AlienVault USM

AlienVault Unified Security Management™ (USM) is an all-in-one platform designed and priced to ensure that mid-market organizations can effectively defend themselves against today’s advanced threats.

The AlienVault Unified Security Management (USM) platform provides five essential security capabilities in a single console, giving you everything you need to manage both compliance and threats. Understanding the sensitive nature of IT environments, we include active, passive and host-based technologies so that you can match the requirements of your particular environment.

The Unified Security Management Difference

5 Essential Security Capabilities in a Single Console

The AlienVault Unified Security Management (USM) platform provides five essential security capabilities in a single console, giving you everything you need to manage both compliance and threats. Understanding the sensitive nature of IT environments, we include active, passive and host-based technologies so that you can match the requirements of your particular environment.

 

Asset Discovery

Find all assets on your network before a bad actor does

  • Active Network Scanning
  • Passive Network Monitoring
  • Asset Inventory
  • Software Inventory

Vulnerability Assessment

Identify systems on your network that are vulnerable to exploits

  • Network Vulnerability Testing
  • Continuous Vulnerability Monitoring

Intrusion Detection

Detect malicious traffic on your network

  • Network IDS
  • Host IDS
  • File Integrity Monitoring (FIM)

 

Behavioral Monitoring

Identify suspicious behavior and potentially compromised systems

  • Netflow Analysis
  • Service Availability Monitoring
  • Full packet capture

SIEM

Correlate and analyze security event data from across your network

  • Log Management
  • Event Correlation
  • Incident Response
  • Reporting and Alarms

Discover the Easiest Way to Get Complete Security Visibility and Actionable Threat Intelligence

AlienVault USM Delivers

Achieving complete security visibility can be time-consuming, costly and complex. Collecting the right data, aggregating it, normalizing and correlating disparate technologies for a complete view of your security posture isn’t trivial. Discover a new way with AlienVault.

Ownership of the built-in data sources and management platform, coupled with unmatched security expertise delivered by the AlienVault Labs team of security experts, provides effective security controls and seamlessly integrated threat intelligence for any environment.

 

Complete Visibility for Immediate Answers

By building in the essential security capabilities, AlienVault USM significantly reduces complexity and reduces deployment time so that you can go from installation to first insight in about an hour. With thousands of event correlation rules built in, and the ability to create custom event correlation rules, you’ll be able to quickly answer questions such as:

  • What’s happening right now that could signal a data breach?
  • What do I need to do right now in order to prevent service outages or malware outbreaks?
  • Are the security controls in place doing their job? Or do I need to reconfigure our defenses?
  • Where do we need to focus in order to be ready for our audit next week?

 

Get Immediate Results on Day One

Within the first day of installation you’ll be able to:

  • Prioritize risk through correlation of reputation, threat severity and asset vulnerability
  • Run risk assessment and vulnerability reports of affected assets
  • Detect threats through correlation of firewall logs & Windows events
  • Get a forensic view into stored logs
  • Deploy the technology needed to comply with requirements in: PCI DSS, HIPAA, ISO 27002, SOX, GPG 13 and more.