No more typing reviews! Try our Samantha, our new voice AI agent.

AlienVault OSSIM vs Sumo Logic Security comparison

AT&T and Sumo Logic are both solutions in the Security Information and Event Management (SIEM) category. AT&T is ranked #12 with an average rating of 7.4, while Sumo Logic is ranked #18 with an average rating of 7.7. AT&T holds a 1.6% mindshare in SIEM, compared to Sumo Logic’s 1.7% mindshare. Additionally, 80% of AT&T users are willing to recommend the solution, compared to 92% of Sumo Logic users who would recommend it.
AlienVault OSSIM
Read 31 AlienVault OSSIM reviews
  • 4,307 Views
  • 4,221 Comparison Views
80% willing to recommend
Sumo Logic Security
Read 25 Sumo Logic Security reviews
  • 3,422 Views
  • 2,464 Comparison Views
92% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 18, 2024

Sumo Logic Security and AlienVault OSSIM are both prominent security solutions. Sumo Logic Security seems to have the upper hand with its comprehensive analytics and support.

Features: Sumo Logic Security is valued for its robust data analytics capabilities, insightful security monitoring, and strong support system. AlienVault OSSIM stands out with powerful asset discovery, behavioral monitoring, and seamless threat intelligence integration.

Room for Improvement: Sumo Logic Security could enhance integration with third-party tools and improve ecosystem compatibility, while AlienVault OSSIM needs better documentation, ease of use, and refined user guidance.

Ease of Deployment and Customer Service: Sumo Logic Security users highlight a straightforward deployment process and commendable customer service with quick support responses. AlienVault OSSIM has a steeper learning curve during deployment but offers ongoing support. The difference lies in Sumo Logic’s expedited deployment versus AlienVault’s comprehensive but initially challenging setup.

Pricing and ROI: Sumo Logic Security's setup costs are higher, but users feel the investment is justified by the ROI through advanced analytics. AlienVault OSSIM offers better initial cost efficiency and satisfactory ROI but needs more transparent pricing models.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed AlienVault OSSIM vs. Sumo Logic Security Report (Updated: March 2026).
Buyer's Guide
AlienVault OSSIM vs. Sumo Logic Security
March 2026
Download the complete report
Helped 885,667 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

AlienVault OSSIM
Ranking in Security Information and Event Management (SIEM)
12th
Average Rating
7.4
Reviews Sentiment
7.1
Number of Reviews
31
Ranking in other categories
No ranking in other categories
Sumo Logic Security
Ranking in Security Information and Event Management (SIEM)
18th
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
25
Ranking in other categories
Log Management (21st), Security Orchestration Automation and Response (SOAR) (13th)
 

Mindshare comparison

As of April 2026, in the Security Information and Event Management (SIEM) category, the mindshare of AlienVault OSSIM is 1.6%, down from 4.1% compared to the previous year. The mindshare of Sumo Logic Security is 1.7%, up from 0.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
AlienVault OSSIM1.6%
Sumo Logic Security1.7%
Other96.7%
Security Information and Event Management (SIEM)
 

Featured Reviews

BP
Brandon Pearce
Independent Contractor at a comms service provider with 5,001-10,000 employees
Enables cost-effective security management for small businesses
Scaling for USM is always challenging for any product unless it is purpose-built or overbuilt at the front end. They will use Palo Alto and its competitors, and LevelBlue will manage that implementation. The main area where the AlienVault product was lacking around the 2018 timeframe was in its ability to scale. By pushing it to a cloud-based system, they've largely alleviated scale issues. It's native in Amazon but will also run in Azure. They have worked with cloud service providers to offer enough throughput at a cost reasonable for a corporation. Scaling was their biggest problem, and they've largely conquered those issues.
Read full review
MR
Migell Roberts
Senior Security Analyst at City Electric Supply Company
Security insights have enabled faster incident response and streamlined cross-team collaboration
To improve Sumo Logic Security, I would appreciate the tool being easier to use from a search perspective. For example, we have a few teams that want to use the tool itself, but they are not as savvy when it comes to creating searches from the core platform. I understand that Mobot has come out and is in the works, and it really does assist non-savvy users when it comes to querying the platform. As far as that is concerned, I wish that could be improved a bit more, but I do know that that is in the works. I would add that I wish for improved documentation. For example, we are using Sumo Playbooks and automation integrations along with that, but I have found that there has been a lack of documentation, very little to none at all when it comes to that. With regards to automation integrations as well, there are very few details included in them. I would also appreciate the AWS automation integrations to be more secure because currently, they are using access keys, which involves a user rather than roles, which is the security best practice recommended by AWS. I chose eight out of ten because to make it a nine or ten, I would lean heavily on the documentation. A lot of the times when we get around to configuring things such as playbooks or trying to understand playbooks, what I found was that documentation sometimes is not up to date or documentation is lacking. There are instances also where some security best practices are not being followed. So, if we are able to set up an integration that is not only secure, following security best practices, and has complete documentation, I believe it would alleviate the issue of having to go back and forth with support to check the documentation and things of that nature. My impression of the built-in threat intelligence feature in Sumo Logic Security is that it is comprehensive, but I would say that it could do a little bit better. For example, we have the TAXI feeds, which is STIX and TAXI integrated into the core platform, but the issue I am running into is that I am able to use that feed into a CSE alert; however, I am not able to see the contents of that feed. If I integrate CISA, which we do have integrated, I cannot see what IOCs are in that feed in the core platform, and I hope that is the case because, in order for us to better tune our alerts, we need to be able to see what is in the contents of that threat intelligence feed.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Inbuilt IDS, inbuilt integration with threat intelligence platform and with vulnerability assessment modules."
"The threat policies of the solution are always very advanced and the best in the market, and they are very persistent in terms of keeping up with security protocols."
"OSSIM is the only solution that includes the large number of modules that we need: a vulnerability scanner, a network IDS system, a host IDS system."
"If you compare with other companies, like LogRhythm, etc., the top 8 or 10 CMs, I think AlienVault has the best price-performance ratio."
"The most valuable features of AlienVault OSSIM are vulnerability assessment, network intrusion detection system, response to critical events, and awareness of the whole network."
"It has helped us remediate threats in the past by providing significant events that assisted in identifying suspicious activities, such as logins from multiple countries."
"Most of the SOC or SIEM enterprise class products are very expensive, whereas with OSSIM you can start out with a smaller setup and then expand as you wish."
"The initial setup was straightforward. I didn't have any problems."
More AlienVault OSSIM pros
"It provides easy visibility. I also like the shareable queries because we share a lot across groups."
"My SOC analysts were crushed under Splunk, but Sumo has actually eased the workload and made it tolerable for three people."
"We can integrate threat intelligence solutions into the product."
"We have used it many times to find a root cause of a live issue, then fix the problem in the applications."
"It works with all our main applications, so the integration with those products is pretty seamless from my standpoint."
"Technical support is always great."
"I would recommend Sumo Logic; it is easy to use, the culture at Sumo Logic seems to be developer focused, the product is good, the developers are able to use it to get their job done quickly and easily, it fits into the developer's workload, the support is excellent, and we use it in both AWS and on-premise where it tends to work the same in both cases."
"For many of our services, we use Sumo Logic to track errors and send notifications to our Slack channel, if there are issues. Then, we have our support people monitoring this, and they can react quickly."
More Sumo Logic Security pros
 

Cons

"Sometimes it takes very long for your issue to get resolved."
"The user interface needs to be friendlier across the board."
"They can add more compliance templates."
"I would advise others to not implement it for any enterprise-level organization."
"It does not give me a prompt response for any such malicious traffic; it takes time to get that alert from the AlienVault system."
"The price of this solution is very high and it could be cheaper."
"AlienVault OSSIM gives unwanted notifications."
"I suggest more in-built rules based on modern threats and environments to make it a more competitive solution."
More AlienVault OSSIM cons
"Sumo Logic needs to make sure integrating solutions are seamless."
"Sumo Logic needs to make sure integrating solutions are seamless."
"There are some API gaps that are missing."
"We would like the ability to drill down into a dashboard and get into deeper levels."
"It took a bit of trial and error to get it set up correctly based on everything we had to do. In the end, we had to send everything over HTTP, which was sort of a stop-gap."
"The dashboard has room for improvement, because sometimes it is a difficult to create a specific dashboard or query. This would be a nice place to correct problems."
"The pricing is a little high, but for the features that we receive from Sumo Logic, it suits the price."
"This can lead to alerts that are collections of disjointed signals that sometimes make no sense and lack real context; this simplistic approach makes it hard to find coherent stories during investigations."
More Sumo Logic Security cons
 

Pricing and Cost Advice

"The licensing fees for the non-community edition are paid on an annual basis, and there are no costs in addition to this."
"AlienVault OSSIM is expensive compared to its competitors."
"AlienVault pricing is the best. Whatever cost you are paying, you are getting a return on every penny... It's not like your IBM, your QRadar, or Splunk, where the cost is too high."
"The solution is open source, so it's free to use."
"We are using the community version, which can be used for free."
"I used the paid version of the tool and found it to be expensive. It has been a while since I changed to Securonix. I will have to check whether AlienVault charges per device, user, or log."
"We are using a free version of the solution. If you purchase a license there are more features available but the price is a little high. The solution should be cheaper to allow more customers to be able to afford it."
"AlienVault OSSIM is free."
More AlienVault OSSIM pricing and cost advice
"The only limit to the scalability of the product for us is how much we are willing to pay."
"The AWS Marketplace pricing is borderline. Every annual renewal, we always contemplate if we are getting what we think we could out of it or could we do it cheaper with some other product."
"Storing logs in Sumo Logic Security is charged GB-wise, which is a little higher than other products."
"The product is costly."
"Purchasing Sumo Logic through the AWS Marketplace was a simple step."
"The price scaling comes in a bit expensive."
"Pricing has been cheaper than some of the competing tools, like Splunk."
"The AWS Marketplace pricing is fairly reasonable for what it does. I wouldn't call it expensive, but I wouldn't call it cheap. It is pretty good."
More Sumo Logic Security pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
See recommendations
885,667 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Comms Service Provider
12%
Manufacturing Company
9%
Computer Software Company
8%
Financial Services Firm
8%
Manufacturing Company
11%
Computer Software Company
8%
Financial Services Firm
8%
Outsourcing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business18
Midsize Enterprise9
Large Enterprise8
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise5
Large Enterprise14
 

Questions from the Community

What do you like most about AlienVault OSSIM?
Asset discovery is good.
See all answers
What is your experience regarding pricing and costs for AlienVault OSSIM?
It depends. I would need to review their cost models, but generally, they are on a scaled basis based on throughput usage. Because it's a software as a service solution for their core product for U...
See all answers
What needs improvement with AlienVault OSSIM?
Scaling for USM is always challenging for any product unless it is purpose-built or overbuilt at the front end. They will use Palo Alto and its competitors, and LevelBlue will manage that implement...
See all answers
What do you like most about Sumo Logic Security?
Sumo Logic Security is a good solution for searching the logs and identifying the issues.
See all answers
What is your experience regarding pricing and costs for Sumo Logic Security?
I would say that the pricing for Sumo Logic Security is in the medium part of the market. If you go to the well-known vendors such as Azure Sentinel or other tools like Splunk, you are going to fin...
See all answers
What needs improvement with Sumo Logic Security?
I would say there are a few more things that Sumo Logic Security can improve on. It is not the tool; it is a technical part. From the app point of view, I would say when we need to include a few la...
See all answers
 

Comparisons

Wazuh vs AlienVault OSSIM Logo
Wazuh vs AlienVault OSSIM
Compared 28% of the time
Venusense USM vs AlienVault OSSIM Logo
Venusense USM vs AlienVault OSSIM
Compared 11% of the time
USM Anywhere vs AlienVault OSSIM Logo
USM Anywhere vs AlienVault OSSIM
Compared 8% of the time
Splunk Enterprise Security vs AlienVault OSSIM Logo
Splunk Enterprise Security vs AlienVault OSSIM
Compared 7% of the time
Elastic Security vs AlienVault OSSIM Logo
Elastic Security vs AlienVault OSSIM
Compared 4% of the time
More AlienVault OSSIM Competitors
Panther vs Sumo Logic Security Logo
Panther vs Sumo Logic Security
Compared 14% of the time
Splunk Enterprise Security vs Sumo Logic Security Logo
Splunk Enterprise Security vs Sumo Logic Security
Compared 8% of the time
Microsoft Sentinel vs Sumo Logic Security Logo
Microsoft Sentinel vs Sumo Logic Security
Compared 8% of the time
IBM Security QRadar vs Sumo Logic Security Logo
IBM Security QRadar vs Sumo Logic Security
Compared 5% of the time
Sentinel vs Sumo Logic Security Logo
Sentinel vs Sumo Logic Security
Compared 4% of the time
More Sumo Logic Security Competitors
 

Product Reports

Buyer's Guide
AlienVault OSSIM
March 2026
AlienVault OSSIM reportDownload AlienVault OSSIM product report
Buyer's Guide
Sumo Logic Security
March 2026
Sumo Logic Security reportDownload Sumo Logic Security product report
 

Also Known As

OSSIM
No data available
 

Overview

AlienVault OSSIM, Open Source Security Information and Event Management (SIEM), provides you with a feature-rich open source SIEM complete with event collection, normalization and correlation. Launched by security engineers because of the lack of available open source products, AlienVault OSSIM was created specifically to address the reality many security professionals face: A SIEM, whether it is open source or commercial, is virtually useless without the basic security controls necessary for security visibility.

AT&T

Sumo Logic

Sumo Logic is a cloud-based machine data analytics company focusing on security, operations, and BI use cases. It provides log management and analytics services that leverage machine-generated big data to deliver real-time IT insights.

Sumo Logic is developed as a SaaS solution, it processes and analyzes large quantities of IT infrastructure data, spotting patterns and anomalies that can indicate a potential threat or significant event.

The platform is designed to help IT, security, and business operations teams develop, manage, and secure their applications and cloud infrastructures. It collects, aggregates, and analyzes data from various sources including servers, virtual machines, and network devices, providing visibility into complex systems.

What are the key features of Sumo Logic?

  • Real-time Analytics: Continuous queries and live dashboards that provide insights into application performance, user behavior, and security threats.

  • Advanced Machine Learning: Utilizes machine learning algorithms to identify trends, anomalies, and patterns.

  • Integrated Threat Intelligence: Tools and workflows to enhance security postures by detecting threats and anomalies.

  • Multi-tenant Cloud Service: Allows users to operate in a shared cloud environment securely.

The solution aims to simplify data complexity, streamline operations, and provide actionable insights to businesses across various industries.

Sumo Logic is designed to handle high data volumes from multiple sources without diminishing performance. It is primarily deployed in the cloud with seamless integrations for AWS, Google Cloud, and Microsoft Azure. This flexibility allows users to leverage Sumo Logic’s capabilities regardless of their existing cloud infrastructure.

In summary, Sumo Logic is a comprehensive, AI-driven analytics solution ideal for businesses looking to enhance their IT and security operations through data-driven insights and real-time monitoring. Its flexible deployment options and scalable pricing model make it accessible for various business sizes and sectors.

Sumo Logic
 

Sample Customers

Council Rock School District
Information Not Available
Buyer's Guide
AlienVault OSSIM vs. Sumo Logic Security
March 2026
Free Report: AlienVault OSSIM vs. Sumo Logic Security
Find out what your peers are saying about AlienVault OSSIM vs. Sumo Logic Security and other solutions. Updated: March 2026.
DOWNLOAD NOW
885,667 professionals have used our research since 2012.
See our AlienVault OSSIM vs. Sumo Logic Security report.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.