What is our primary use case?
I started seeing
Enclaves a couple of years ago to help my customers satisfy CMMC controls in an easier, more secure way.
I use Enclaves mainly for my customers to provide a more secure way to separate data from the regular networks. A requirement for CMMC is that data containing CUI is protected, and that is the main reason I leverage Enclaves, which ensures I can separate that data from the rest of the network.
It provides a more secure and compliant approach. I had a flat network where CUI was going through email. I created an Enclave in which email is separated, data is stored in a separate network location, and people access email, storage, and that data from Enclave instead of from the network. This way I can protect things in different ways. I can apply policies to Enclave that I do not need to apply to the rest of the network.
It offers a more secure, compliant way that allows me to apply policies as needed to those computers that are part of Enclave and then allow the business to be more productive on the rest of the network.
What is most valuable?
Compliance is a valuable feature. We are able to pass assessments and be more secure. It is an easier way for us to define a smaller scope for an assessment for CMMC or other requirements.
Definitely faster compliance, saving money and smaller scope, which in essence helps make it easier for the technicians and the people that are doing the day-to-day work.
What needs improvement?
Having some native way of doing policies easier and securing them would be beneficial. An Enclave that already has some security built in could help make things easier.
For how long have I used the solution?
I started seeing Enclaves a couple of years ago to help my customers satisfy CMMC controls in an easier, more secure way.
What do I think about the stability of the solution?
Everything has been stable so far. Everything has been up, so we are good.
What do I think about the scalability of the solution?
It has been scalable without a problem so far.
It is scalable. The way I have deployed it, it functions as a network of its own with different capabilities than the regular network and different use cases. I think it is flexible enough for us to expand Enclave or reduce size while also not affecting the rest of the network or infrastructure.
How are customer service and support?
I have not had to reach out to customer support yet.
Which solution did I use previously and why did I switch?
Nothing before this. This is a new solution to attain compliance.
How was the initial setup?
It is pretty straightforward. I just create GPOs or policies for specific computers and then add the computers to those GPOs.
It was pretty straightforward and not that costly when comparing to other solutions out there.
What about the implementation team?
Integrating with the infrastructure was easy. I am treating it as a separate network and separate set of tools. There were no problems with that.
What was our ROI?
There are no specific numbers, but there is definitely time and money savings. I have one employee in charge of Enclave. Customers help with it, but not much. I think it has saved us mostly money and time.
What's my experience with pricing, setup cost, and licensing?
It was pretty straightforward and not that costly when comparing to other solutions out there.
Which other solutions did I evaluate?
No alternate solutions were evaluated. This was the first and only one that we implemented.
What other advice do I have?
Designing the scope of what you want to include and what you do not want to include is key, along with determining what type of policies you are going to implement or not. Pre-planning is required because it is not a plug and play solution. There needs to be some planning before implementation. I would rate this product a 9 out of 10.
Which deployment model are you using for this solution?
Private Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other