USM Anywhere vs i-SIEM [EOL] comparison

Cybereason and LevelBlue are both solutions in the Security Information and Event Management (SIEM) category. Additionally, 100% of Cybereason users are willing to recommend the solution, compared to 92% of LevelBlue users who would recommend it.

i-SIEM [EOL]

Read 1 i-SIEM [EOL] review

100% willing to recommend

USM Anywhere

Read 115 USM Anywhere reviews

2,186 Views
1,503 Comparison Views

92% willing to recommend

i-SIEM [EOL]

USM Anywhere

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Apr 20, 2025

USM Anywhere and i-SIEM compete in security information and event management. USM Anywhere has the upper hand due to its ease of use and customer support, while i-SIEM offers enhanced scalability and advanced features for complex deployments.

Features: USM Anywhere provides comprehensive threat detection, unified security management, and integrated threat intelligence. It is known for its intuitive platform. i-SIEM delivers robust data processing capabilities and is suitable for larger environments due to its enhanced scalability and powerful data handling.

Ease of Deployment and Customer Service: USM Anywhere is recognized for straightforward cloud-based deployment and responsive customer service, making it easy to implement and maintain. i-SIEM, while offering more customization, has a complex setup that can pose challenges.

Pricing and ROI: USM Anywhere generally offers a more favorable initial setup cost with a steady ROI due to its user-friendly interface. i-SIEM requires a significant initial investment but can achieve high ROI in large-scale operations with its advanced capabilities.

To learn more, read our detailed Security Information and Event Management (SIEM) Report (Updated: April 2025).

Buyer's Guide

Security Information and Event Management (SIEM)

April 2025

Download the complete report

Helped 849,686 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

i-SIEM [EOL]

Average Rating

9.0

Number of Reviews

Ranking in other categories

No ranking in other categories

USM Anywhere

Average Rating

8.4

Reviews Sentiment

7.0

Number of Reviews

115

Ranking in other categories

Log Management (42nd), Security Information and Event Management (SIEM) (31st), Endpoint Detection and Response (EDR) (53rd), Compliance Management (12th)

Featured Reviews

Dannie Combs

Senior Vice President and Chief Information Security Officer at Donnelley Financial Solutions

The alert fatigue and false positive rates have just plummeted, which is really exciting.

empow has a few areas of improvement as with any other technology, such as continuing to drive innovation in the dashboard. While we've been extremely impressed with the dashboard's ease of use, flexibility, ability to drill down deeply, and focus very intently on an area of interest, there will always be opportunities to be more innovative and open it up to a wider audience than just the operations group, for example. With reporting, there is always a desire to have custom reporting for every client of empow. Relative to keeping up with the sheer pace of cloud-native technologies, it should provide more options for clients to deploy their technologies in unique ways. This is an area that I recommend that they maintain focus.

Read full review

Kris Nawani

Co-Founder/Director at Bangkok MSP Company Limited

Offers complete coverage without the need to install additional software

USM Anywhere is used for threat detection and investigation. It provides a solution with built-in threat intelligence and various other investigation tools The solution offers complete coverage without the need to install additional software, as it is maintained by the vendor. It helps in saving…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"As a result of the automation, we are able to manage SIEM with a small security team. I'm in a unique position where we have been growing the security organization quite rapidly over the last three and a half years. But, as a direct result of the empow transition and legacy collection of tools towards the empow platform, we've been able to keep that head count flat. We've been able to redirect a lot of the security team's time away from the wash, rinse, repeat activities of responding to alarms where we have a high degree of confidence that they will be false positives, adjusting the rules accordingly. This can be a bit frustrating for the analyst when they have to spend hours a day dealing with these types of probable false positives. So, it has helped not only us keep our headcount flat relative to the resources necessary to provide the assurances that our executives expect of us for monitoring, but allows our analyst team to spend the majority of their time doing what they love. They are spending their time meaningfully with a higher degree of confidence and enjoying getting into the incident response type activity."

"Log-monitoring and alerting enable us to know when things happen that we need to know about."

"The solution also provides basic log storage options for periods of 15, 30, and 90 days."

"Easy to use, scalable, stable, and very intuitive platform that provides protection against security threats."

"This solution can completely detect and prevent incidents on your network."

"The most valuable feature of this solution is security management for PCI DSS."

"On any given day I could give you a different answer regarding the most valuable features of the product. The feature that is most important is the fact that it has a lot of features, that it's not just a log collection and correlation system, that it has a lot of other components built in. The bundle of features is really the killer feature."

"It has allowed us to see what is happening on our servers."

"The solution is stable."

More USM Anywhere pros

Cons

"Relative to keeping up with the sheer pace of cloud-native technologies, it should provide more options for clients to deploy their technologies in unique ways. This is an area that I recommend that they maintain focus."

"It should be able to communicate with other security solutions to stop threats."

"The UI and overall processes need a little bit more love. This shows in the error banners that come up when you select certain things. There isn't a day that goes by that the UI doesn't error out and I can't view events for an alarm."

"In the future, I would like to see all these features of the solution working properly."

"I think plugin management should be self-service on AlienVault USM. The other product is self-service but on the USM side. You have to submit a ticket then AT&T creates and updates the plugins."

"There could be some type of integration with our existing portal. We have our own customer portals, and it would be good if there was an integration so that our portal can provide reports. There could be some type of API into the AlienVault system with the USM system so that it is easy to show the customers high-level reports of the system through our portal."

"For creating new rules, you have to be familiar with regular expressions. I feel there could be something built-in to make sure that process is easier."

"Source material on the forums to be more up-to-date with the changes happening within the product. Forums being out-of-date with information due to the changes makes troubleshooting a little more difficult - specific to the HIDS agents."

"The solution is a bit complicated. It could be simplified quite a bit."

More USM Anywhere cons

Pricing and Cost Advice

"I don't have to put up with any longer with these hypercomplex licensing agreements. Every time I want to add some additional reporting as a compliance centric or regulatory specific, e.g., GDPR, PCI, or Sarbanes-Oxley, many providers would have an additional license for this, which felt a bit ridiculous to me. With the simplified licensing architecture, there were no hidden "gotchas" down the road with empow. Something I have experienced with other providers that I've worked with in the past."

"With a higher degree of fidelity in the alarms, we were able to avoid adding additional resources to our teams. We take into account the cost of security resources in the market and the significantly higher fidelity from the alarms that are being generated. This drove down our costs with our MSSP. It drove down my cost for human capital internally. It drove down our need to have multiple resources supporting the underlying infrastructure and health and maintenance of empow as a platform from several resources down to one. Therefore, human capital costs were significantly reduced. Our operating expenses were significantly reduced. Our capital costs were significantly reduced while tripling our capacity and our run rate reduced. It was almost a "too good to be true" situation. Fortunately, for us, it worked out very nicely."

"So far, it has been a good solution for a tight budget."

"AT&T AlienVault USM is an expensive solution and we pay for the license and the support separately. We paid for the license and support for three years."

"QRadar, ArcSight and Splunk are some of the most expensive SIEM products out there in the market and not everyone has the budget to buy them. In such cases, AV USM is a very cost effective alternative."

"It allows you to do a lot with a small price tag... The pricing is the best on the market."

"I don't think the product's pricing is a good value because they try to raise the price 50 percent every year... AlienVault needs to understand that not all customers are huge enterprises... Their sales team is way too aggressive. The price they advertise is not always the price you get."

"It's affordable for most customers."

"AlienVault is certainly not nearly as expensive as Splunk or QRadar. It's decently priced, but I don't have the exact figure."

"We pay around $12,000 a year including storage."

More USM Anywhere pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

849,686 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

16%

Real Estate/Law Firm

12%

Financial Services Firm

10%

Legal Firm

Computer Software Company

20%

Financial Services Firm

Comms Service Provider

Educational Organization

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

Ask a question

Earn 20 points

What do you like most about AT&T AlienVault USM?

The most valuable feature of the solution is the ease of deployment that it provides to users. The integrations that the product has with third-party applications are useful.

See all answers

What is your experience regarding pricing and costs for AT&T AlienVault USM?

The pricing is amazing and really cheap.

See all answers

What needs improvement with AT&T AlienVault USM?

There are scalability issues due to a 60 TB limit, which restricts its use for large customers like banks. It is also limited when used with bigger products and has complex password requirements.

See all answers

Comparisons

DNIF HYPERCLOUD vs i-SIEM [EOL]

Compared 100% of the time

More i-SIEM [EOL] Competitors

AlienVault OSSIM vs USM Anywhere

Compared 30% of the time

Splunk Enterprise Security vs USM Anywhere

Compared 14% of the time

Wazuh vs USM Anywhere

Compared 13% of the time

Rapid7 InsightIDR vs USM Anywhere

Compared 11% of the time

IBM Security QRadar vs USM Anywhere

Compared 10% of the time

More USM Anywhere Competitors

Product Reports

Buyer's Guide

Security Information and Event Management (SIEM)

April 2025

Download i-SIEM [EOL] product report

Buyer's Guide

USM Anywhere

April 2025

Download USM Anywhere product report

Also Known As

No data available

AT&T AlienVault USM, AlienVault, AlienVault USM, Alienvault Cybersecurity

Overview

i-SIEM [EOL] delivers comprehensive monitoring and threat detection capabilities suitable for today's security challenges. It integrates with existing systems, enabling efficient threat analysis and response for knowledgeable users.

i-SIEM [EOL] offers advanced security analytics and seamless integration with security infrastructure, making it a favored choice among technology professionals. Its intuitive design caters to efficient threat management. Users appreciate its capability to process large data volumes for timely threat detection and remediation. The platform ensures effective incident response through automated processes, assisting professionals in maintaining robust security postures.

What are the key features of i-SIEM [EOL]?

Advanced Threat Detection: Utilizes real-time analytics for identifying potential security threats.
Integration Capabilities: Easily connects with diverse security tools for a cohesive security strategy.
Automated Incident Response: Facilitates swift responses to security incidents to mitigate risks.

What benefits and ROI can i-SIEM [EOL] offer?

Reduced Security Risks: Proactively identifies and addresses vulnerabilities before exploitation.
Operational Efficiency: Automation reduces manual workload and minimizes error.
Cost-Effectiveness: Streamlines processes to lower overall security management costs.

i-SIEM [EOL] is implemented across industries like finance, healthcare, and manufacturing, where security and compliance are critical. Its flexibility in handling specific industry requirements makes it suitable for enhancing security postures and operational efficiency.

Cybereason

USM Anywhere centralizes security monitoring of networks and devices in the cloud, on premises, and in remote locations, helping you to detect threats virtually anywhere.

Discover

Network asset discovery
Software & services discovery
AWS asset discovery
Azure asset discovery
Google Cloud Platform asset discovery

Analyze

SIEM event correlation, auto-prioritized alarms
User activity monitoring
Up to 90-days of online, searchable events

Detect

Cloud intrusion detection (AWS, Azure, GCP)
Network intrusion detection (NIDS)
Host intrusion detection (HIDS)
Endpoint Detection and Response (EDR)

Respond

Forensics querying
Automate & orchestrate response
Notifications and ticketing

Assess

Vulnerability scanning
Cloud infrastructure assessment
User & asset configuration
Dark web monitoring

Report

Pre-built compliance reporting templates
Pre-built event reporting templates
Customizable views and dashboards
Log storage

LevelBlue

Sample Customers

University of Oklahoma, Donnelley

Abel & Cole, Bank of Ireland, Bluegrass Cellular, CareerBuilder, Claire's, Hays Medical Center, Hope International, McCurrach, McKinsey & Company, Party Delights, Pepco Holdings, Richland School District, Ricoh, SaveMart, Shake Shack, Steelcase, TaxAct, Taylor Morrison, Vonage and Zoom

Buyer's Guide

Security Information and Event Management (SIEM)

April 2025

Download Free Report

Find out what your peers are saying about Splunk, Wazuh, Microsoft and others in Security Information and Event Management (SIEM). Updated: April 2025.

DOWNLOAD NOW

849,686 professionals have used our research since 2012.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.