We use it as our internal network monitoring solution.
External reviews
28 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Provides real-time visibility of potential threats to the network and prioritizes them to help us react quickly
What is our primary use case?
How has it helped my organization?
It's interesting to consider how it has helped our organization because it's a security product. But the way it has helped is that nothing has gone wrong. And it has certainly enhanced our internal security capabilities.
Vectra has helped accelerate our threat investigations, providing us with real-time visibility of potential threats to the network that we can act upon or triage accordingly. Prior to the implementation of Vectra, we didn't have that visibility. We had a number of disparate security tools, each with its own alerting functionality. Vectra has significantly helped with a consolidated view of potential threats. And the prioritization of threats allows us to focus specifically on those threats that we believe present the greatest risk and to react to those threats extremely quickly.
Vectra MDR is also very important for us, given the relatively small size of our internal team, and it gives us 24/7 capability that we didn't have before we used Vectra's MDR service.
What is most valuable?
We particularly like the user experience around the dashboard, which we find to be much more straightforward than the dashboard of some of the competitive products. In the grand scheme of things, we're a relatively small organization with approximately 1,000 users and a small internal security team. Compared with some of its competitors, Vectra is a really easy system to understand and use to prioritize where we need to focus our security resources.
We use Microsoft 365 and Vectra extends our ability to track attacker activity, whether that happens on-premises, in a data center, or in a SaaS environment. It provides complete coverage and visibility across our ICT estate. That was a real positive when we were going through the selection process. The simplicity of the dashboard and the categorization of alerts as low, medium, high, or critical, presents us with the potential of a security risk. We can then choose to investigate it, regardless of whether it's an on-premises or cloud-security risk. They are presented in the single-pane-of-glass dashboard, and that allows us to take the appropriate action. The detection and prioritization of attacker behaviors are extremely important.
What needs improvement?
A blind spot that I have is around the ease with which you can automate threat intervention.
For how long have I used the solution?
We've been using Vectra AI for approximately 12 months.
What do I think about the stability of the solution?
It seems to be extremely stable. We've not had any issues in that respect.
What do I think about the scalability of the solution?
Vectra has visibility across our entire ICT network, which is a combination of on-premises and cloud environments. Our cloud solution is Azure, and it extends to about 1,000 users. The vast majority of them are now remote or mobile workers.
It has comfortably managed the needs of our organization and I don't have any concerns if we were to need, at some point in the future, to either scale or switch the current balance between on-prem and cloud.
How are customer service and support?
We are very satisfied with the support. It has been excellent so far. It has been very timely, very personalized, and always quick to find solutions. We've been really pleased with it.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We didn't have a previous solution. We have no internal networking monitoring capability.
How was the initial setup?
We started with a proof of concept and then we committed to the Vectra solution. That's when we began the formal implementation. From the very initial engagement to the proof concept and through the transition to service, it took approximately six months.
The deployment went very well and that was a real positive in terms of the engagement with the onboarding and the customer experience.
Across our ICT team, six individuals were involved in security, infrastructure, project management, and service transition.
There is no maintenance of the solution on our side.
What about the implementation team?
The implementation was supported directly by Vectra UK itself.
What was our ROI?
The return on investment from the product comes from not incurring unplanned costs because of a security incident.
What's my experience with pricing, setup cost, and licensing?
The upfront pricing model that we have would have been more beneficial if it had been a recurring license fee, but that wasn't a massive issue for us. It's fairly priced.
Which other solutions did I evaluate?
We evaluated other options very thoroughly. It became a two-horse race between Vectra and Darktrace. The differentiators for us were the UI experience, the MDR, and we felt that there was better engagement with the Vectra presales team. They better understood our needs and how Vectra would fit as a solution.
What other advice do I have?
The percentage of critical alerts from Vectra that are critical or true positives, to be fair, is relatively small, probably about 10 percent, but that's more a reflection of the fact that we're still a relatively new client and that the system is still learning. What we have noticed though is that the triage process is effective and we don't get multiple false negatives once we've identified an issue.
We bought Vectra AI through our IT partner, which is CDW. They were only involved in the procurement process. We used a partner to ensure that we could demonstrate that we had done so according to compliance.
I would definitely recommend Vectra and to do a proof of concept. We learned quite a lot through that proof-of-concept process. Those lessons certainly helped us when we went into the implementation process and to engage internal ICT team stakeholders and anticipate central issues in the implementation process. A proof of concept would be invaluable for anybody thinking about implementing this or one of the competitive solutions.
At the moment, we're really pleased with the product and it's a really good fit for the size of our organization.
Team Manager, Enterprise Information Security
What do you like best about the product?
Ease of deployment, intuitive UI, and easy to work with sales and support staff.
What do you dislike about the product?
Reporting is lacking, currently only one report available with different timelines, also no ability to export from the console.
What problems is the product solving and how is that benefiting you?
Visibility of network traffic, analysis of network traffic, and baselining.
Easy to deploy and works great at finding evil.
What do you like best about the product?
Vectra finds what other controls miss. It is used to help with network visibility and integrates great with Splunk. We have passed every pen test since Vectra was deployed. The company has really listened to the customers and made big improvements over the last three years.
What do you dislike about the product?
It can get expensive if you have a lot of offices. The appliances are not cheap so if you have a bunch of smaller offices it can start to add up.
What problems is the product solving and how is that benefiting you?
Network visibility in east-west traffic is our primary use. Because we ingest the data in Splunk it is also used to evaluate incidents and help make decisions on incident prioritization.
Recommendations to others considering the product:
Vectra helps IR teams with prioritizing events. It can take some time to get everything reporting correctly so use the Vectra resources to help create the rules and whitelisting events is recommended.
Unbeaten speed of innovation
What do you like best about the product?
Vectra does what it says on the tin, but goes beyond in providing a constant. speed of innovation that means they are constantly releasing new features. and detections, helping us to keep up to speed with any threats on our network
What do you dislike about the product?
As with any security tool, the alerts! But thankfully by monitoring the. quadrant based approach serious issues boil up for quick investigation.
What problems is the product solving and how is that benefiting you?
East-west visibility and identification of dark/unknown IT
Vectra AI Review
What do you like best about the product?
This is a high quality anomaly detection tool, very easy to understand and it helps very nicely to get reports, PCaps, and lets you see in an easy way what is happening in the network, this has top of the line algorithms, I simply love this product.
What do you dislike about the product?
Is very long process to tweak it to the point that it works perfect, but once that is done this is a beast
What problems is the product solving and how is that benefiting you?
Monitoring the network for cyberattacks
Recommendations to others considering the product:
This is an awesome tool for recognizing cyberattacks in real time
"A good threat tool"
What do you like best about the product?
Generally excellent instrument to identify and stay away from digital assaults utilizing man-made consciousness progressively. Interestingly, the device advances as the strategies of digital assaults advance gratitude to the way that it depends on a man-made brainpower that is found out and improved after some time. It permits to discover digital assaults and dangers in the cloud, server farm and in business situations.
What do you dislike about the product?
Need all around data of the instrument to recognize possible security perils. This puts aside chance to end up acquainted with the product.I severely dislike about this is you need a minium of knowleadge about you see beacuse its overflowing with therms without information
What problems is the product solving and how is that benefiting you?
The eventual fate of security needs to settle on choices for people, however help people settle on choices all the more rapidly. This innovation is genuinely a power multiplier in an industry that is suffocating in information that necessities to drive choices.
Recommendations to others considering the product:
At present I would state that it is the best stage to distinguish, forestall and anticipate cyberattack dangers. My organization is one of the biggest banks on the planet and has depended on this instrument, after a long investigation by the IT specialists of the organization.
Good protection program
What do you like best about the product?
The different types of utilization and source code for escape clauses. The unauthorized channel demands dependencies of the ordering. Sends warnings instantly due to a suspicious ongoing movement condition. The screens and user interface are extraordinary in terms of customer experience. Easy to introduce/incorporate. Process programmed for framework and application filtering. Offers numerous arrangements to configure on the distinctive board. The emotional support network is exceptionally large from the vectra systems.
What do you dislike about the product?
Internal and external information about the instrument is needed to distinguish possible safety hazards. This sets aside the opportunity to get used to the product. I detest this because it requires a minimum of knowledge about its presence, as it is full of data without data.
What problems is the product solving and how is that benefiting you?
Many of our clients are concerned about this danger, especially nowadays. This allows our clients to feel comfortable. We use this to see the problems in the organization's system.
Recommendations to others considering the product:
A completely solid article for any information-sensitive application. We have achieved incredible results so far. Very good device. This is surely prescribed.
Great system
What do you like best about the product?
This product is very easy to integrate. It allows you to use it to protect both the whole and certain components. Sends notifications if any suspicious activity has been noticed on the network. The interface is very user friendly and easy to configure.
What do you dislike about the product?
To enter the product you need minimal knowledge. A lot of terms and lack of instructions scares a lot of people.
What problems is the product solving and how is that benefiting you?
Use to protect our organization, and allows you to keep data safe.
Well justified use of AI
What do you like best about the product?
1. Simple yet powerful
2. Easy to integrate
3. Customization in playbook
4. User friendly reporting
2. Easy to integrate
3. Customization in playbook
4. User friendly reporting
What do you dislike about the product?
The Product is in its initial release and hence it will be unfair to dislike it. Though the reporting of Threats can be more user readable (for business people who don't understand technical terms)
What problems is the product solving and how is that benefiting you?
There is big challenge is keeping your code secure while developing a tool which is not yet public. Despite of having a firewall and VPN. With a growth in AI applications, threats are becoming smart too, and Vectra does the smart work of detecting AI threats with the help of AI and that is essential.
Easy To Implement, Use, Instant Value And Visibility Into Network Environment
What do you like best about the product?
Low-friction POC deployment - saw tangible value immediately upon deployment, solid sales engineering support both pre and post sale. Vectra has been a willing and available partner making all levels of the organization (data science, marketing, and executives) available for support at different phases of sales, deployment, and post-adoption.
What do you dislike about the product?
Remote office sensors are limited to single gig upload, need to deploy the larger brain for sites you need 10 gb uplink capabilities.
What problems is the product solving and how is that benefiting you?
The future of security has to embrace AI to not make decisions for humans, but help humans make decisions more quickly. This technology is truly a force multiplier in an industry that is drowning in data that needs to drive decisions.
Recommendations to others considering the product:
Start with the POC - no risk, within a few weeks once you start seeing the detection events and doing detection reviews with Vectra engineers, you will begin thinking about all attacks and their signature on the network layer. Truly gives you both perspective and visibility that you simply don't get with a SIEM or other complex security product.
showing 11 - 20