It's been two months since this profile received a new review

LevelBlue USM Anywhere Reviews & Product Details

AlienVault USM Anywhere is a cloud-based security management solution that accelerates and centralizes threat detection, incident response, and compliance management for your cloud, hybrid cloud, and on-premises environments. USM Anywhere includes purpose-built cloud sensors that natively monitor your Amazon Web Services (AWS) and Microsoft Azure cloud environments. On premises, lightweight virtual sensors run on Microsoft Hyper-V and VMware ESXi to monitor your virtual private cloud and physical IT infrastructure. With USM Anywhere, you can rapidly deploy sensors into your cloud and on-premises environments while centrally managing data collection, security analysis, and threat detection from the AlienVault Secure Cloud. Five Essential Security Capabilities in a Single SaaS Platform AlienVault USM Anywhere provides five essential security capabilities in a single SaaS solution, giving you everything you need for threat detection, incident response, and compliance management—all in a single pane of glass. With USM Anywhere, you can focus on finding and responding to threats, not managing software. An elastic, cloud-based security solution, USM Anywhere can readily scale to meet your threat detection needs as your hybrid cloud environment changes and grows. 1. Asset Discovery 2. Vulnerability Assessment 3. Intrusion Detection 4. Behavioral Monitoring 5. SIEM

Seller

LevelBlue

Discussions

LevelBlue USM Anywhere Community

Languages Supported

English

Product Description

AlienVault USM (from AT&T Cybersecurity) is a platform that provides five essential security capabilities in a single console to manage both compliance and threats, understanding the sensitive nature of IT environments, include active, passive and host-based technologies to match the requirements of each particular environment.

Overview by

Tami Andrews (Sr. Customer Advocacy Programs Manager at AT&T Cybersecurity)

Value at a Glance

Averages based on real user reviews.

Time to Implement

2 months

Return on Investment

21 months

View More Pricing Information

Top-Rated Alternatives

View All Alternatives

LevelBlue USM Anywhere Media

USM_dashboard.png

G2 reviews are authentic and verified.

Here's how.

Luis Emmanuel M.

Gerente de Operaciones de Cuentas Black

Information Technology and Services

Mid-Market (51-1000 emp.)

9/23/2025

"Comprehensive cloud security and monitoring platform"

5/5

What do you like best about LevelBlue USM Anywhere?

The complete visibility of the infrastructure and the ease of correlating security events in real time.

Its ability to integrate SIEM, intrusion detection, vulnerability analysis, and incident management into a single panel; in addition to the intuitive dashboards and proactive alerts that reduce response time. Review collected by and hosted on G2.com.

What do you dislike about LevelBlue USM Anywhere?

It may take time to adjust the policies and custom rules; additionally, some advanced reports could be more flexible in formats and filters. Review collected by and hosted on G2.com.

Goodness I.

Information Security Analyst

Financial Services

Mid-Market (51-1000 emp.)

5/24/2024

"Impressive Cloud Based SIEM"

4.5/5

What do you like best about LevelBlue USM Anywhere?

I like the automated asset discovery feature, once we created the network tap, we could easily discover assets on the dashboard.

Another feature that I absolutely love is the integration with Alienvault OTX, having to group/categorise IP addresses and hostnames based on pulses from OTX gives you an idea of what you're about to investigate before you even get started. Review collected by and hosted on G2.com.

What do you dislike about LevelBlue USM Anywhere?

The least helpful thing would be the need to spend more for EPS.

If you have a large on-prem environment and you decide to use Alienvault, you could be regularly over-shooting the EPS count for your license, this increases cost.

The more your environment grows, the more you have to pay for licenses. Review collected by and hosted on G2.com.

What problems is LevelBlue USM Anywhere solving and how is that benefiting you?

We can use the Vulnerability Scanner without having to pay for another Vulnerability Scanning software, and not incur the risks associated with open source scanners.

Running a hybrid environment means we need full visibility on both cloud and on-prem assets, and Alienvault gives us that coverage. Review collected by and hosted on G2.com.

Chris E.

Security Engineer

Mid-Market (51-1000 emp.)

1/20/2023

"Super easy to use and works well for all of our clients"

5/5

What do you like best about LevelBlue USM Anywhere?

This is a great SIEM with all the features we need. It has central management which is huge for us since we are an MSSP and have many clients in many different environments. It also has some built in connections with tools that are super helpful. Review collected by and hosted on G2.com.

What do you dislike about LevelBlue USM Anywhere?

I don't really dislike anything about Alienvault. The cost isn't very high and the services offered are pretty wide. If I had to change anything I think I would add rules based on time. Review collected by and hosted on G2.com.

Nisarg S.

Cyber Security Expert

Enterprise (> 1000 emp.)

6/23/2022

"It is good for the small org. to start with security monitoring."

2.5/5

What do you like best about LevelBlue USM Anywhere?

They have an easy-to-understand UI, the case management is really good. Also, suppression of the false-positive area is very easily available. Onboarding of the data sources are easy. Review collected by and hosted on G2.com.

What do you dislike about LevelBlue USM Anywhere?

Availability of the SIEM tool is the major issue here. They have a lot of downtimes and even sometimes without prior notice, it is not accessible. Also the performance is very poor. It takes minutes after clicking once. Review collected by and hosted on G2.com.

Javier A.

Cybersecurity Consultant

Enterprise (> 1000 emp.)

5/19/2022

"Simple and secure network monitoring and SIEM"

4/5

What do you like best about LevelBlue USM Anywhere?

A SIEM in all-in-one format, with which you can easily have the functionalities of a SIEM, network behavior analysis and vulnerability analysis.

Plus, it's easy to deploy and has plenty of integrations available to use. Review collected by and hosted on G2.com.

What do you dislike about LevelBlue USM Anywhere?

In very large environments, it is very heavy to manage and servers can consume a lot of RAM.

High availability is not well designed, so you have to look for workarounds to secure the solution. Review collected by and hosted on G2.com.

Verified User in Information Services

Small-Business (50 or fewer emp.)

8/31/2021

"I couldn't do my job without AlienVault."

5/5

What do you like best about LevelBlue USM Anywhere?

Alien Vault is essential to the day to day operations of our entire intel team. Being able to pivot on related files and prove maliciousness of a domain makes AV one of the best OSINT tools on the market. Review collected by and hosted on G2.com.

What do you dislike about LevelBlue USM Anywhere?

I dislike how much Alien Vault charges for their enterprise accounts. Review collected by and hosted on G2.com.

Verified User in Information Technology and Services

Mid-Market (51-1000 emp.)

12/11/2021

"Simple SIEM"

4.5/5

What do you like best about LevelBlue USM Anywhere?

Simple SIEM, easy to set-up, great actionable results, clear reporting features. Easy to work with assistance team. Review collected by and hosted on G2.com.

What do you dislike about LevelBlue USM Anywhere?

Some false positives take time to correct. Review collected by and hosted on G2.com.

Karl H.

Information Security Manager

Mid-Market (51-1000 emp.)

3/31/2017

Business partner of the seller or seller's competitor, not included in G2 scores.

"Security that is out of this world"

5/5

What do you like best about LevelBlue USM Anywhere?

The ease of use and customization. The USM is a work horse, no matter what devices or the number of logs we throw at it, the system processes them in real-time, correlates the events, and alerts on only events that need human review. USM Anywhere was a great progression of the product, whether you are a small business with no security team or a large enterprise with a large team, AlienVault will meet your needs. Review collected by and hosted on G2.com.

What do you dislike about LevelBlue USM Anywhere?

The one thing I continue to dislike about the USM Anywhere the lack of an on-prem deployment option. Review collected by and hosted on G2.com.

Recommendations to others considering LevelBlue USM Anywhere:

Compare how AlienVault does Events Per Second (EPS) compared to others. Most other products charge based on EPS, the more events the more you have to pay. This causes most companies to limit the amount of logs sent and processed. AlienVault charges by the number of devices managed, you can send anything and everything to the USM. The more logs you can process the better correlation you will have. I have found that companies that limit their logs then have a security incident would have been able to identify the attack if they would have been monitoring all events in their logs. Review collected by and hosted on G2.com.

What problems is LevelBlue USM Anywhere solving and how is that benefiting you?

We are able to get a real-time view on of our security that is accurate. We have seen a dramatic increase in the productivity and efficiency of our security team. We are now able to identify and stop security issues before they get out of control, usually before anyone else even notices. Review collected by and hosted on G2.com.

Response from Tami Andrews of LevelBlue USM Anywhere

edit

Thank you Karl for your time & remarks!

Verified User in Accounting

Small-Business (50 or fewer emp.)

11/1/2020

Business partner of the seller or seller's competitor, not included in G2 scores.

"ATT transformed AlienVault for enterprises but not for MSPs"

3.5/5

What do you like best about LevelBlue USM Anywhere?

the rich interface and the ThreatIntell overall was pretty good. Review collected by and hosted on G2.com.

What do you dislike about LevelBlue USM Anywhere?

the management and maintenance are too cumbersome. Review collected by and hosted on G2.com.

Recommendations to others considering LevelBlue USM Anywhere:

Make sure you have 3 engineers to manage, maintain, and Operate the SIEM platform alone. You also need 6 security analyst. The training is expensive so make sure you have one SME to teach others. Review collected by and hosted on G2.com.

What problems is LevelBlue USM Anywhere solving and how is that benefiting you?

we are solving SIEM required by regulators Review collected by and hosted on G2.com.

Verified User in E-Learning

Mid-Market (51-1000 emp.)

10/3/2020

"Good SIEM tool for monitoring and tracking events."

4.5/5

What do you like best about LevelBlue USM Anywhere?

Great to monitor events and provide feedback. Good product coverage. It has integration with SQL, AWS and other cloud infrastructure with ease. Better than cloudwatch. This tool is cheaper than splunk. Review collected by and hosted on G2.com.

What do you dislike about LevelBlue USM Anywhere?

Sometimes becomes overly complicated to analyze DDoS attacks. Not very user friendly. Review collected by and hosted on G2.com.