Security That’s Unified, Simple, & Affordable.

Get Complete Security Visibility in One Day.

AlienVault Unified Security Management™ (USM) is an all-in-one platform designed and priced to ensure that mid-market organizations can effectively defend themselves against today’s advanced threats.

Unlike traditional SIEM or security point products, AlienVault USM provides:

  • Unified, Coordinated Security Monitoring
  • Simple Security Event Management and Reporting
  • Continuous Threat Intelligence
  • Fast Deployment
  • Multiple Security Functions Without Multiple Consoles

AlienVault Unified Security Management:

Better Threat Detection for Effective Response

Our goal is to provide you with a unified threat detection and compliance management solution that is both easy-to-use and affordable. We’ve built all of the essential security capabilities you need into one Unified Security Management™ platform, which is then powered by up-to-the-minute threat intelligence from AlienVault Labs and our Open Threat Exchange™—the world’s largest crowd-sourced collaborative threat repository.

The result is a powerful solution that delivers on its promise of complete security visibility.

The Unified Security Management Difference

5 Essential Security Capabilities in a Single Console

The AlienVault Unified Security Management™ (USM) platform provides five essential security capabilities in a single console, giving you everything you need to manage both compliance and threats. Understanding the sensitive nature of IT environments, we include active, passive and host-based technologies so that you can match the requirements of your particular environment.

Asset Discovery

Active Network Scanning

Passive Network Monitoring

Asset Inventory

Vulnerability Assessment

Network Vulnerability Testing

Continuous Vulnerability Monitoring

Threat Detection

Network IDS

Host IDS

File Integrity Monitoring

Behavioral Monitoring

  • Log Collection
  • Netflow Analysis
  • Service Availability Monitoring
  • Full packet capture

Security Intelligence

  • SIEM Correlation
  • Incident Response
  • Reporting and Alarms

More Than Just a SIEM

– It’s Unified Security Management!

Traditional SIEM solutions promise to provide what you need – but the path to get there is one most of us can’t afford. Traditional SIEM solutions integrate and analyze the data produced by other security technologies that are already deployed, but unfortunately most mid-market organizations don’t have those other technologies deployed yet!

AlienVault USM provides a different path. In addition to all the functionality of a traditional SIEM, AlienVault USM also builds the essential security capabilities into a single platform with no additional feature charges. And AlienVault’s focus on ease of use and deployment makes it the perfect fit for mid-market enterprises and organizations with limited budget and few in-house resources.

FEATURES: AlienVault USM Traditional SIEM
Management:
Log Management
Event Management
Event Correlation
Reporting
Trouble Ticketing Built-In $$(3rd-party product that requires integration)
Security Monitoring Technologies:
Asset Discovery Built-In $$(3rd-party product that requires integration)
Network IDS Built-In $$(3rd-party product that requires integration)
Host IDS Built-In $$(3rd-party product that requires integration)
Netflow Built-In $$(3rd-party product that requires integration)
Full Packet Capture Built-In $$(3rd-party product that requires integration)
File Integrity Monitoring Built-In $$(3rd-party product that requires integration)
Vulnerability Assessment Built-In $$(3rd-party product that requires integration)
Additional Capabilities:
Continuous Threat Intelligence Built-In $$(3rd-party product that requires integration)
Unified Management Console for security monitoring technologies Built-In $$(3rd-party product that requires integration)

Assess. Detect. Respond with USM.

 

Assess the Network to Find Devices, Services & Vulnerabilities.

Within minutes of installing the USM product, our asset discovery features - Active Network Scanning, Passive Network Monitoring, Asset Inventory, Host-based Software Inventory - will provide you visibility into the assets on your network, what software is installed on them, how they’re configured, any potential vulnerabilities and active threats being executed against them. You’ll be able to quickly answer questions such as:

 What devices are on my network?

What are users doing?

What vulnerabilities exist in my network?

Are there known attackers trying to interact with my network?

Are there active threats in my network?

Detect the Latest Threats(Without Your Own Research Team)

Busy IT security teams don’t have the time or the resources to research the latest threats on their own. Our team of security experts in AlienVault Labs, constantly monitors, analyzes, reverse engineers, and reports on sophisticated zero-day threats including malware, botnets, phishing campaigns and more.

Unlike single-purpose threat intelligence focused on only one security control, AlienVault Labs Threat Intelligence delivers eight coordinated rulesets, fueled by the collective power of the Open Threat Exchange. AlienVault Labs Threat Intelligence leverages the built-in USM security capabilities for you to identify the latest threats, resulting in the broadest detection of attacker techniques, to inform effective responses and defensive strategy.

Detect Threats Quickly & Accelerate Compliance

Unlike preventative-only security tools (e.g., firewalls, anti-virus, etc.), and single-purpose monitoring tools (SIEM, IDS, vulnerability assessment, log management, etc.), AlienVault’s USM platform provides a unified approach to threat detection and compliance management.

We don’t make false promises of 100% protection with our USM platform, but rather quickly detect threats and accelerate compliance by delivering unified and coordinated security monitoring capabilities, powered by the latest threat intelligence and access to a community of practitioners for collaborative defense.

PCI, HIPAA, Sarbanes-Oxley and other compliance mandates are an ongoing concern for many of our customers. AlienVault USM makes your compliance task easier by:

Providing you a quick and easy way to deploy the security technology necessary for many of the compliance requirements

Allowing you to determine performance against compliance requirements, such as mandated vulnerability scans, access controls, logging and retention of logs

Allowing you to manage and ensure performance of ongoing compliance tasks

Providing compliance reports to inform management and help you pass audits

Discover the Easiest Way to Get Complete Security Visibility and Actionable Threat Intelligence

AlienVault USM Delivers

Achieving complete security visibility can be time-consuming, costly and complex. Collecting the right data, aggregating it, normalizing and correlating disparate technologies for a complete view of your security posture isn’t trivial. Discover a new way with AlienVault.

Complete Visibility for Immediate Answers.

By building in the essential security capabilities, AlienVault USM significantly reduces complexity and reduces deployment time so that you can go from installation to first insight in about an hour. With thousands of event correlation rules built in, and the ability to create custom event correlation rules, you’ll be able to quickly answer questions such as:

What’s happening right now that could signal a data breach?

What do I need to do right now in order to prevent service outages or malware outbreaks?

Are the security controls in place doing their job? Or do I need to reconfigure our defenses?

Where do we need to focus in order to be ready for our audit next week?

Get Immediate Results on Day One.

Within the first day of installation you’ll be able to:

Prioritize risk through correlation of reputation, threat severity and asset vulnerability

Run risk assessment and vulnerability reports of affected assets

Detect threats through correlation of firewall logs & Windows events

Get a forensic view into stored logs

Deploy the technology needed to comply with requirements in: PCI DSS, HIPAA, ISO 27002, SOX, GPG 13 and more.