+971 4 254 1982
sales@securepoint.ae

SIEM Solutions

Single-purpose SIEM software and log management tools provide valuable security information, but often require expensive and time-consuming integration efforts to bring in log files from disparate sources such as asset inventory, vulnerability assessment, and IDS products. Once you have the data, you then must research and write correlation rules to identify threats in your environment. These challenges multiply as you migrate workloads and services from on-premises infrastructure to public cloud environments.

For today’s resource-strapped IT teams, the time and expense required to deploy a SIEM seriously delays their time to threat detection, and thus, return on investment.

Unlike other SIEM software, AlienVault® Unified Security Management™ (USM™) combines powerful SIEM and log management capabilities with other essential security tools—including asset discovery, vulnerability assessment, and intrusion detection—to give you centralized security monitoring of your cloud, hybrid cloud, and on-premises environments–all from a single pane of glass.

 

Features:

 

AlienVault USM

 

Traditional SIEM

 

Log Management

 

YES YES
Event Management

 

YES YES
Event Correlation

 

YES YES
Reporting

 

YES YES
Trouble Ticketing

 

Built-In $$
(3rd-party product that requires integration)
Asset Discovery Built-In $$
(3rd-party product that requires integration)
Network IDS Built-In $$
(3rd-party product that requires integration)
Host IDS Built-In $$
(3rd-party product that requires integration)
Netflow Built-In $$
(3rd-party product that requires integration)
Full Packet Capture Built-In $$
(3rd-party product that requires integration)
File Integrity Monitoring Built-In $$
(3rd-party product that requires integration)
Vulnerability Assessment Built-In $$
(3rd-party product that requires integration)
Continuous Threat Intelligence Built-In Not Available
Unified Management Console for security monitoring technologies Built-In Not Available

 

With USM, you can start detecting threats in your environment from Day One. That’s because USM is shipped with an extensive and continuously growing library of correlation rules researched and written by the AlienVault Labs Security Research Team. This team of seasoned security experts tracks emerging threats in the wild and continuously updates USM with the latest security intelligence, so you have an always-up-to-date security monitoring platform.