English
    Listing Thumbnail

    Red Canary Managed Detection and Response

     Info
    Sold by: Red Canary 
    Deployed on AWS
    Vendor Insights
    Red Canary detects and stops threats 24x7 across your endpoints, network, cloud, identities and SaaS applications.
    0 AWS reviews
    |
    4 external reviews

    Overview

    Red Canary gives customers the confidence they need with unmatched, actionable intelligence and 24x7 expert response to stay ahead of adversarial threats. With customer-validated 99% threat detection accuracy, security teams can focus on the threats that matter instead of wasting time on noise. With a combination of actionable threat profiles, intel-driven analytics, and specific response and remediation recommendations, your team can make better decisions and prioritize resources according to the most relevant threats to your organization. Features:

    • 24/7/365 expert investigation of potential threats
    • Advanced threat detection
    • Global threat intelligence team
    • Continuous threat hunting
    • Proactive response and remediation

    Highlights

    • Unmatched threat detection accuracy, Red Canary helps protect your endpoints, network, cloud, identity and SaaS applciations.
    • Actionable threat intelligence with on-demand adversary insights and expert collaboration so you can stay ahead of threats.
    • Guided, automated or human-led 24/7 expert response so you can focus on your business objectives instead of the next cybersecurity event.

    Details

    Sold by
    Red Canary 
    Categories
    Security 
    Cloud Operations 
    Device Security 
    Delivery method
    Deployed on AWS

    Unlock automation with AI agent solutions

    Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
    Explore AI agent solutions
    AI Agents

    Features and programs

    Vendor Insights

     Info
    Skip the manual risk assessment. Get verified and regularly updated security info on this product with Vendor Insights.
    Security credentials achieved
    (2)
    ISO27001
    ISO27001
    AWS Security Specialization
    AWS Security Specialization
    View security profile

    Financing for AWS Marketplace purchases

    AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
    Financing for AWS Marketplace purchases
    View financing details

    Pricing

    Red Canary Managed Detection and Response

     Info
    View purchase options
    Pricing is based on the duration and terms of your contract with the vendor, and additional usage. You pay upfront or in installments according to your contract terms with the vendor. This entitles you to a specified quantity of use for the contract duration. Usage-based pricing is in effect for overages or additional usage not covered in the contract. These charges are applied on top of the contract price. If you choose not to renew or replace your contract before the contract end date, access to your entitlements will expire.
    Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator  to estimate your infrastructure costs.

    12-month contract (4)

     Info
    Dimension
    Description
    Cost/12 months
    Overage cost
    Endpoint
    Computer or instance running Windows, MacOS, or Linux
    $120.00
    Account
    User account
    $100.00
    Resource
    Cloud resource
    $250.00
    Network
    Network coverage
    $20.00

    Vendor refund policy

    No refunds

    How can we make this page better?

    We'd like to hear your feedback and ideas on how to improve this page.
    We'd like to hear your feedback and ideas on how to improve this page.

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    Software as a Service (SaaS)

    SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.

    Support

    Vendor support

    support@redcanary.com 

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Get support

    Product comparison

     Info
    Updated weekly
    Red Canary Managed Detection and Response
    By Red Canary
    Arctic Wolf Managed Detection and Response (MDR)
    By Arctic Wolf
    Deepwatch Managed Security Services
    By Deepwatch

    Accolades

     Info
    Top
    50
    In Security Observability, Device Security
    Top
    100
    In Security

    Customer reviews

     Info
    Sentiment is AI generated from actual customer reviews on AWS and G2
    Reviews
    Functionality
    Ease of use
    Customer service
    Cost effectiveness
    118 reviews
    Positive
    Positive
    Positive
    Mixed
    273 reviews
    Positive
    Positive
    Positive
    Positive
    12 reviews
    Positive
    Positive
    Positive
    Positive
    Positive reviews
    Mixed reviews
    Negative reviews

    Overview

     Info
    AI generated from product descriptions
    Threat Detection
    Advanced machine learning and behavioral analytics for comprehensive security monitoring across endpoints, network, cloud, and SaaS applications
    Continuous Monitoring
    24/7/365 expert investigation and continuous threat hunting with real-time threat detection capabilities
    Threat Intelligence
    Global threat intelligence team providing actionable threat profiles and intel-driven analytics for proactive security
    Incident Response
    Automated and human-led response with specific remediation recommendations and expert collaboration
    Multi-Vector Protection
    Comprehensive security coverage across endpoints, network, cloud, identities, and SaaS application environments
    Threat Monitoring
    Comprehensive 24x7 monitoring across networks, endpoints, and cloud environments for detecting cyber threats
    Incident Response
    Rapid detection and mitigation of critical security incidents with guided response mechanisms
    Security Team Expertise
    Dedicated security experts with specialized cloud security knowledge providing advanced threat investigation
    Multi-Environment Coverage
    Integrated security monitoring spanning network, endpoint, and cloud infrastructure platforms
    Continuous Security Analysis
    Real-time threat detection and risk assessment using advanced monitoring technologies
    Threat Detection and Response
    Advanced Managed Detection & Response (MDR) with 24x7x365 monitoring and precision threat response capabilities
    Security Operations Technology Stack
    Curated industry-leading SOC technologies integrating AWS, Splunk, and foundational security tools
    Security Posture Assessment
    Proprietary Dynamic Risk Scoring alert engine with quantitative analysis and industry benchmarking
    Endpoint Security Management
    Comprehensive Managed Endpoint Detection & Response (MEDR) with continuous monitoring
    Vulnerability Management
    Proactive vulnerability scanning and management with dedicated security expertise

    Security credentials

     Info
    Validated by AWS Marketplace
    FedRAMP
    GDPR
    HIPAA
    ISO/IEC 27001
    PCI DSS
    SOC 2 Type 2
    -
    -
    -
    -
    -
    No security profile
    No security profile

    Contract

     Info
    Standard contract
    No
    No
    No

    Customer reviews

    Leave a review 

    Ratings and reviews

     Info
    0 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    0%
    0%
    0%
    0%
    0%
    0 AWS reviews
    |
    4 external reviews
    Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
    Shubham Biradar

    Monitors traffic effectively and assists in compliance decision-making for quick response

    Reviewed on Apr 08, 2025
    Review provided by PeerSpot

    What is our primary use case?

    We use Red Canary  to monitor incoming and outgoing traffic. For example, when we receive an alert that data from our internal IP address to an external IP address has been transferred, we investigate using a Palo Alto firewall.

    What is most valuable?

    Red Canary  detects threats and attack patterns, allowing us to assess any significant damage caused to the banking environment, particularly if protected data has been damaged or corrupted. It is valuable for security teams in banking industries that need to make informed decisions quickly. Red Canary solutions are useful for compliance with standards like FFIEC and PCI and are employed in medical operations for HIPAA compliance.

    What needs improvement?

    Red Canary's pricing spectrum may not be ideal for smaller financial institutions.

    For how long have I used the solution?

    I have been using Red Canary for four years.

    What do I think about the stability of the solution?

    We have had no issues with stability. It runs smoothly.

    What do I think about the scalability of the solution?

    The pricing should be decreased so that other smaller banks, apart from the IT industry, can implement it.

    How are customer service and support?

    We have a monthly catch-up call with the support team to discuss alerts. In emergencies, there is an on-call person available to resolve issues immediately.

    How would you rate customer service and support?

    Positive

    How was the initial setup?

    The initial setup is easy and does not require external support.

    What's my experience with pricing, setup cost, and licensing?

    The services are higher priced.

    What other advice do I have?

    I recommended Red Canary to my friends who work in other organizations. I guide them about this tool, share knowledge on its features, and explain the process of how we use it. I would rate the overall solution on a scale of one to ten as nine.
    Sagar Shekhar

    An open-source tool that offers great automation capabilities

    Reviewed on Jul 31, 2023
    Review provided by PeerSpot

    What is our primary use case?

    My company uses Red Canary MDR to simulate MITRE ATT&CK, like spearphishing and updating domain names.

    What is most valuable?

    The most valuable feature of the solution is its automation part. If we have to perform MITRE ATT&CK, we have to do it step by step, wherein we have to run all the commands, while Red Canary MDR automates everything. We must run a single command, and Red Canary MDR will do everything on our behalf.

    What needs improvement?

    Red Canary MDR generates a lot of output, so it would be good if, in the end, it generates a summary of all the previous attacks and what was the outcome of a single attack, especially so that it becomes easy for the user to see the summary and analyze the whole thing. In general, the solution currently fails to provide a summary to its users.

    For how long have I used the solution?

    I have experience with Red Canary MDR for one of my projects for around two months. I am a user of the solution.

    What do I think about the stability of the solution?

    It is a stable solution.

    What do I think about the scalability of the solution?

    Scalability-wise, it's actually a good product.

    In my company, a group of four people uses the solution.

    How was the initial setup?

    The initial setup of Red Canary MDR was very easy since we just had to run some simple commands.

    The solution is deployed on-premises.

    The deployment process takes five to ten minutes.

    What's my experience with pricing, setup cost, and licensing?

    Red Canary MDR I use is an open-source tool.

    Which other solutions did I evaluate?

    My company chose Red Canary MDR over other solutions for its automation features.

    What other advice do I have?

    I recommend Red Canary MDR to others because it is a good product.

    If I had to do one of the projects in my company without Red Canary MDR, it would have taken me a lot of time to complete it.

    I rate the overall solution a nine out of ten.

    Which deployment model are you using for this solution?

    On-premises
    Solomon Lesko

    Provides near real-time alert reviews, allowing for quick response to security events

    Reviewed on Jun 21, 2023
    Review provided by PeerSpot

    What is our primary use case?

    We use the solution's MDR service to monitor our Microsoft 365 environment, including Defender Endpoint.

    How has it helped my organization?

    Red Canary MDR has sped up our ability to receive alerts when there is a security event.

    What is most valuable?

    The first valuable feature for me is the speed of response. It provides near real-time alert reviews. And then the near real-time review translates into near real-time action. So, in addition to alerting, Red Canary MDR has response playbooks built out. 

    So we're able to offload some of the immediate response actions. So if an endpoint is compromised, their response isolates that endpoint before it can do more harm.

    What needs improvement?

    The price could always be better. 

    In future releases, I would like to see more firewall integration options for alerting.

    For how long have I used the solution?

    I have been using Red Canary MDR for two months. It's a cloud service.

    What do I think about the stability of the solution?

    So far, the stability has been good. We haven't encountered any issues. It has only been two months, though, so we're not expecting problems within this relatively short time.

    What do I think about the scalability of the solution?

    Scalability depends on the context. If we consider scalability across different clients, as our IT managed services provider, I would rate it excellent. We don't anticipate outgrowing them.

    How are customer service and support?

    Customer service and support are excellent. 

    How would you rate customer service and support?

    Positive

    How was the initial setup?

    The initial setup was quite straightforward. Their deployment team is extremely competent and worked with our security team to roll it out over a couple of weeks.

    What was our ROI?

    We have seen an ROI. We do have plans to increase the usage in the future. We're planning to start rolling it out to our customers.

    What's my experience with pricing, setup cost, and licensing?

    The price could always be better, but we believe it's worth it. Transparently, it's a valuable security enhancement.

    What other advice do I have?

    We have been very happy with everything, from the sales process to the implementation and deployment playbook. I'm highly content.

    The best advice I can give is that Red Canary works best with a very Microsoft-centric cloud strategy. So if a business aligns with that, it's a good fit. If it's not Microsoft-centric, there might be other solutions that would fit better. That's my impression after the work we've done.

    So far, we're pretty Microsoft-centric, so it's definitely the right fit for us.

    Overall, I would rate it a nine out of ten because nothing is perfect. 

    reviewer1621878

    Helpful support and secure

    Reviewed on May 08, 2023
    Review provided by PeerSpot

    What is our primary use case?

    We use Red Canary MDR for threat protection.

    What is most valuable?

    The solution works well for what we use it for and the support and protection are good.

    What needs improvement?

    The most valuable feature of Red Canary MDR is the overall threat protection it provides.

    For how long have I used the solution?

    I have been using Red Canary MDR for approximately two years.

    How are customer service and support?

    I rate the support from Red Canary MDR a nine out of ten.

    How would you rate customer service and support?

    Positive

    How was the initial setup?

    The initial deployment of Red Canary MDR was simple and took a few days.

    We have an agent on all the computers and Carbon Black feeds all the information to Red Canary MDR.

    What about the implementation team?

    The vendor did most of the setup as it is a cloud service.

    What's my experience with pricing, setup cost, and licensing?

    The solution could vary in price depending on how many endpoints a company has.

    I rate the price of Red Canary MDR a five out of ten.

    What other advice do I have?

    I rate Red Canary MDR a nine out of ten.

    View all reviews