No more typing reviews! Try our Samantha, our new voice AI agent.

AlienVault OSSIM vs SentinelOne Singularity AI SIEM comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 29, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AlienVault OSSIM
Ranking in Security Information and Event Management (SIEM)
26th
Average Rating
7.4
Reviews Sentiment
7.1
Number of Reviews
31
Ranking in other categories
No ranking in other categories
SentinelOne Singularity AI ...
Ranking in Security Information and Event Management (SIEM)
15th
Average Rating
8.8
Reviews Sentiment
6.1
Number of Reviews
9
Ranking in other categories
AI Observability (11th)
 

Mindshare comparison

As of July 2026, in the Security Information and Event Management (SIEM) category, the mindshare of AlienVault OSSIM is 1.2%, down from 3.4% compared to the previous year. The mindshare of SentinelOne Singularity AI SIEM is 1.4%, up from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
SentinelOne Singularity AI SIEM1.4%
AlienVault OSSIM1.2%
Other97.4%
Security Information and Event Management (SIEM)
 

Featured Reviews

BP
Independent Contractor at a comms service provider with 5,001-10,000 employees
Enables cost-effective security management for small businesses
Scaling for USM is always challenging for any product unless it is purpose-built or overbuilt at the front end. They will use Palo Alto and its competitors, and LevelBlue will manage that implementation. The main area where the AlienVault product was lacking around the 2018 timeframe was in its ability to scale. By pushing it to a cloud-based system, they've largely alleviated scale issues. It's native in Amazon but will also run in Azure. They have worked with cloud service providers to offer enough throughput at a cost reasonable for a corporation. Scaling was their biggest problem, and they've largely conquered those issues.
MM
Information Security Principal at a venture capital & private equity firm with 1,001-5,000 employees
Consolidated security operations have improved detection speed and reduced SOC costs
There is room for improvement when it comes to the technical support quality and expertise of SentinelOne. Sometimes, the technical support team does not know how to resolve certain issues and takes time to respond, often requiring follow-up interactions within 24 hours. SentinelOne Singularity AI SIEM can be improved in terms of support capabilities. Some logs from the server side need to be ingested. Secureworks was integrating with domain controllers and other systems, but SentinelOne still has some gaps. Some vendors cannot be integrated directly. For example, we are using Cisco Umbrella for DNS security, and we have to integrate it through an Amazon S3 bucket where we dump the logs and SentinelOne reads them from that location. For some Microsoft integrations, we must enable certain storage components and pay Microsoft directly to retrieve logs. There is no direct integration, so we must access the logs through that workaround. Previously with Secureworks, we had direct integration with Microsoft. Direct integration with Microsoft is not available now. SentinelOne needs to work on many product integrations to enable direct connectivity.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"AlienVault OSSIM's GUI is very user-friendly."
"The threat alerts it gives me from time to time on harmful code within the network, or if they are generating any network traffic, are very useful."
"You can customize the dashboards as well as the reporting."
"With AlienVault you get everything in one box."
"It is a perfectly nice and free tool for compliance testing, assessment, and some basic vulnerability."
"There are a lot of people you will find using OSSIM since they are also offering OTX as a service"
"The solution is very stable, and compared to QRadar and Splunk, it's very stable."
"The solution is free to use."
"The beauty of the integration is that it integrates very smoothly with third-party tools, so we do not need to think about the parsers, coding, depending on the codes, or the software developers."
"AI-driven capabilities will give me real-time detection and will protect my autonomous AI interruption."
"When they face attacks such as ransomware and are dissatisfied with their existing solutions, they switch to SentinelOne Singularity AI SIEM, which is quite good in detecting unknown threats, cleaning the system, and handling ransomware."
"I will strongly recommend this, because after SentinelOne Singularity AI SIEM we have reduced our engineering time to a certain degree as it has helped us to do investigations fast, we get actual alerts that matter and can prioritize them properly, and the monitoring capability is now completely in one single platform so we do not have to go here and there, which has given us good ROI in total."
"I assess the overall security posture of our organization after implementing SentinelOne Singularity AI SIEM as significantly improved."
"Overall, I would assess the overall security posture after implementing SentinelOne Singularity AI SIEM as significantly better."
"SentinelOne Singularity AI SIEM's AI-powered analytics does affect our SOC's ability to reduce false positives; that is one of the biggest advantages because the manpower that I have is limited."
"The AI features of SentinelOne Singularity AI SIEM are absolutely perfect."
 

Cons

"The initial setup was not so easy, partly because the documentation was not up to date."
"The solution needs more integration with cyber intelligence systems. Our customers want to use a single tool for managing cybersecurity."
"The biggest thing I always complain about is that the user intake is a very old version."
"There are somewhat more false positives with the user behavior analytics, which could benefit from an additional machine learning model to detect user patterns more rapidly."
"It's so hard to configure and explore something new on it. It is not easy to find the steps we need to follow in order to use the solution effectively."
"There needs to be more support or some kind of training program so users can self-learn the system more effectively."
"The main area where the AlienVault product was lacking around the 2018 timeframe was in its ability to scale."
"AlienVault OSSIM failed to provide our company a full insight, while also giving out a lot of false positives."
"Another area for improvement is that the product is somewhat expensive. Pricing could be improved as well."
"I would want the false positive ratio to be lower and would want to improve that aspect so the true will be more, and the false will be lesser."
"What I dislike is that the dashboard is very old, so they do not have much capability to be honest."
"SentinelOne Singularity AI SIEM has some performance and reliability issues that need improvement."
"Unfortunately, I was not happy with SentinelOne Singularity AI SIEM because it is not mature yet."
"In AI SIEM, the areas that have room for improvement are the parsers for third-party integrated data or for third-party data sources that are not native integrations, which could be made a bit easier."
"There is room for improvement when it comes to the technical support quality and expertise of SentinelOne. Sometimes, the technical support team does not know how to resolve certain issues and takes time to respond, often requiring follow-up interactions within 24 hours."
"It is quite good, but the only downside is that it is costly."
 

Pricing and Cost Advice

"The licensing fees for the non-community edition are paid on an annual basis, and there are no costs in addition to this."
"When comparing AlienVault OSSIM to Microsoft Sentinel, AlienVault OSSIM incurs additional costs due to its licensing price structure. If you are using AlienVault for security purposes at a certain level it can have a higher price point than the current pricing of Microsoft Sentinel."
"AlienVault OSSIM is an open-source solution."
"AlienVault OSSIM is free."
"The price of AlienVault OSSIM is too high sometimes for us to present to our customers. The price should be lower. We are on a three-year license to use the solution. We had to pay extra for the support."
"The tool's licensing costs are yearly."
"OSSIM is open source, and USM is the paid license. So, if you want, you can switch to USM. There you will have to buy a license, and they have a support team that helps you out on issues you face."
"We are using the community version, which can be used for free."
Information not available
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Comms Service Provider
14%
Financial Services Firm
8%
Computer Software Company
8%
Manufacturing Company
7%
Outsourcing Company
11%
Manufacturing Company
8%
Construction Company
8%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business18
Midsize Enterprise9
Large Enterprise8
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise3
Large Enterprise3
 

Questions from the Community

What is your experience regarding pricing and costs for AlienVault OSSIM?
It depends. I would need to review their cost models, but generally, they are on a scaled basis based on throughput usage. Because it's a software as a service solution for their core product for U...
What needs improvement with AlienVault OSSIM?
Scaling for USM is always challenging for any product unless it is purpose-built or overbuilt at the front end. They will use Palo Alto and its competitors, and LevelBlue will manage that implement...
What is your primary use case for AlienVault OSSIM?
This solution is very similar to most of the other MSSPs that you would find out there. When I look at use cases, AlienVault was initially aimed at small to medium businesses. It grew, and that was...
What needs improvement with SentinelOne Singularity AI SIEM?
I would want the false positive ratio to be lower and would want to improve that aspect so the true will be more, and the false will be lesser. Other than false positives, the true will be increase...
What is your primary use case for SentinelOne Singularity AI SIEM?
We discuss with customers whether they want to go on a cloud or on-premises for the usual use cases of SentinelOne Singularity AI SIEM that I work with mostly. If a customer has a SentinelOne EDR, ...
What advice do you have for others considering SentinelOne Singularity AI SIEM?
Correlation, alerting, reporting, and helping with the AI-based alerts generated by the AI are the usual use cases. The parsing is already built into SentinelOne Singularity AI SIEM. There is no ch...
 

Also Known As

OSSIM
No data available
 

Overview

 

Sample Customers

Council Rock School District
Information Not Available
Find out what your peers are saying about AlienVault OSSIM vs. SentinelOne Singularity AI SIEM and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.