Security Experts:

AlienVault Updates SIEM Platform, Adds Support for Amazon EC2

On Tuesday, AlienVault, the company behind open source SIEM, OSSIM, announced the version 4.1 release of their Unified Security Management platform, which looks to resolve the challenges associated with typical SIEM deployments including cost, complexity, and implementation.

AlienVaultAlienVault’s Unified Security Management platform is based on their OSSIM (Open Source SIEM), which offers the standard tools such as event collection, normalization, correlation and incident response. In addition, it offers asset detection, vulnerability assessment, threat detection, behavioral monitoring and other security intelligence capabilities.

The 4.1 release adds support for Amazon’s EC2, auto deployment, and customized, contextually relevant workflow-driven response procedure templates. Moreover, 4.1 adds the Suricata IDS profile, which is an alternative to the SNORT IDS engine.

“Lack of security visibility and control is a primary concern when businesses move workloads to the cloud,” said Russ Spitler, VP of Product Management at AlienVault.

“Traditional SIEM solutions are extremely limited in their ability to monitor cloud environments, leaving companies with siloed assets and glaring holes in their security risk posture. By enabling the AV-USM platform to monitor Amazon EC2, AlienVault customers can lower their costs, optimize their IT environments and get security wherever they need it to be, without sacrificing visibility in their own private datacenters or the public cloud.”

The company also said that it launched a new documentation portal which adds to its support forum and provides access to interactive assets, product documents and how-to videos for the OSSIM community.

AlienVault Unified Security Management platform version 4.1 is available now. More information on the release is available here.

Steve Ragan is a security reporter and contributor for SecurityWeek. Prior to joining the journalism world in 2005, he spent 15 years as a freelance IT contractor focused on endpoint security and security training.