USM Anywhere vs i-SIEM [EOL] comparison

Cybereason and LevelBlue are both solutions in the Security Information and Event Management (SIEM) category. Additionally, 100% of Cybereason users are willing to recommend the solution, compared to 92% of LevelBlue users who would recommend it.

i-SIEM [EOL]

Read 1 i-SIEM [EOL] review

100% willing to recommend

USM Anywhere

Read 115 USM Anywhere reviews

1,843 Views
1,047 Comparison Views

92% willing to recommend

i-SIEM [EOL]

USM Anywhere

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Apr 20, 2025

USM Anywhere and i-SIEM compete in security information and event management. USM Anywhere has the upper hand due to its ease of use and customer support, while i-SIEM offers enhanced scalability and advanced features for complex deployments.

Features: USM Anywhere provides comprehensive threat detection, unified security management, and integrated threat intelligence. It is known for its intuitive platform. i-SIEM delivers robust data processing capabilities and is suitable for larger environments due to its enhanced scalability and powerful data handling.

Ease of Deployment and Customer Service: USM Anywhere is recognized for straightforward cloud-based deployment and responsive customer service, making it easy to implement and maintain. i-SIEM, while offering more customization, has a complex setup that can pose challenges.

Pricing and ROI: USM Anywhere generally offers a more favorable initial setup cost with a steady ROI due to its user-friendly interface. i-SIEM requires a significant initial investment but can achieve high ROI in large-scale operations with its advanced capabilities.

To learn more, read our detailed Security Information and Event Management (SIEM) Report (Updated: June 2025).

Buyer's Guide

Security Information and Event Management (SIEM)

June 2025

Download the complete report

Helped 856,873 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

i-SIEM [EOL]

Average Rating

9.0

Number of Reviews

Ranking in other categories

No ranking in other categories

USM Anywhere

Average Rating

8.4

Reviews Sentiment

7.0

Number of Reviews

115

Ranking in other categories

Log Management (47th), Security Information and Event Management (SIEM) (28th), Endpoint Detection and Response (EDR) (52nd), Compliance Management (12th)

Featured Reviews

Dannie Combs

Senior Vice President and Chief Information Security Officer at Donnelley Financial Solutions

The alert fatigue and false positive rates have just plummeted, which is really exciting.

empow has a few areas of improvement as with any other technology, such as continuing to drive innovation in the dashboard. While we've been extremely impressed with the dashboard's ease of use, flexibility, ability to drill down deeply, and focus very intently on an area of interest, there will always be opportunities to be more innovative and open it up to a wider audience than just the operations group, for example. With reporting, there is always a desire to have custom reporting for every client of empow. Relative to keeping up with the sheer pace of cloud-native technologies, it should provide more options for clients to deploy their technologies in unique ways. This is an area that I recommend that they maintain focus.

Read full review

Kris Nawani

Co-Founder/Director at Bangkok MSP Company Limited

Offers complete coverage without the need to install additional software

USM Anywhere is used for threat detection and investigation. It provides a solution with built-in threat intelligence and various other investigation tools The solution offers complete coverage without the need to install additional software, as it is maintained by the vendor. It helps in saving…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"As a result of the automation, we are able to manage SIEM with a small security team. I'm in a unique position where we have been growing the security organization quite rapidly over the last three and a half years. But, as a direct result of the empow transition and legacy collection of tools towards the empow platform, we've been able to keep that head count flat. We've been able to redirect a lot of the security team's time away from the wash, rinse, repeat activities of responding to alarms where we have a high degree of confidence that they will be false positives, adjusting the rules accordingly. This can be a bit frustrating for the analyst when they have to spend hours a day dealing with these types of probable false positives. So, it has helped not only us keep our headcount flat relative to the resources necessary to provide the assurances that our executives expect of us for monitoring, but allows our analyst team to spend the majority of their time doing what they love. They are spending their time meaningfully with a higher degree of confidence and enjoying getting into the incident response type activity."

"Reports are customized, so you can present them to executives or engineers."

"It has powerful threat detection, incident response, and compliance management."

"The pricing is amazing and really cheap."

"There are multiple tools for information security. The solution includes all the latest advances on the network and host intrusion detection systems."

"The solution also provides basic log storage options for periods of 15, 30, and 90 days."

"It allows you to define what alerts you want to see, or not to see, as well as if you want them grouped, or ungrouped."

"Any unusual behaviour, we can monitor. We have alerts set up to be sent when we receive signs of any unusual behaviour."

"The best thing about AlienVault USM is it being a “Jack-of-All Trades” solution. It provides SIEM, HIDS/NIDS, FIM, NetFlow, Asset Management, Vulnerability Management, etc., under one USM platform. None of the commercial SIEM vendors like ArcSight, McAfee, etc., can boast of such a diverse feature set."

More USM Anywhere pros

Cons

"Relative to keeping up with the sheer pace of cloud-native technologies, it should provide more options for clients to deploy their technologies in unique ways. This is an area that I recommend that they maintain focus."

"Search performance can be slow. The Raw Logs feature is painfully slow. And if we're talking about the newer, the Anywhere product, you can't even schedule reports on the thing. There are probably a dozen other features I'd really like to see there, but that would be one of the biggies."

"We would like more plugins. This being the main point of improvement which would benefit the users."

"I've been told that AlienVault doesn't have a full version of NES running in there, but I'm not sure if that's accurate or if my engineer made it that way. I'm not sure he was completely honest either because we had NES in the environment before. Those tools could be improved because AlienVault is a SIEM, and it added all these other features."

"Windows log collection works with HIDS, but documentation is sparse and confusing."

"The reporting and dashboards have room for improvement."

"Its reporting tools need improvements. It would be good if they can provide integration with other ticketing systems. Currently, we only have integration with Slack and Jira. It is also a bit slow, and its replication engine can be improved."

"The reporting aspect could be improved. While there are a lot of different options available, there are still pieces which are missing."

"The vulnerability reporting needs to have options to be able to sort or customize the output."

More USM Anywhere cons

Pricing and Cost Advice

"With a higher degree of fidelity in the alarms, we were able to avoid adding additional resources to our teams. We take into account the cost of security resources in the market and the significantly higher fidelity from the alarms that are being generated. This drove down our costs with our MSSP. It drove down my cost for human capital internally. It drove down our need to have multiple resources supporting the underlying infrastructure and health and maintenance of empow as a platform from several resources down to one. Therefore, human capital costs were significantly reduced. Our operating expenses were significantly reduced. Our capital costs were significantly reduced while tripling our capacity and our run rate reduced. It was almost a "too good to be true" situation. Fortunately, for us, it worked out very nicely."

"I don't have to put up with any longer with these hypercomplex licensing agreements. Every time I want to add some additional reporting as a compliance centric or regulatory specific, e.g., GDPR, PCI, or Sarbanes-Oxley, many providers would have an additional license for this, which felt a bit ridiculous to me. With the simplified licensing architecture, there were no hidden "gotchas" down the road with empow. Something I have experienced with other providers that I've worked with in the past."

"It is a product that is priced in a medium range, making it neither a cheap nor a costly product."

"The vulnerability management solution is worse than buying a Nessus Professional license."

"I don't think the product's pricing is a good value because they try to raise the price 50 percent every year... AlienVault needs to understand that not all customers are huge enterprises... Their sales team is way too aggressive. The price they advertise is not always the price you get."

"The price point is good."

"It allows you to do a lot with a small price tag... The pricing is the best on the market."

"Do the one month trial and try to work out the kinks during it, as it has free support and service hours."

"So far, it has been a good solution for a tight budget."

"The pricing is a good value. The key thing is that for the new product, the licensing of it, is subscription-based and it's based on data. Clients need to be really careful when thinking about that, because odds are they're going to need to put a lot more data into it than what they initially estimate, which is going to drive their subscription costs up."

More USM Anywhere pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

856,873 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

13%

Real Estate/Law Firm

12%

Financial Services Firm

Legal Firm

Computer Software Company

20%

Financial Services Firm

10%

Comms Service Provider

Educational Organization

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

Ask a question

Earn 20 points

What do you like most about AT&T AlienVault USM?

The most valuable feature of the solution is the ease of deployment that it provides to users. The integrations that the product has with third-party applications are useful.

See all answers

What is your experience regarding pricing and costs for AT&T AlienVault USM?

The pricing is amazing and really cheap.

See all answers

What needs improvement with AT&T AlienVault USM?

There are scalability issues due to a 60 TB limit, which restricts its use for large customers like banks. It is also limited when used with bigger products and has complex password requirements.

See all answers

Comparisons

DNIF HYPERCLOUD vs i-SIEM [EOL]

Compared 100% of the time

More i-SIEM [EOL] Competitors

AlienVault OSSIM vs USM Anywhere

Compared 30% of the time

Splunk Enterprise Security vs USM Anywhere

Compared 14% of the time

Rapid7 InsightIDR vs USM Anywhere

Compared 12% of the time

IBM Security QRadar vs USM Anywhere

Compared 10% of the time

Wazuh vs USM Anywhere

Compared 10% of the time

More USM Anywhere Competitors

Product Reports

Buyer's Guide

Security Information and Event Management (SIEM)

June 2025

Download i-SIEM [EOL] product report

Buyer's Guide

USM Anywhere

May 2025

Download USM Anywhere product report

Also Known As

No data available

AT&T AlienVault USM, AlienVault, AlienVault USM, Alienvault Cybersecurity

Overview

i-SIEM [EOL] delivers comprehensive monitoring and threat detection capabilities suitable for today's security challenges. It integrates with existing systems, enabling efficient threat analysis and response for knowledgeable users.

i-SIEM [EOL] offers advanced security analytics and seamless integration with security infrastructure, making it a favored choice among technology professionals. Its intuitive design caters to efficient threat management. Users appreciate its capability to process large data volumes for timely threat detection and remediation. The platform ensures effective incident response through automated processes, assisting professionals in maintaining robust security postures.

What are the key features of i-SIEM [EOL]?

Advanced Threat Detection: Utilizes real-time analytics for identifying potential security threats.
Integration Capabilities: Easily connects with diverse security tools for a cohesive security strategy.
Automated Incident Response: Facilitates swift responses to security incidents to mitigate risks.

What benefits and ROI can i-SIEM [EOL] offer?

Reduced Security Risks: Proactively identifies and addresses vulnerabilities before exploitation.
Operational Efficiency: Automation reduces manual workload and minimizes error.
Cost-Effectiveness: Streamlines processes to lower overall security management costs.

i-SIEM [EOL] is implemented across industries like finance, healthcare, and manufacturing, where security and compliance are critical. Its flexibility in handling specific industry requirements makes it suitable for enhancing security postures and operational efficiency.

Cybereason

USM Anywhere centralizes security monitoring of networks and devices in the cloud, on premises, and in remote locations, helping you to detect threats virtually anywhere.

Discover

Network asset discovery
Software & services discovery
AWS asset discovery
Azure asset discovery
Google Cloud Platform asset discovery

Analyze

SIEM event correlation, auto-prioritized alarms
User activity monitoring
Up to 90-days of online, searchable events

Detect

Cloud intrusion detection (AWS, Azure, GCP)
Network intrusion detection (NIDS)
Host intrusion detection (HIDS)
Endpoint Detection and Response (EDR)

Respond

Forensics querying
Automate & orchestrate response
Notifications and ticketing

Assess

Vulnerability scanning
Cloud infrastructure assessment
User & asset configuration
Dark web monitoring

Report

Pre-built compliance reporting templates
Pre-built event reporting templates
Customizable views and dashboards
Log storage

LevelBlue

Sample Customers

University of Oklahoma, Donnelley

Abel & Cole, Bank of Ireland, Bluegrass Cellular, CareerBuilder, Claire's, Hays Medical Center, Hope International, McCurrach, McKinsey & Company, Party Delights, Pepco Holdings, Richland School District, Ricoh, SaveMart, Shake Shack, Steelcase, TaxAct, Taylor Morrison, Vonage and Zoom

Buyer's Guide

Security Information and Event Management (SIEM)

June 2025

Download Free Report

Find out what your peers are saying about Splunk, Wazuh, Microsoft and others in Security Information and Event Management (SIEM). Updated: June 2025.

DOWNLOAD NOW

856,873 professionals have used our research since 2012.

See our list of best Security Information and Event Management (SIEM) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.