Top 8 Security Incident Response
Carbon Black CB DefenseServiceNow Security OperationsFireEye HelixIBM ResilientSecureworks Red Cloak Threat Detection and ResponseCarbon Black CB ResponseProofpoint Threat ResponseSECDO Platform
Popular Comparisons The whole purpose of the product, like application control, is very good, and also if you need to update some policies, it works well and instantly.
The solution has a library where we can have multiple threat intels onboarded. We just have to subscribe to a particular site intel and they'll provide us with all of the truncated details so that we can create IOCs and alerts on the basis of those IOCs.
Popular Comparisons The ease of use is great.
The product has a very simple UI.
Popular Comparisons The most valuable features include predefined use cases and threatening states.
It is kind of simple and very easily deployable. You can start working with it very fast.
Popular Comparisons This is a good solution that we recommend for customers.
The UBA, User Behavior Analytics, is very good.
Popular Comparisons The features that I have found most valuable are that the search capabilities are easy to use. The dashboards are good. The reports are good. It is just simple from a deployment standpoint - that was easy.
Popular Comparisons Setting up and managing the setup for this solution is okay. It is stable, scalable, and it runs just fine. No issues with technical support.
Probably the most valuable feature of CB Response is its ability to isolate a host and take it off the network, so it's not spreading anything. We have two security operations centers around the globe. When an SOC analyst sees something on an endpoint, they can use Carbon Black Response to isolate that host from the customer's environment and prevent any kind of lateral spread.
Popular Comparisons The best part of Proofpoint Threat Response is the Auto-Pull feature. Being able to pull an email back from a user's mailbox is very useful, yet I have noticed that not a lot of organizations use this kind of feature.
Popular Comparisons Technical support is great. Palo Alto is extremely helpful and responsive.
The ease of deployment is a valuable feature.
Buyer's Guide
Security Incident Response
December 2022

Find out what your peers are saying about VMware, ServiceNow, Trellix and others in Security Incident Response. Updated: December 2022.
670,331 professionals have used our research since 2012.
Use our free recommendation engine to learn which Security Incident Response solutions are best for your needs.
670,331 professionals have used our research since 2012.
See all 15 solutions in Security Incident Response
Advice From The Community
Read answers to top Security Incident Response questions. 670,331 professionals have gotten help from our community of experts.Security Incident Response Articles
Buyer's Guide
Security Incident Response
December 2022

Find out what your peers are saying about VMware, ServiceNow, Trellix and others in Security Incident Response. Updated: December 2022.
670,331 professionals have used our research since 2012.