"Everything is in one dashboard; I'm notified when there's an incident and advised on what steps to take."
"Notifications and the detail of notifications are most valuable. It is a user-friendly solution."
"The initial setup is pretty straightforward."
"Security protection is the best feature of this product."
"The integration between Cisco AMPs and the Windows servers is most valuable. So, they can also sandbox machines on which they see something suspicious."
"Whenever there is a major thing like Exchange vulnerabilities, it scans our Exchange server for indicators of compromise. It then alerts us and points exactly where we need to go to check for ourselves if it is normal or not."
"Its menu is not very intuitive. I would like to see the user menu expanded a bit. The user menu is very layered, and because of the layers, you have to go down a path that is not very intuitive."
"We'd like to have triggered alerts sent to us so we see errors quicker."
"Could be more of an endpoint protector."
"They could probably expand on their integration tools. They can integrate with more security tools."
"It can sometimes take up to an hour to get notification of a problem and that's a long time."
"They focus on detecting administrator-level control compromises. Because they're focusing more on administrator-level compromise, they are less able to see if an individual user has been compromised. It is, admittedly, very difficult because they don't know what normal human behavior is. If a hacker compromises a human account and then acts just like the human, how are you ever going to notice, unless you have some inside knowledge of how the company works? For example, they overlook account lockouts on user accounts, whereas in our own alerting system, we do not. We review every account lockout, and if it is bad, we contact the person, whereas they think of that as noise because they're more focused on the administrator-level compromise."
Earn 20 points
Accelerate Your Threat Detection & Response
Your company’s security depends on being able to detect threats and respond to attacks quickly. But most organizations investigate less than 4 percent of all events they receive.
Alert Logic has a better way.
To effectively combat cyber threats, the AWN CyberSOC service relies on a one-two punch of human expertise and machine intelligence. It’s not a product but a discipline, where dedicated Concierge Security teams tackle security matters using the full spectrum of defense mechanisms for prevention, detection, and response.
Alert Logic is ranked 3rd in SOC as a Service with 3 reviews while Arctic Wolf AWN CyberSOC is ranked 1st in SOC as a Service with 3 reviews. Alert Logic is rated 8.6, while Arctic Wolf AWN CyberSOC is rated 8.6. The top reviewer of Alert Logic writes "Great reporting and session logic with an easy initial setup". On the other hand, the top reviewer of Arctic Wolf AWN CyberSOC writes "Alerts and points exactly to where we need to go, gives good prescriptive guidance, and allows customization of alerts based on your requirements". Alert Logic is most compared with Darktrace, CrowdStrike Falcon Complete, Rapid7 InsightIDR, eSentire and Palo Alto Networks Threat Prevention, whereas Arctic Wolf AWN CyberSOC is most compared with CrowdStrike Falcon Complete, Red Canary MDR, SentinelOne Vigilance, Carbon Black Cloud Managed Detection Deliver and Sophos Managed Threat Response. See our Alert Logic vs. Arctic Wolf AWN CyberSOC report.
We monitor all SOC as a Service reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.