No more typing reviews! Try our Samantha, our new voice AI agent.

Anomali vs Huntress Managed SIEM comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Jan 18, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
6.0
Anomali offers cost-effective solutions with significant ROI, reducing manual effort and enhancing efficiency through automation and AI-driven tasks.
Sentiment score
5.5
Huntress Managed SIEM cuts costs by preventing breaches, increasing savings, and providing significant ROI with endpoint security management.
Analyst productivity has improved significantly, with hours saved because of automation and AI-driven work that Anomali performs.
Global Leadership Council at a tech company with 10,001+ employees
Anomali provides us with a very cost-effective value compared to the market, and I would rate it ten out of ten for return on investment metrics.
Solution Delivery Advisor at a tech vendor with 10,001+ employees
There is a return on investment concerning time and effort saved by 40% after implementing Anomali.
Security Consultant at Deloitte
I can expect an estimated five to twenty times return on investment with this solution.
Partner Account Manager at a wholesaler/distributor with 51-200 employees
I have seen a return on investment from using Huntress Managed SIEM because it saves a lot of time.
SR Solution Engineer at VATSIN TECHNOLOGY PVT LTD
I have seen return on investment in terms of spotting cyber threats; breaches could lead to huge amounts of money going out of the organization, and Huntress Managed SIEM has prevented this.
Head of business operations at a tech company with 501-1,000 employees
 

Customer Service

Sentiment score
5.0
Anomali offers excellent enterprise support with quick, reliable assistance, though smaller client attention and professionalism have recently declined.
Sentiment score
7.2
Huntress Managed SIEM support is rated highly, though occasional delays occur; training is user-friendly and effective.
They have strong onboarding and deployment assistance, provide a dedicated technical account manager for large customers, and engage in regular product updates and customer interaction.
Global Leadership Council at a tech company with 10,001+ employees
The technical support at Anomali is excellent.
Senior Cyber Threat Hunter at a financial services firm with 10,001+ employees
It doesn't seem very professional how they're handling support anymore.
Enterprise Security Architect V at FirstEnergy
You are communicating to tier one and tier two people who are then communicating on the back end, so you are not getting updates as frequently.
Director, Engineering & Services Professional at a computer software company with 51-200 employees
Customer support through our channel partners is excellent.
Partner Account Manager at a wholesaler/distributor with 51-200 employees
They will guide us through all aspects of the deployment.
SR Solution Engineer at VATSIN TECHNOLOGY PVT LTD
 

Scalability Issues

Sentiment score
8.0
Anomali offers scalable solutions by smoothly handling extensive threat data and integrating with security systems, supporting organizational growth.
Sentiment score
6.2
Huntress Managed SIEM scales efficiently for SMBs, requiring low expertise, but faces challenges in large enterprise environments.
The scalability is massive, allowing us to store millions of indicators.
Enterprise Security Architect V at FirstEnergy
I believe Anomali's scalability is good; whether it is an organization for ten people or one hundred thousand people, the job a threat intel platform has to do will be the same.
Sr. Threat Intelligence Analyst at a tech vendor with 10,001+ employees
Anomali's scalability is impressive as a mature platform capable of processing large amounts of threat intelligence and indicators of compromise data.
Global Leadership Council at a tech company with 10,001+ employees
It struggles with scalability when dealing with high logs, multi-site, multi-tenant setups, and large volumes of endpoints.
Partner Account Manager at a wholesaler/distributor with 51-200 employees
Huntress Managed SIEM is pretty scalable when there are more log sources to be integrated, or when there are high volumes of transactions which lead to higher log ingestion.
Head of business operations at a tech company with 501-1,000 employees
In my experience, Huntress Managed SIEM's scalability is very good and stable.
SR Solution Engineer at VATSIN TECHNOLOGY PVT LTD
 

Stability Issues

Sentiment score
8.4
Users praise Anomali's high stability and enterprise-grade reliability, noting consistent performance despite occasional platform function changes.
Sentiment score
8.0
Huntress Managed SIEM is praised for its stability, reliable performance, accurate detections, and consistently earns user confidence.
From a reliability perspective, Anomali consistently injects threat feeds, works on automation, performs reliable API integrations, and supports enterprise scale globally.
Global Leadership Council at a tech company with 10,001+ employees
For example, while Microsoft allows ample time for users to adapt to deprecated features, Anomali only gave us three weeks before switching, so they need to be more cognizant of customer use cases from their engineering side.
Enterprise Security Architect V at FirstEnergy
The good thing is that they have a health check page, and if any issues arise, they notify us.
Lead Cyber Threat Intelligence Incident Response Engineer & Security Engineer at a retailer with 10,001+ employees
Huntress Managed SIEM is very stable.
Partner Account Manager at a wholesaler/distributor with 51-200 employees
 

Room For Improvement

Anomali needs enhanced AI, simplified interfaces, better integration, consistent tagging, flexible reporting, clearer pricing, and intuitive workflows.
Huntress Managed SIEM needs UI, integration, features, dashboard, intelligence updates, behavioral analytics, and log management improvements for diverse environments.
Combining all aliases into a coherent solution would be beneficial, as we had to review each individual source ourselves.
Senior Cyber Threat Hunter at a financial services firm with 10,001+ employees
Anomali should increase their capability to fetch details from various dark web solutions where threat actors post compromised credentials.
Lead Cyber Threat Intelligence Incident Response Engineer & Security Engineer at a retailer with 10,001+ employees
Anomali's ability to correlate and integrate different Threat Intel platforms, such as Mandiant and PolySwarm, is another valuable feature, removing duplicacy and enabling the application of specific IOCs across various security controls.
Associate Consultant at a tech vendor with 1,001-5,000 employees
I would like Huntress Managed SIEM to integrate with EDRs like SentinelOne to combine that level of intelligence and information into their stack.
Director, Engineering & Services Professional at a computer software company with 51-200 employees
I believe Huntress Managed SIEM could be improved by increasing integrations with non-Microsoft solutions as this would broaden its appeal.
Partner Account Manager at a wholesaler/distributor with 51-200 employees
In my opinion, there is room for improvement in Huntress Managed SIEM, particularly in integration with third-party solutions.
Technical Account Manager at a computer software company with 11-50 employees
 

Setup Cost

Anomali pricing is medium to high, with contracts of one to two years, managed by senior staff in discussions.
Pricing and licensing are good, but the costs for purchasing threat feeds are somewhat complicated and a bit on the higher side.
Associate Consultant at a tech vendor with 1,001-5,000 employees
My experience with Anomali's pricing is that it is higher compared to other open-source alternatives.
Senior Information Technology Security Consultant at Mideast Data Systems
My experience with pricing, setup cost, and licensing is that there are not many follow-ups, but once we interacted with the product team or the leadership of Anomali, they managed a lot with us, and it all paid off to reach a conclusion that we would continue with this product.
Solution Delivery Advisor at a tech vendor with 10,001+ employees
I believe most competitors charge by the data slightly differently compared to how this solution does, as it is per data source rather than data size in gigabytes.
Technical Account Manager at a computer software company with 11-50 employees
I did not have to spend more than what I initially budgeted for.
Head of business operations at a tech company with 501-1,000 employees
I think the pricing for SIEM is good.
CTO at Accent Consulting
 

Valuable Features

Anomali excels in threat intelligence by efficiently automating data integration, improving response times, and reducing manual workloads.
Huntress Managed SIEM boosts efficiency with AI filtering, human monitoring, customizable dashboards, and seamless integration with security tools.
Regarding integration, Anomali has capabilities to integrate with different downstream applications such as Palo Alto, allowing us to create playbooks to block domains, URLs, or IPs directly within the firewall.
Lead Cyber Threat Intelligence Incident Response Engineer & Security Engineer at a retailer with 10,001+ employees
Correlating IOCs with the telemetry data we are ingesting from our data sources allows us to pull monthly reports identifying how many assets and users interacted with malicious content, giving insight into whether communications failed or users accessed restricted content, providing complete visibility of the IOCs traveling throughout our environment.
Associate Consultant at a tech vendor with 1,001-5,000 employees
It aggregates intelligence from hundreds of sources, automatically de-duplicates, applies risk scoring, applies context, and reduces much manual effort.
Global Leadership Council at a tech company with 10,001+ employees
Huntress Managed SIEM combines machine detection with human investigation, which adds context and helps confirm if something is actually a threat rather than just noise.
Partner Account Manager at a wholesaler/distributor with 51-200 employees
Regarding the feature that requires no alert tuning, we are using the advanced filtering so we only see actionable events and not lots of noise, which filters out any false positives or areas of no concern.
Technical Account Manager at a computer software company with 11-50 employees
Huntress Managed SIEM has helped in both angles, improving efficiency in SOC operations where the mean time to detect is drastically reduced.
Head of business operations at a tech company with 501-1,000 employees
 

Categories and Ranking

Anomali
Ranking in Security Information and Event Management (SIEM)
10th
Average Rating
8.0
Reviews Sentiment
6.2
Number of Reviews
13
Ranking in other categories
User Entity Behavior Analytics (UEBA) (5th), Advanced Threat Protection (ATP) (11th), Threat Intelligence Platforms (TIP) (3rd), Extended Detection and Response (XDR) (11th)
Huntress Managed SIEM
Ranking in Security Information and Event Management (SIEM)
18th
Average Rating
8.6
Reviews Sentiment
6.4
Number of Reviews
8
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Security Information and Event Management (SIEM) category, the mindshare of Anomali is 1.4%, up from 0.3% compared to the previous year. The mindshare of Huntress Managed SIEM is 1.1%, up from 0.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
Anomali1.4%
Huntress Managed SIEM1.1%
Other97.5%
Security Information and Event Management (SIEM)
 

Featured Reviews

TarunKumar11 - PeerSpot reviewer
Global Leadership Council at a tech company with 10,001+ employees
Strategic threat intelligence has improved detection speed and consistently reduces analyst workload
Anomali can be improved in various aspects. Its AI-driven automation can further advance, and AI-powered investigation summaries can improve. User experience could be enhanced through simplification of workflows. Better board-level cyber risk dashboards could provide easier visualization. Additionally, Anomali could work on simplifying the pricing structure. Although it excels in threat intelligence aggregation and operationalization, stronger GenAI capability, improved executive reporting, and a more intuitive workflow for analysts would further increase SOC efficiency and add more business value. Regarding Anomali's AI capabilities, governance and security are quite good. Anomali has incorporated AI and machine learning primarily to improve correlation and prioritization. These capabilities are valuable but could be more mature. The platform could achieve better threat correlation, prioritization, more anomaly detection, and allow AI to accelerate intelligence analysis while further improving quality and relevance. The accuracy and reliability of Anomali's AI output are fairly reasonable and good. The AI engine works well, but this capability could be improved. Better threat correlation with threat actors, certain indicators of compromise, malware, and campaigns is possible. Threat prioritization could increase, and alert noise could be reduced through further de-duplication. While reasonable, this is not the best available, and other products possibly have more AI maturity, such as Recorded Future and CrowdStrike Falcon.
reviewer2805510 - PeerSpot reviewer
Partner Account Manager at a wholesaler/distributor with 51-200 employees
Human-guided threat monitoring has delivered rapid, confident incident response and strong compliance
I believe Huntress Managed SIEM could be improved by increasing integrations with non-Microsoft solutions as this would broaden its appeal. A broader out-of-the-box solution for diverse environments including IoT, Mac OS, and Linux servers would be valuable. I would rate Huntress Managed SIEM an eight because a couple of things could be changed, such as having more integrations with non-Microsoft systems, improved customization on the dashboard, and enhanced reporting in the threat intelligence updates. Being unable to click on new niche variants of threats is another point I would mention, but overall an eight out of ten is a good score because I think it is a very well-priced solution for its capabilities and all the positives I have outlined. The eight rating is primarily influenced by those integration and customization points I mentioned, which are the main requests from customers.
report
Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Manufacturing Company
9%
Construction Company
8%
Computer Software Company
6%
Insurance Company
14%
Comms Service Provider
10%
Manufacturing Company
8%
Educational Organization
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise1
Large Enterprise14
By reviewers
Company SizeCount
Small Business8
Midsize Enterprise2
Large Enterprise2
 

Questions from the Community

What is your experience regarding pricing and costs for Anomali Enterprise?
My experience with pricing involved a yearly, two-year contract; I can't specify the setup cost, but it was aligned with our budget, so I consider it good.
What needs improvement with Anomali ThreatStream?
I can mention one point regarding improvements for Anomali, which is more enhanced reporting flexibility. The reporting provided to us is not too detailed and could be more enhanced. Better filteri...
What is your primary use case for Anomali ThreatStream?
I was using Anomali primarily for threat intelligence operations, security monitoring, and threat detection initiatives. I was part of the SOC team, and my role and responsibilities involved workin...
What is your experience regarding pricing and costs for Huntress Managed SIEM?
Regarding pricing, I think it is cost-efficient. I believe most competitors charge by the data slightly differently compared to how this solution does, as it is per data source rather than data siz...
What needs improvement with Huntress Managed SIEM?
I did not find anything for improvement; Huntress Managed SIEM is a completely perfect and stable product.
What is your primary use case for Huntress Managed SIEM?
My main use case for Huntress Managed SIEM is to monitor our infrastructure. To monitor my events, one special thing compared to other SIEM tools is that it shows only important logs instead of dis...
 

Also Known As

Match, Lens, ThreatStream, STAXX, Anomali Security Analytics
No data available
 

Overview

 

Sample Customers

Bank of England, First Energy, UBISOFT, Bank of Hope, Blackhawk Network
Information Not Available
Find out what your peers are saying about Anomali vs. Huntress Managed SIEM and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.