Deepwatch Managed Security Services
DeepwatchReviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
13 reviews
from
External reviews are not included in the AWS star rating for the product.
Outstanding Detection Improvements and Fast, Responsive Support
What do you like best about the product?
The Deepwatch team has been great! They're very responsive and our requests are processed fast. The improvements in detection engineering from their DRS 2.0 update have been outstanding. Fewer false positives, fewer unnecessary alerts, more detections enabled, etc. They leverage the Splunk platform for the backend, which is great because we've had no issues integrating our log sources. Splunk is well supported, and that's been fantastic to have.
What do you dislike about the product?
This is not a knock on the Deepwatch team. I'm just not a huge fan of Service Now, which is what the DW team leverages for escalations. It works just fine for what it is. I just find other systems like Jira to be easier to use, especially for multi-line comments.
What problems is the product solving and how is that benefiting you?
We have a small internal team, so it's a must to have a provider managing the tier 1 and tier 2 aspects of our SOC. That allows us to operate with a much smaller team, and focus on the most important workloads, and letting the Deepwatch team handle the bulk of the triage, which they do very well.
24/7 Managed Service provides a relief to security teams
What do you like best about the product?
Dynamic risk scoring method versus 1:1 alerting has reduced false positives. Their tooling is fairly easy to use, and wasn't overly cumbersome to implement. The management of Splunk has reduced a lot of workload for our teams
What do you dislike about the product?
Internal team communications among Deepwatch. They have struggled to accomplish simple requests in a timely manner in terms of customer support
What problems is the product solving and how is that benefiting you?
Deepwatch is solving for a need of 24/7 managed service and alerting in terms of security
Wonderful experience
What do you like best about the product?
Customer support and variety of features
What do you dislike about the product?
Not applicable, likea sll the services provided by deepwatch
What problems is the product solving and how is that benefiting you?
Deepwatch security center provides the best security solution for the organization
DW is a well-rounded third-party SOC provider.
What do you like best about the product?
Understanding the need and implementing.
What do you dislike about the product?
They should have more integration option
What problems is the product solving and how is that benefiting you?
Deepwatch is an amazing SOC provider. They truly understand the needs of their customers and put in amazing effort in implementing those needs. They have an amazing support system for the customer and are very responsive.
Strong MDR provider with experienced engineers and analysts working with Splunk
What do you like best about the product?
Deepwatch employes a skilled team of engineers, analysts, and CSMs who are able to assist with implementation of new log sources and alerts. The team is able to respond to security events quickly and effectively, while providing additional support if needed.
What do you dislike about the product?
Deepwatch's core competencies are currently focused on leveraging the Splunk SIEM but are expanding to MS Sentinel.
What problems is the product solving and how is that benefiting you?
Deepwatch is able to serve as an extension of the security team by serving as an MDR leading the offsite SOC for the organization. Deepwatch also helps manage the vulnerability management practice for the organization allowing us to outsource some of the workload.
Overall positive
What do you like best about the product?
Relationship and collaboration with Detection Engineers and CSM. Joshua Graham has moved mountains for us
What do you dislike about the product?
They did negotiate a transition period in 2024 but are on the other side of it now and improved for the better
What problems is the product solving and how is that benefiting you?
24/7 MDR.
Great Experience with Deepwatch and Caroline
What do you like best about the product?
Being able to get alerts and responses quickly, ease of use, customer support.
What do you dislike about the product?
cannot think of anything off the top of my head everything is great
What problems is the product solving and how is that benefiting you?
Deepwatch is our main MDR that provides ingests of alerts from different sources
Deepwatch for SIEM hosting and Tier 1 alert review
What do you like best about the product?
Tier 1 alert review is fairly scripted and escalated cases provide sufficient detail. Very few system outages as part of hosting. Responsive to tuning and engineering requests.
What do you dislike about the product?
Some growing pains as Deepwatch expands offerings. Challenges with following off-hours escalation trees.
What problems is the product solving and how is that benefiting you?
We are unable to staff a tier 1 alert review team 24x7. Having Deepwatch host our SIEM negates the need for us to staff SIEM administrators ourselves. We do staff content developers for SIEM who QA Deepwatch alerts and log parsers.
Erlanger DW
What do you like best about the product?
I'm a fan of how many technicians they have in several areas of expertise for the Splunk platform, specifically. I can always go to them and ask questions to find possible solutions.
What do you dislike about the product?
Nothing comes to mind at this time, to be perfectly honest. Caroline is very attentive, and all the technicians are very helpful.
What problems is the product solving and how is that benefiting you?
Deepwatch fills the gap of keeping a vigilant eye on our organization. They have technicians to manage alerts after regular business hours, and they provide automatic alerts for things happening that we wouldn't notice in a timely manner.
Responsive and Reliable Support
What do you like best about the product?
Deepwatch has been a highly responsive and collaborative partner. When they escalate alerts, they are truly critical with no false positives. We have a strong working relationship between our SOC teams, and their customer success manager stays closely engaged. They help us fine-tune alerting, answer questions quickly, and ensure we are aligned on priorities. This partnership has improved our operational efficiency and confidence in our detection strategy.
What do you dislike about the product?
While Deepwatch is highly responsive through their ticketing system, their Slack channel tends to be quiet and not ideal for real-time escalation. That said, this hasn’t impacted support quality, as tickets remain the most effective and reliable way to engage their team. It’s a minor concern, but worth noting for teams that prefer more interactive communication channels.
What problems is the product solving and how is that benefiting you?
Deepwatch is helping us address the challenge of integrating and monitoring new log sources efficiently. They are thorough in onboarding new data and quick to implement tailored alerting based on those logs. This has strengthened our visibility across the environment and improved our ability to detect and respond to threats in a timely and effective manner. Their proactive support has been a key factor in enhancing our overall security operations.
showing 1 - 10