I am an engineer in a service provider company where we help clients choose and implement security solutions, and I'm still looking for a new solution.

I am certified in Dragos, but I have not deployed it in client sites.

I used Nozomi a few years ago for two years, and now I'm getting trained in it so that I can help clients implement the tool. My customers are still using it.

Dragos' best features are that they are more focused towards Incident Response, so they have a dedicated playbook in their platform, making it easier for anyone investigating any incidents to investigate the alerts. One of the main features of Dragos is that they have a dedicated Incident Response team, so if clients need any help, they are there to help.

Dragos does real-time monitoring as well, collecting mirror traffic from the span port of the switch, and as soon as it gets the traffic, it analyzes it in real time and shows what's going on in the networks, which relates to the real-time visibility feature for ICS networks.

I think Dragos could be improved, as I have worked in Nozomi and compared it to Nozomi. Nozomi offers a lot of flexibility in what I am able to learn and unlearn, and I have more visibility towards the nodes, links, and process variables, which I think is missing in Dragos.

I think Dragos can offer more flexibility similar to Nozomi and more visibility into the assets, nodes, and links, which would make it more competitive in the future.

I have used Clarity for two years, and it has been one year since I last used Clarity. That is how long I have been dealing with the Clarity platform.

I have experience managing the tools Clarity, Nozomi, Dragos, Sangfor, and I am familiar with these products.

My customers are already working with Devo, Dragos, Nozomi, Clarity, and these are locally deployed in the client sites, not bought on the AWS Marketplace.

I have not used Devo, but I have used Nozomi and Dragos, so I do have experience with those products.

I completed my certification in Dragos and recommend it to my customers already, and I have been dealing with Dragos for a while now.

Dragos offers a threat intelligence subscription called worldview, so if a customer subscribes to that, they will get regular threat intelligence.

I have not used much of the detailed analytics and reporting functionalities of Dragos.

Dragos is a good option to choose, as it performs well in the market.

Dragos is a big name, and there is room for Dragos in the India market, and they should promote it more.

The company that I'm working for is a partner with Dragos. I also have partnerships with other vendors including Clarity, Nozomi, and Fortinet.

I was learning FortiSIEM three months back, but I am not certified in it, so I have been dealing with Fortinet products in a somewhat limited manner. FortiGate is what I mostly deal with from Fortinet.

On a scale of 1-10, I would rate this solution a 6 or 6.5.

On-premises

Amazon Web Services (AWS)

We use Dragos specifically for managing IoT devices in the industrial sector within our manufacturing ecosystem. It provides a platform to manage, update, and keep track of all network information related to IoT devices. It allows centralized management of industrial IoT devices.

Dragos offers several valuable features, including the capability to manage IoT devices on a centralized platform. It allows for updates to devices and uniform management counsel, enabling updates to all devices. Another key feature is its ability to manage cybersecurity aspects of devices, such as updating or isolating devices found to have vulnerabilities. It includes features for automatic discovery of devices and inventory management of devices, and it facilitates incident response by allowing for isolation or shutdown of devices in case of critical vulnerabilities.

Dragos could improve its asset visibility and discovery tools, as the competitor Claroty has better options in this area. Additionally, integrating out-of-the-box with major ERPs like SAP would be beneficial. Claroty performs slightly better in native cloud environments.

I have used Dragos for about two years.

Customer service and support have been generally good. Support requests typically do not exceed twenty-four hours for resolution, and the cybersecurity support has been helpful. The platform's ease of use and device discovery ease are notable.

Positive

Security does not provide direct ROI as it is not related to our products but is critical for maintaining operations. It is more of an insurance policy.

Dragos is more expensive than other vendors, probably about fifteen to twenty percent more, but it is generally worth the investment.

Competitor Claroty was mentioned as an alternative solution.

Overall, I would rate Dragos around nine. It is crucial to use anonymous information in reviews to avoid internal distractions.