How does a WAF help to protect against DDoS attacks?

WAF helps to filter and block malicious https traffic at application layer (layer 7) before it reaches application using features like rate limiting, behavior analysis and customizable rules to prevent DDoS attacks. WAF alone is not the best solution for an end to end DDoS protection. However, WAFs are most effective when used as part of a multi-layered defense approach, often in conjunction with DDoS protection services that handle network layer (layer 3/4) attacks. Therefore, WAFs should be combined with DDoS protection services like Azure DDoS Protection or AWS Shield that protects at the network and transport level before reaching the WAF.

We are looking for BPM or Business Process Design software to connect the top layer of Enterprise Architecture (EA) to processes

Try this (I use this for many years) https://www.visual-paradigm.co...

What single sign-on platform do you recommend?

Various factors are to be considered before making a strong recommendation. The most important one these days would be the cost of the SSO solution. Apart from cost, one need to understand the use cases, user base and number of concurrent users during peak usage period, etc. Once all these information are recorded, it would be best to evaluate the available tools and rank them against each use case. Some tools can perform well even with a large user base and can be scaled up in no time. If the organization is large and has a great focus in stability, agility, and availability, expect that most of the available features are OTB. Then, you can consider going with Ping Identity or Forgerock products. Okta is a great option, too. Also, EntraID has joined the race but they still have a lot of catching up to do. However, cost may be an added advantage if you want to explore EntraID.

Has anyone moved from Microsoft Project to Smartsheet? How has your experience been with Smartsheet?

I used Smartsheet for two years to manage multiple enterprise projects—often running up to five in parallel. There was no standardized tool policy in place, so a plethora of project planning and management tools were in use across the organization, with no integration or consistency. For example: Trello, Microsoft Teams Planner, JIRA, Excel, MS Project, Miro, Confluence , and others. At the outset, I trialled several modern tools and ultimately chose Smartsheet , primarily because it: A) Was truly collaborative, flexible, and simple enough for anyone in the organization to set up and estimate their deliverables, provide work estimates, and update progress. B) Was well-accepted by both business and technical teams—as well as the tool's vendor—since it allowed users to work in familiar formats and control their own tasks. For example, developers preferred Kanban cards; marketing, sales, and finance teams favored the spreadsheet view; and business/team leads used a mix of spreadsheet, Gantt, or project views depending on their preferences. C) Enabled most team members to update their own tasks using their preferred view. When they couldn’t, the Stream Lead handled updates, added estimates, and tracked progress. For instance, the NZ Sales Stream Lead managed this for his team. D) Gave every team member access and ownership to detail the work required for their deliverables, add effort estimates and resource requirements, update progress, and flag issues and risks for reporting and action. I created a simple filter for each team member so they could quickly view and update their workload. Additionally, we used the JIRA integration feature for certain streams to reduce duplication. E) Allowed each business/technical stream lead to assign resources to tasks and identify where cross-stream collaboration was needed—e.g., Sales assisting during UAT. Again, JIRA integration supported this where applicable. F) Included "smarts" (formulas) I added to automate task RAG (Red-Amber-Green) status indicators, helping visualize delays and automatically flagging urgency. G) Supported custom project status templates and portfolio reports I developed, which were reviewed with stream leads and included in formal management reporting. Unfortunately, I was never able to use the Resource Management module due to additional licensing costs. It's an excellent tool, but suffers from poor marketing—making it virtually invisible to mainstream project folk.

How to model an enterprise architecture? What tools and templates can I use?

Hi, for many years I have used https://www.visual-paradigm.co...

In your opinion, will Google Cloud overtake Amazon AWS?

If we look at the number of customers, revenue, etc., Google Cloud is unlikely to overtake AWS. Based on current trends, Microsoft Azure might overtake AWS in 2026. However, Google Cloud is projected to stay in third place.

Buying Intelligence
for Enterprise Technology

Reviews, Discussions, and Advice from Real Users

Recent reviews

Real users share their stories. No fake reviews.

iboss

Matt Crockford

Head of Cybersecurity at SES Water

It's easy to roll out, and their understanding of our business made it seamless

One aspect we value about iboss is its simplicity. Their customer service is brilliant, and they are super responsive and knowledgeable. It's easy to roll out, and their understanding of our business made it seamless. We were impressed by the solution's mental health function, which can detect if someone needs help. It scans what users are browsing and flags warning signs so we can check to see if they are okay. We've had to use it a couple of times. The user interface is highly intuitive. Our IT team picked it up with minimal training. It's arranged so that it's easy to find where things are. Another advantage is the single pane of glass console, which gives you visibility into what's happening. We're not fully there yet because we haven't implemented zero trust, but we're excited about the possibilities from the demos we've seen. We launched a POC of iboss' ChatGPT Risk Protection feature two weeks ago. AI is a great tool, but you need to be careful what you put into it. My biggest fear is employees inputting sensitive corporate information or customer PII data into one of these chatbots. I was impressed by our trial of the feature. It's exactly what we wanted. Now, when a user goes to ChatGPT, there's a banner warning them not to share information, and we can block conversations containing customer data like bank details and email addresses. I don't want to stop people from using it, but we need visibility. We've only tried it on a test group of 15 people. You can configure it to look for specific keywords or integrate it with your DLP policy if you have that configured

Read full review

Splunk Enterprise Security

Kyle Vernham

Threat Analyst at a manufacturing company with 10,001+ employees

Built-in searches and unified data access streamline alert investigation and boosts analyst efficiency

The two features I appreciate the most in Splunk Enterprise Security are the built-in searches, which have been very easy for us to get started with right out of the box, and the fact that it accesses all of our other systems. You can access it as a pane of glass rather than having to search individually. We also have the option to compare our analysts from our service to service. Splunk Enterprise Security helps our SOC team prioritize and investigate high-fidelity alerts more effectively by providing a more in-depth look and the ability to access a lot more of our data. Instead of jumping from several segmented systems, it allows us to have everything brought together in one place. For example, you have to move from our purview to our build system and to Splunk Enterprise Security, and it enables us to streamline that process. The built-in features of Splunk Enterprise Security, which we recently procured, have given us a good starting point and demonstrated the value of the product, providing an easy way to sell it to our company. The ease of getting everything into our purview helps us, and it serves as a good start for the investigation part in one location rather than what we usually have, which is jumping from system to system to system. Splunk Enterprise Security plays a role in our company's strategy to combat insider threats and advanced persistent threats by currently being in its technical test phase. We are still rolling it out, and it should help us find any insider threats based on information that our policy states should not be present in our system. Splunk Enterprise Security's risk-based alerting (RBA) has impacted our alert volume and analyst productivity because we've got many different systems feeding into it. However, it has helped to make it easier for our analysts to go through a set of events rather than 100 alerts. RBA allows us to streamline the process and customize it for our analysts. When it comes to leveraging Splunk Enterprise Security's dashboards and visualizations to communicate security posture to executives, it's pretty straightforward for any type of information. The visualization is easy to understand, but I haven't had any direct conversations with our executives.

Read full review

CyberArk Privileged Access Manager

Atul-Gujar

CyberArk manager at a comms service provider with 10,001+ employees

Secures critical infrastructures with essential user session audit records

A potential area for improvement is enhancing support for cluster environments and distributed Vaults. Clients in multiple countries that need central access have different challenges that require better solutions from CyberArk. For financial services, CyberArk can improve incident response by ensuring fast support for critical priority tickets to meet compliance requirements. Providing more documentation on CyberArk is recommended for new team members to enhance their troubleshooting capabilities. I understand it's up to the client, but 99% fail to change the demo key, so it's crucial for CyberArk to emphasize changing the key and documenting it as part of the installation process.

Read full review

Want to share your own feedback on tech products?

Add a review

Compare solutions

Browse over 80,000 comparisons with reviews, buyer's guides, and more.

Popular Comparisons

Netgate pfSense

217 Reviews

OPNsense

43 Reviews

Cloudflare

76 Reviews

Quad9

2 Reviews

Fortinet FortiGate

411 Reviews

Sophos XG

215 Reviews

Figma

4 Reviews

Miro Business - Enterprise

9 Reviews

Amazon API Gateway

45 Reviews

Microsoft Azure API Management

82 Reviews

GitLab

86 Reviews

Microsoft Azure DevOps

135 Reviews

Checkmarx One

71 Reviews

SonarQube Server (formerly ...

117 Reviews

MinIO

24 Reviews

Red Hat Ceph Storage

27 Reviews

Hyper-V

144 Reviews

VMware vSphere

456 Reviews

AWS Secrets Manager

15 Reviews

Azure Key Vault

50 Reviews

See all comparisons

Trusted by Enterprise Tech Decision Makers

Principal DevOps Engineer

Brian H.

Principal DevOps Engineer at a large healthcare company

PeerSpot is a goldmine. Sometimes reviews on sites have lots of vendor content, yours don't. The depth is amazing as well.

CISO Office

H.K.

CISO Office at ING

Thank you for the information I was able to use when our company was in a PoC track with different vendors.

Azure Consultant

Aroosh K.

Azure Consultant at Deloitte

PeerSpot is a good platform to compare products.

Join 867,000 enterprise tech professionals sharing advice with peers

Real, Relevant Reviews

Every reviewer is verified as a real user of the product within the last 12 months. If we aren’t sure it’s real, we won’t publish it.

The Full Picture

At an average of 600 words per review, our reviews are in-depth and will always include both pros and cons so that buyers can make an informed decision.

A Community of Experts

PeerSpot is about more than reviews - users can ask for and share advice with peers throughout their buying process.

We also bridge the gap between vendors and buyers

PeerSpot helps vendors reach buyers through the voice of their customers. We help vendors capture and leverage the authentic product feedback that users want to see when they’re conducting product research and due diligence.

Find out more

Buying Intelligencefor Enterprise Technology

Recent reviews

Want to share your own feedback on tech products?

Compare solutions

Trusted by Enterprise Tech Decision Makers

Join 867,000 enterprise tech professionals sharing advice with peers

Real, Relevant Reviews

The Full Picture

A Community of Experts

We also bridge the gap between vendors and buyers

Popular Questions in our Community

Buying Intelligence
for Enterprise Technology