Share your experience using Threat Stack Oversight [EOL]

My main use case for Arctic Wolf Managed Detection and Response is detecting and responding to security threats. My job involves responding to the alerts that Arctic Wolf detects and managing their risks by either hardening and patching devices and endpoints, or by responding to an alert, investigating, and remediating incidents.

A recent situation where I used Arctic Wolf Managed Detection and Response to respond to a threat involved an alert indicating that a user's account may have been breached. I was able to investigate and confirm what was occurring after an incident where a user had multiple sign-in failures and eventually a malicious user was able to access their account.

Once I received the alert from Arctic Wolf Managed Detection and Response, the first thing I did to investigate and remediate the situation was to validate the alert by examining the logs and confirming the sign-in logs in Entra ID to determine that the user was indeed breached and that the malicious user was able to guess that user's password. After that confirmation, I immediately contained the user by disabling the account, resetting their password, and ensuring MFA was enabled.

I would say Arctic Wolf Managed Detection and Response functions as our SOC SIEM solution. They handle a lot of the triaging and early detection of incidents, and I respond to them, so it has been effective.

The best features that Arctic Wolf Managed Detection and Response offers are that it is very hands-off. They handle much of the initial detection and response, which can be very helpful for a small team, allowing them to focus on other tasks without being overwhelmed with numerous incident alerts and noise.

Arctic Wolf Managed Detection and Response reduces alert noise and helps my team focus because they are the first ones to review these incident logs and determine if something requires escalation to me. Instead of having to examine all these various logs coming in, they ingest and review them, then determine if escalation is needed. Another benefit is that if they identify something that appears to be a significant risk, they have the ability to step in and block, contain, or act on that alert, which saves me time and helps when issues arise.

Arctic Wolf Managed Detection and Response has had a positive impact on my organization because it has reduced the number of people needed to review these logs, which reduces our overhead. This frees up time for my internal IT users to focus on other things since this service handles much of the initial investigation work and log reviews, saving us considerable time and allowing us to focus on more important tasks.

The aspects I do not favor about Arctic Wolf Managed Detection and Response are that their detection generates a lot of false positives, and their concierge team is not always the best, leading to considerable back and forth which can be frustrating when submitting a ticket to have something resolved.

I have been using Arctic Wolf Managed Detection and Response for approximately two years.

In my experience, Arctic Wolf Managed Detection and Response is stable.

The scalability of Arctic Wolf Managed Detection and Response is good for a small to mid-sized company.

Customer support for Arctic Wolf Managed Detection and Response is acceptable; it is not the best, but it is not the worst.

My advice for others considering Arctic Wolf Managed Detection and Response would be to exercise care with its setup and to be aware that their concierge team is not always the best.

Before Arctic Wolf Managed Detection and Response, we had something similar called Talus, but we switched because we needed something better as our team was growing, our infrastructure was expanding, and our company was developing.

I cannot provide exact numbers concerning return on investment, but I can confirm it has definitely reduced the need for additional staff.

My experience with pricing, setup cost, and licensing for Arctic Wolf Managed Detection and Response is that the pricing seemed to be fairly competitive compared to what was available, and they offered us a favorable entry price.

Before choosing Arctic Wolf Managed Detection and Response, we did evaluate other options including Microsoft Sentinel and CrowdStrike, but I do not have complete details to provide.

My main use case for Arctic Wolf Managed Detection and Response is protecting our overall IT infrastructure with a SOC and a guard dog for our house, so to speak, to protect all our IT assets at the edge.

A specific example of how I used Arctic Wolf Managed Detection and Response in practice is that I sold that service to a small to medium-sized company so that they could protect credit card and PCI for their customers, ensuring they were compliant on a SOC level and could meet insurance requirements.

At the time that I was selling this particular service, my main use case for Arctic Wolf Managed Detection and Response was that it was number one in the market, and while there have been other players that have come into the market, Arctic Wolf Managed Detection and Response was easy to implement, easy for my end client to understand, and was considered a good value.

The best features Arctic Wolf Managed Detection and Response offers are difficult to specify.

The features of Arctic Wolf Managed Detection and Response are correct, particularly that they use 24/7 response with generally three different agents to monitor your environment, ensuring the workload gets spread out while having someone monitoring your environment 24/7.

Arctic Wolf Managed Detection and Response has positively impacted my organization and my clients' organizations by becoming a standard to meet insurance requirements or overall protection environments within an IT infrastructure, leading to growing sales for the company as I see it becoming a standard within the industry very soon at almost all levels.

I think Arctic Wolf Managed Detection and Response can be improved by addressing the high turnover with employees at the company, which made it hard to find a point person within the company to move transactions forward.

I have been using Arctic Wolf Managed Detection and Response for two years at one of my previous roles, where I was a value-added reseller for Arctic Wolf Managed Detection and Response.

Arctic Wolf Managed Detection and Response is considered one of the leaders in the stability segment.

From my understanding, the scalability of Arctic Wolf Managed Detection and Response is almost unlimited.

I did not previously use a different solution; I was selling Arctic Wolf Managed Detection and Response.

Regarding return on investment, I find it to be a case-by-case situation depending on deployment with Arctic Wolf Managed Detection and Response.

My experience with pricing, setup cost, and licensing for Arctic Wolf Managed Detection and Response seemed to be fair market value for the service.

The specific outcomes I noticed from using Arctic Wolf Managed Detection and Response include that the end user responsible for the monitoring on the company's side was happy that all the reports got into one particular pane of glass.

I would advise others looking into using Arctic Wolf Managed Detection and Response that it should be worth considering when reviewing any budget or criteria for a SOC.

I would rate this product an 8 overall.