What is our primary use case?
My main use case for SonicWall Managed Detection and Response is for log incident, log identification, and remediation. If there are any logs generated, the malicious behavior log will be generated in any type of my endpoint, in my firewall, and in my email security as well. SonicWall Managed Detection and Response team will reach out to us and then they will remediate that quickly.
Monitoring the log and low-level log is crucial in my main use case with SonicWall Managed Detection and Response.
What is most valuable?
SonicWall Managed Detection and Response's best feature is that we can integrate our endpoint, such as our CrowdStrike endpoint, our SentinelOne, our Sophos, as well as Microsoft Defender and Cloud Secure, which are also features we can add in the MDR.
If there are any types of malicious activity happening in any endpoint that has CrowdStrike installed and after the detection of the particular malware, it will send the log to the MDR team, the SonicWall Managed Detection and Response team, and they will notify the partner that the critical log has been generated and we have to work on it, and then they will have quarantined that particular malware.
There are multiple features that we can integrate for email security in SonicWall Managed Detection and Response.
SonicWall Managed Detection and Response has positively impacted my organization because everybody wants to know what happened in my organization, why we are facing breach data, ransomware attacks, and many more. With MDR, when we purchase SonicWall Managed Detection and Response, we have visibility of our incidents and our malicious behavior traffic, and not only the visibility, they can also remediate that same thing. They have a particular SOC team to work on it.
What needs improvement?
For improving SonicWall Managed Detection and Response, it has to integrate some more EDRs, such as Trend Micro and multiple OEMs, such as Secure Right. They need to integrate that as well, and also integrate other firewalls such as Sophos and Palo Alto to enhance the MDR services. If there is any user who is using Palo Alto firewall and Trend Micro endpoint security, SonicWall Managed Detection and Response needs to manage that too, so SonicWall can also manage the same Palo Alto firewall and Trend Micro or Secure Right.
In my experience with SonicWall Managed Detection and Response, it is functional, but they need to integrate such things to improve the MDR services.
For how long have I used the solution?
I have been using SonicWall Managed Detection and Response for the last two years.
What do I think about the stability of the solution?
SonicWall Managed Detection and Response is stable.
What do I think about the scalability of the solution?
Its scalability is good because if we want to increase any type of licenses, we can do that anytime, any year because the MDR services licenses are monthly-based. We can purchase it for one month, and if we want to increase the licenses of MDR devices, we can do that easily.
How are customer service and support?
Customer support is very good because it is 24/7, and with only one click, the customer support team is available for us. I rate the customer support a perfect score because it is a very good solution with very good support.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
I have not used any different solution before SonicWall Managed Detection and Response; the first time I am using MDR of SonicWall is now, and I have not used any other OEM MDR until now.
Before choosing SonicWall Managed Detection and Response, I went through Sophos MDR, but I have chosen SonicWall Managed Detection and Response.
How was the initial setup?
SonicWall Managed Detection and Response is not a product; it is a feature, so we have only purchased the license for the same, and the license has been integrated on one console, which SonicWall Managed Detection and Response will manage.
What was our ROI?
With SonicWall Managed Detection and Response, I can see a return on investment as it decreases my issues, my workload, as well as the manual work because everything has been controlled by the MDR team, the SOC team. It is a very good product overall.
What's my experience with pricing, setup cost, and licensing?
I find the pricing good as per SonicWall Managed Detection and Response; they have given multiple features, so it is good, and we do not want to rate it low because it is a good product, so the price is also good and we can easily set up the same thing.
What other advice do I have?
I chose a rating of 9 out of 10 for SonicWall Managed Detection and Response because I have deducted that one point for their lack of integration with multiple vendors, such as Trend Micro and Secure Right, which are also very popular in the market. They need to integrate with those as well.
I will suggest others to go with SonicWall Managed Detection and Response because it is a very good product, and the support is very good for SonicWall Managed Detection and Response. My overall rating for SonicWall Managed Detection and Response is nine out of ten.
Which deployment model are you using for this solution?
Private Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
