is based on the number of compliances, core checks, and services required, and for more than 10,000 recommendations, the charge is just one dollar."
"The price of AWS Security Hub is average compared to other solutions."
"The pricing is fine. It is not an expensive tool."
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
885,264 professionals have used our research since 2012.
 

Comparison Review

it_user186927 - PeerSpot reviewer
it_user186927
Director of Operations at a comms service provider with 10,001+ employees
Feb 16, 2015
Cybereason vs. Interset vs. SQRRL
Capture DB - they all use NoSQL db and hence solve the ad hoc query and 'go back in time' problem with current best of breed SIEM and DLP solutions that rely on real time analysis of incoming logs (and don't store them). This means deeper and quicker iterative threat analysis and assessment…
Read full review
 

Top Industries

By visitors reading reviews
Comms Service Provider
12%
Manufacturing Company
9%
Financial Services Firm
8%
Computer Software Company
8%
Financial Services Firm
11%
Computer Software Company
10%
Manufacturing Company
10%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business18
Midsize Enterprise9
Large Enterprise8
By reviewers
Company SizeCount
Small Business10
Midsize Enterprise5
Large Enterprise12
 

Questions from the Community

What do you like most about AlienVault OSSIM?
Asset discovery is good.
See all answers
What is your experience regarding pricing and costs for AlienVault OSSIM?
It depends. I would need to review their cost models, but generally, they are on a scaled basis based on throughput usage. Because it's a software as a service solution for their core product for U...
See all answers
What needs improvement with AlienVault OSSIM?
Scaling for USM is always challenging for any product unless it is purpose-built or overbuilt at the front end. They will use Palo Alto and its competitors, and LevelBlue will manage that implement...
See all answers
Which is better - Azure Sentinel or AWS Security Hub?
We like that Azure Sentinel does not require as much maintenance as legacy SIEMs that are on-premises. Azure Sentinel is auto-scaling - you will not have to worry about performance impact, you will...
See all answers
What do you like most about AWS Security Hub?
The most valuable features of the solution are the scanning of all the cloud environments and most of the compliances available in the cloud.
See all answers
What needs improvement with AWS Security Hub?
AWS Security Hub cannot scale up to multiple different cloud environments; it only works for AWS. There are other products in the market for CSPM that can give you multi-cloud environment misconfig...
See all answers
 

Comparisons

Wazuh vs AlienVault OSSIM Logo
Wazuh vs AlienVault OSSIM
Compared 30% of the time
Venusense USM vs AlienVault OSSIM Logo
Venusense USM vs AlienVault OSSIM
Compared 10% of the time
USM Anywhere vs AlienVault OSSIM Logo
USM Anywhere vs AlienVault OSSIM
Compared 8% of the time
Splunk Enterprise Security vs AlienVault OSSIM Logo
Splunk Enterprise Security vs AlienVault OSSIM
Compared 7% of the time
Snare vs AlienVault OSSIM Logo
Snare vs AlienVault OSSIM
Compared 3% of the time
More AlienVault OSSIM Competitors
Microsoft Sentinel vs AWS Security Hub Logo
Microsoft Sentinel vs AWS Security Hub
Compared 34% of the time
Prisma Cloud by Palo Alto Networks vs AWS Security Hub Logo
Prisma Cloud by Palo Alto Networks vs AWS Security Hub
Compared 8% of the time
Wiz vs AWS Security Hub Logo
Wiz vs AWS Security Hub
Compared 5% of the time
Microsoft Defender for Cloud vs AWS Security Hub Logo
Microsoft Defender for Cloud vs AWS Security Hub
Compared 4% of the time
Check Point CloudGuard CNAPP vs AWS Security Hub Logo
Check Point CloudGuard CNAPP vs AWS Security Hub
Compared 3% of the time
More AWS Security Hub Competitors
 

Product Reports

Buyer's Guide
AlienVault OSSIM
March 2026
AlienVault OSSIM reportDownload AlienVault OSSIM product report
Buyer's Guide
AWS Security Hub
March 2026
AWS Security Hub reportDownload AWS Security Hub product report
 

Also Known As

OSSIM
SQRRL
 

Overview

AlienVault OSSIM, Open Source Security Information and Event Management (SIEM), provides you with a feature-rich open source SIEM complete with event collection, normalization and correlation. Launched by security engineers because of the lack of available open source products, AlienVault OSSIM was created specifically to address the reality many security professionals face: A SIEM, whether it is open source or commercial, is virtually useless without the basic security controls necessary for security visibility.

AT&T

AWS Security Hub is a comprehensive security service that provides a centralized view of security alerts and compliance status across an AWS environment. It collects data from various AWS services, partner solutions, and AWS Marketplace products to provide a holistic view of security posture. With Security Hub, users can quickly identify and prioritize security issues, automate compliance checks, and streamline remediation efforts. 

The service offers a range of features including continuous monitoring, threat intelligence integration, and customizable dashboards. It also provides automated insights and recommendations to help users improve their security posture. Security Hub integrates with other AWS services like Amazon GuardDuty, AWS Config, and AWS Macie to provide a unified security experience. Additionally, it supports integration with third-party security tools through its API, allowing users to leverage their existing security investments. 

With its user-friendly interface and powerful capabilities, AWS Security Hub is a valuable tool for organizations looking to enhance their security and compliance posture in the cloud.

Amazon Web Services (AWS)
 

Sample Customers

Council Rock School District
Edmunds, Frame.io, GoDaddy, Realtor.com
Buyer's Guide
AWS Security Hub vs. AlienVault OSSIM
October 2024
Free Report: AWS Security Hub vs. AlienVault OSSIM
Find out what your peers are saying about AWS Security Hub vs. AlienVault OSSIM and other solutions. Updated: October 2024.
DOWNLOAD NOW
885,264 professionals have used our research since 2012.
See our AWS Security Hub vs. AlienVault OSSIM report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.