Share your experience using Threat Stack Oversight [EOL]

My main use case for Arctic Wolf Managed Detection and Response is a 24/7 managed SOC. The native platform provided managed detection and response, along with log and telemetry ingestion capabilities, but my primary focus was on the SOC 24/7 operations.

Arctic Wolf Managed Detection and Response has impacted my organization positively by helping remove stress and saving time for my team. The whole visibility of the network and the threat intelligence has been valuable. Having a human analyst is probably one of the biggest benefits, as there is somebody present that I can actually communicate with. The fact that it combines all of these things together is one of the major benefits overall.

I think the Concierge Security Team is very good. Having a named team is great, and it was an extension of the internal team. Additionally, one of the biggest benefits is the reduction in noise, so I am not being drowned in alerts. I get validated incidents that need my attention. The onboarding is really good as well. It is pretty structured, easy to understand, and guided in terms of working through the data sources, integrations, and baselining. I think it is a very good product and a mature SOC. In terms of return on investment, the way to look at it is that it replaces the need to hire a fully managed operations team, which could cost a lot in terms of salaries.

For a company that does not have the ability or time maturity to run their own SOC, the best features Arctic Wolf Managed Detection and Response offers are not just features, but network visibility, the Concierge Security Team, threat hunting, and incident response report support. Having that in place and the security of it helps with overall security confidence and posture for the company.

The Concierge team has helped my organization by having that team and security on hand. They only get in touch if something requires attention and do not contact me with every single alert. The benefit is validating those incidents and reducing the overwhelming amount of alerts and incidents that do not necessarily mean anything. A lot of companies are understaffed and unable to handle that amount of threats or false positives. Again, it is quite expensive to have to pay for a team of salaries for an operations team.

I have noticed specific outcomes or metrics from Arctic Wolf Managed Detection and Response. I manage false positives, have network visibility, and receive guidance during potentially real incidents. The incident response support is commendable, and I would identify those three areas as the most valuable.

I cannot think of anything regarding how Arctic Wolf Managed Detection and Response can be improved.

I have been using Arctic Wolf Managed Detection and Response for about two years.

Arctic Wolf Managed Detection and Response is stable.

Arctic Wolf Managed Detection and Response can handle anything from a small to medium enterprise to mid to large enterprise. I am not certain how that works in terms of pricing or if there is a higher tier based on the amount of staff on the network, but from what I understand and my research during that time, it absolutely does scale.

The customer support for Arctic Wolf Managed Detection and Response is very good, and I have no complaints.

I did not previously use a different solution before Arctic Wolf Managed Detection and Response.

My experience with Arctic Wolf Managed Detection and Response pricing, setup cost, and licensing is pretty good. The pricing was fair. The experience is good, and as I mentioned earlier, the onboarding was straightforward, and getting everything set up was guided through the integrations and tuning. It is not instant or at the flick of a switch, but once everything is dialed in, set up, and configured, it runs smoothly overall.

I have seen a return on investment with Arctic Wolf Managed Detection and Response. The benefit comes from the cost of the product compared to hiring a SOC team, which is enormous. Additionally, the time away from business as usual for an analyst to go through all the noisy alerts is very time-consuming, which translates to money. I do not have a metric for what that cost is, but it is there.

Before choosing Arctic Wolf Managed Detection and Response, I did not evaluate other options. I spoke to a few different vendors, but I did not go down the evaluation route. It was highly recommended to me by somebody whose opinion I trusted.

My advice to others looking into using Arctic Wolf Managed Detection and Response is that it is a very good product. In comparison to other products, it is broader across the environment. It has a low operational burden, and overall, it is a very good product. It can definitely help reduce the difficulty of hiring and managing a whole full security operations team. I would rate this product an 8.5 out of 10.

Arctic Wolf Managed Detection and Response is a very good product, typically for mid-market to enterprise organizations that do not have a mature SOC. Companies that are smaller do not necessarily need a managed SOC or do not want to build one. I think it is really good for teams that are understaffed but exposed to real threats, and it is a good affordable product.

On-premises

Other

Alert Logic MDR serves as my primary end-user and server antivirus program company-wide for all end-users. This helps protect end-users against viruses, malware, and similar threats, while also alerting me to any issues that may arise on the network.

Alert Logic MDR is a cloud-managed service that removed the need for an on-premise dedicated person to constantly review logs and determine if an issue existed. The main users have found it to be an excellent tool, saving both cost and time.

Alert Logic MDR's best features are the cloud-managed service, the cost benefit, and 24/7 monitoring. The alert system improved from potentially 24 hours to one hour response time. The benefit of not having to write custom queries has been significant.

The features are very lightweight, with small installations that leave almost no footprint on systems. System resource utilization is minimal.

Alert Logic MDR has positively impacted my organization through its decentralized pricing approach, which has protected against several viruses. Any virus stopped represents money saved. There is low impact on users, so they do not experience slowness on their computers when scanning.

Alert Logic MDR has improved security in my organization from 50 to 65%.

Alert Logic MDR could be improved by adding voice assistance when creating new configurations for the environment.

When creating an external ID, there are occasional delays.

I have been using Alert Logic MDR for eight years.

Alert Logic MDR is very stable.

Alert Logic MDR's scalability is highly scalable and can handle organizational growth efficiently.

Customer support is very responsive and proactive.

I previously used Dropbox Business and QuickBooks Enterprise solutions.

I switched to Alert Logic MDR mainly because of the features and because it is very cost-effective.

Alert Logic MDR is one of the most cost-effective tools to use regarding pricing, setup cost, and licensing.

I have seen a return on investment with Alert Logic MDR as it is very secure and has improved security in the organization.

Alert Logic MDR is one of the most cost-effective tools to use regarding pricing, setup cost, and licensing.

Before choosing Alert Logic MDR, I evaluated other options such as Salesforce Analytics Cloud and Wrike.

Alert Logic MDR stops programs from making changes to user systems, though this can be hit or miss. However, I prefer a false positive that requires an override to an actual virus on the system.

The override system for false positives is very simple and easy to use. If a program triggers a flag, it is straightforward to tell Alert Logic MDR to leave it alone network-wide, which is helpful for updates.

Alert Logic MDR has positively impacted response times and team workflow by sparing additional tasks and providing more time to focus on other productive areas.

When beginning to learn Alert Logic MDR, the software appears complicated and sophisticated. However, after initial use, it becomes clear that it is not as difficult as it initially seems. The software requires focused attention to understand its functionality. At some point, certain vulnerabilities cannot be solved, which may create concern about system activity. In reality, nothing problematic may be occurring in such cases.

I rate this product 9 out of 10.

Public Cloud

Amazon Web Services (AWS)