My company uses Red Canary MDR to simulate MITRE ATT&CK, like spearphishing and updating domain names.
Red Canary Managed Detection and Response
Red CanaryReviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
120 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Top MDR Service
What do you like best about the product?
Red Canary is the best MDR provider I have ever worked with. They create actionable alerts based on your data, not just regurgitating alerts from other systems. The ability for their incident responders to be able to remediate issues on your behalf is a game changer.
What do you dislike about the product?
Red Canary is generally a little more expensive than other providers but I think the value of the service well outweighs the price.
What problems is the product solving and how is that benefiting you?
We do not have a dedicated SOC and this covers that function for us. It allows our Security team to focus on other things and respond when needed.
Cybersecurity expertise for small organizations
What do you like best about the product?
I like that I can be as hands-on or as hands-off as I want or need to be with the service. Being a small organization, we don't have the expertise or time to manage cybersecurity all on our own. Red Canary is our eyes on our systems and network. They provide easy -to-implement actions that get triggered based on the type of event. Their experts are always available to answer questions and help us explain how the actions work.
What do you dislike about the product?
I wish there were reports or statistics that could quantify the value provided by Red Canary to our organization. It would be nice to show executive leadership what we get for our investment in Red Canary.
What problems is the product solving and how is that benefiting you?
Red Canary provides the cybersecurity expertise that we lack. We're a small organzation, so we don't have a cybersecurity expert on staff or have someone dediticated to it. Red Canary provides our the expertise that we need to protect our systems and data.
RedCanary's dedicated team monitors your network to help ensure it's free from malicious threats.
What do you like best about the product?
I like the playbooks that can be configured to handle recurring threats automatically. I like that all major threats to our network are shut down by RedCanary immediately and that we are notified of exactly what tactic was used.
I like the monthly team meetings where we're given guidance and direction on resolving open issues. We're also informed of new threats that others are experiencing, and training and informational webinars are provided to provide insight into current threats and how to mitigate occurrences of those threats to our environment.
I like the monthly team meetings where we're given guidance and direction on resolving open issues. We're also informed of new threats that others are experiencing, and training and informational webinars are provided to provide insight into current threats and how to mitigate occurrences of those threats to our environment.
What do you dislike about the product?
There's nothing that I dislike about RedCanary.
What problems is the product solving and how is that benefiting you?
RedCanary is helping to prevent unwanted intrusion into our network
Red Canary is an Excellent Security Partner!
What do you like best about the product?
I appreciate Red Canary's advanced tooling/playbooks/automation and intuitive dashboard/UI, their executive report, their proactive approach to staying on top of the latest threats, the exceptional support provided by their dedicated account representative, and their overall support, which makes them an invaluable extension of our security team.
What do you dislike about the product?
Needing to leave a voicemail to talk to a human feels less enterprise, and it would be beneficial if they had SLAs around Mean-Time-to-Acknowledge (MTTA) and Mean-Time-to-Remediate (MTTR) metrics.
What problems is the product solving and how is that benefiting you?
Red Canary is effectively filling our resource gap by providing the technical Cybersecurity expertise and know-how that we need. They assist in and automate our response to threats, actively remediating issues as they arise. By acting as an extension of our team, Red Canary enhances our capabilities with advanced reporting and automation tools, ensuring a comprehensive approach to threat management.
An open-source tool that offers great automation capabilities
What is our primary use case?
What is most valuable?
The most valuable feature of the solution is its automation part. If we have to perform MITRE ATT&CK, we have to do it step by step, wherein we have to run all the commands, while Red Canary MDR automates everything. We must run a single command, and Red Canary MDR will do everything on our behalf.
What needs improvement?
Red Canary MDR generates a lot of output, so it would be good if, in the end, it generates a summary of all the previous attacks and what was the outcome of a single attack, especially so that it becomes easy for the user to see the summary and analyze the whole thing. In general, the solution currently fails to provide a summary to its users.
For how long have I used the solution?
I have experience with Red Canary MDR for one of my projects for around two months. I am a user of the solution.
What do I think about the stability of the solution?
It is a stable solution.
What do I think about the scalability of the solution?
Scalability-wise, it's actually a good product.
In my company, a group of four people uses the solution.
How was the initial setup?
The initial setup of Red Canary MDR was very easy since we just had to run some simple commands.
The solution is deployed on-premises.
The deployment process takes five to ten minutes.
What's my experience with pricing, setup cost, and licensing?
Red Canary MDR I use is an open-source tool.
Which other solutions did I evaluate?
My company chose Red Canary MDR over other solutions for its automation features.
What other advice do I have?
I recommend Red Canary MDR to others because it is a good product.
If I had to do one of the projects in my company without Red Canary MDR, it would have taken me a lot of time to complete it.
I rate the overall solution a nine out of ten.
Which deployment model are you using for this solution?
On-premises
Provides near real-time alert reviews, allowing for quick response to security events
What is our primary use case?
We use the solution's MDR service to monitor our Microsoft 365 environment, including Defender Endpoint.
How has it helped my organization?
Red Canary MDR has sped up our ability to receive alerts when there is a security event.
What is most valuable?
The first valuable feature for me is the speed of response. It provides near real-time alert reviews. And then the near real-time review translates into near real-time action. So, in addition to alerting, Red Canary MDR has response playbooks built out.
So we're able to offload some of the immediate response actions. So if an endpoint is compromised, their response isolates that endpoint before it can do more harm.
What needs improvement?
The price could always be better.
In future releases, I would like to see more firewall integration options for alerting.
For how long have I used the solution?
I have been using Red Canary MDR for two months. It's a cloud service.
What do I think about the stability of the solution?
So far, the stability has been good. We haven't encountered any issues. It has only been two months, though, so we're not expecting problems within this relatively short time.
What do I think about the scalability of the solution?
Scalability depends on the context. If we consider scalability across different clients, as our IT managed services provider, I would rate it excellent. We don't anticipate outgrowing them.
How are customer service and support?
Customer service and support are excellent.
How would you rate customer service and support?
Positive
How was the initial setup?
The initial setup was quite straightforward. Their deployment team is extremely competent and worked with our security team to roll it out over a couple of weeks.
What was our ROI?
We have seen an ROI. We do have plans to increase the usage in the future. We're planning to start rolling it out to our customers.
What's my experience with pricing, setup cost, and licensing?
The price could always be better, but we believe it's worth it. Transparently, it's a valuable security enhancement.
What other advice do I have?
We have been very happy with everything, from the sales process to the implementation and deployment playbook. I'm highly content.
The best advice I can give is that Red Canary works best with a very Microsoft-centric cloud strategy. So if a business aligns with that, it's a good fit. If it's not Microsoft-centric, there might be other solutions that would fit better. That's my impression after the work we've done.
So far, we're pretty Microsoft-centric, so it's definitely the right fit for us.
Overall, I would rate it a nine out of ten because nothing is perfect.
Helpful support and secure
What is our primary use case?
We use Red Canary MDR for threat protection.
What is most valuable?
The solution works well for what we use it for and the support and protection are good.
What needs improvement?
The most valuable feature of Red Canary MDR is the overall threat protection it provides.
For how long have I used the solution?
I have been using Red Canary MDR for approximately two years.
How are customer service and support?
I rate the support from Red Canary MDR a nine out of ten.
How would you rate customer service and support?
Positive
How was the initial setup?
The initial deployment of Red Canary MDR was simple and took a few days.
We have an agent on all the computers and Carbon Black feeds all the information to Red Canary MDR.
What about the implementation team?
The vendor did most of the setup as it is a cloud service.
What's my experience with pricing, setup cost, and licensing?
The solution could vary in price depending on how many endpoints a company has.
I rate the price of Red Canary MDR a five out of ten.
What other advice do I have?
I rate Red Canary MDR a nine out of ten.
Red Canary is a great service for Monitoring Systems
What do you like best about the product?
The support team is always quick to help.
What do you dislike about the product?
The front-facing side of the site is a little clunky and outdated.
What problems is the product solving and how is that benefiting you?
Monitoring systems in a large company to ensure everyone is secure.
Red Canary
What do you like best about the product?
I love the piece of mind Red Canary provides. I know if an issue arrises, Red Canary will automatically place the device in quarantine, prevent spread of virus, and we can resolve the issue the next businesss day.
What do you dislike about the product?
I would like the interface to be updated. It's a little outdated but it does provide the information I need at a moments glance. Honestly, Red Canary is a great partner and I highly recommend them.
What problems is the product solving and how is that benefiting you?
We deployed EDR on our network but we didn't have the manpower to confibure it properly. We were constantly chasing false positives which prevented us from completing other tasks. When we partnered with Red Canary to manage our EDR solution, everything quited down. No more false positives. We also love the Automations playbook so we can set up how we want Red Canary to responde and remediate threats.
Excellent security partner for small IT/IS teams.
What do you like best about the product?
Red Canary did an excellent job of onboarding us and continues to provide great insights into our environment and the threat landscape as a whole.
What do you dislike about the product?
I have not come across anything I dislike about Red Canary yet.
What problems is the product solving and how is that benefiting you?
Red Canary is processing and responding to threats intelligence provided to them by the sensor deployed in our environment.
showing 111 - 120