We performed a comparison between Darktrace and IRONSCALES based on real PeerSpot user reviews.
Find out in this report how the two Email Security solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."There are several features that I consider valuable."
"The product is not resource-intensive."
"The email protection is excellent, especially in terms of anti-phishing policies."
"The most valuable feature is protection against malicious links, fishing, and impersonation. You can train people to be aware of these threats, but they're not always careful. When they're using their phones between meetings, they click on a link, and it's game over."
"The most valuable feature of Microsoft Defender for Office 365 is the ease of use."
"Our customers are satisfied with Defender for 365 because Microsoft products are easy to use and customize to meet the client's needs. Everything is in one place, so we can adjust policies as needed for phishing, DLP, ATP, or any other security features that our clients want to apply."
"It also gives me good visibility because, with Defender, I'm using a Microsoft product to defend Microsoft products. The integration was really seamless and I have wide visibility because it picks up almost everything. Literally, I can see almost every activity that happens, from the e-mail to the workstation itself."
"Microsoft Defender for Office 365 helps people to work remotely. It is a secure solution. We don't need to use our company's computers or get VPN connections to the networks. I can control how they share screens and what they send to the devices. It keeps our organizations confidential and sensitive information safe."
"One thing I appreciate is Antigena Email, which is for email protection."
"The product offers us a very good user interface and we've found the network visibility to be very good so far."
"The most valuable feature has been the behavioral analytics that allows us to monitor all the traffic."
"The most valuable feature is the alerts. The alerts are meaningful. The event rolls up into meaningful and actionable alerts rather than just being noise."
"The Antigena feature is most valuable. Once it learns your environment, Antigena can step in and block a denial of service attack, a ransomware attack, or just about anything that doesn't belong in the environment. It can detect any type of attack that hits the environment because it understands what normal looks like for the network. It is very useful for an autonomous response."
"The main valuable feature is that we don't need a lot of analysts. With few analysts, we have all the network monitored, 24/7."
"We have found the product to be stable and issue-free."
"It is a stable solution without downtime."
"AI-driven phishing detection and incident remediation are valuable. It saves time from having to do manual analysis and investigation, and we also get alerts for phishing emails."
"Their anti-phishing platform is absolutely fantastic. The automated AI piece is amazing, and their technical support is fantastic."
"The stability is good."
"The fact that it is set-and-forget is valuable. Once you turn it on, you very rarely have to micromanage it, whereas, with a lot of spam filters, you have to go in very often."
"For me, the mobile app is most valuable. All other features are also very useful, but the mobile app makes it really easy for me to manage on the go. I don't have to be at my desk. I could be at the shops, or it could be in the evening when I am out, and I can get a notification on my phone that there is an incident that has been raised. I can sort it out very quickly without having to be at my work PC."
"The report function through Gmail is probably the most valuable feature. The next most valuable features are simulation and training."
"I would say the most valuable feature is what they call Themis. It's like a virtual analyst that uses the decisions that system admins make to generate a score for whether an email is legitimate, spam, or phishing. It gets better based on the decisions that we make over time. The automation piece is great as well. The integrated approach of email security combined with employee awareness training is excellent."
"The biggest benefit is that we get fewer phishing and spam emails, so using IRONSCALES has made our environment much safer."
"They have moved features from one console to another. Things have been moved around in the interface and it takes me time to find where certain features are."
"It would be better if it were more scalable. It depends on the architecture, but we would like to make it more scalable for both data centers."
"The custom alerts have to improve a lot."
"The company should focus on adding threats that the solution is currently unable to detect."
"There's room for improvement regarding the time frame for retrieving emails."
"One area for improvement is integration. For example, when it comes to external SaaS platforms, we were not able to get a lot of information on integrations with such apps for security and authentication."
"Several simulation options are available within 365, and the phishing simulation could be better."
"Microsoft security solutions work as expected. They are constantly updating the solutions to make them better. At the same time, the changes can impact a customer's environment, and we need to adjust settings. Sometimes we aren't aware of the changes, and nothing is pushed from the backend automatically."
"In an upcoming release, there could be more customizable playbooks or a library of playbooks to choose from."
"It's a very complex platform."
"Although we haven't detected any network threats since implementing Darktrace, we are unsure of its efficacy. It would be beneficial if the solution could offer additional details to the user regarding any potential or prevented threats. Additionally, there could be better search tools and integration."
"The solution can improve the reporting."
"The interface and dashboards could be improved for ease-of-use."
"Upper management wasn't sold on the value proposition."
"Darktrace could expand into EDR (endpoint detection and response) and combine it with its network detection."
"One thing I would like is for Darktrace to flag SMB traffic more accurately. Currently, it only flags that SMB traffic has occurred, but it doesn't specify which file was being transferred. This makes it difficult to investigate incidents involving SMB traffic, as we don't have concrete evidence of what was being sent."
"In addition to integrated training, they should also have personalized training that you don't have to do as part of a phishing campaign or a simulation."
"The only thing that I could say is that some of the reporting features could be better."
"IRONSCALES should bundle more features together instead of separating them and charging additional licensing fees."
"Even though they have been continuously improving it, it is not 100% there. We have had a few incidents where legitimate emails were getting blocked, and we had to manually remove those emails from quarantine. It is 90% effective or accurate because, on rare occasions, some emails from customers were not getting delivered. In one or two instances, their emails got blocked by IRONSCALES, and we had to manually remove the emails from quarantine. I would like them to improve their algorithm to avoid flagging genuine emails as malicious. I would also like to be able to whitelist certain email addresses. I'd love to be able to whitelist a particular customer."
"I would love to see the indication of compromise and how the solution utilizes open source resources. It would be good to see that included in the paid versions. It would be a small addition but add a lot of value for clients."
"The simulation and training piece could be improved by having more granularity in terms of scheduling how campaigns are run and allowing people to directly take the training rather than having to go through an official campaign. That's not available yet."
"Its UI could be improved. My pet peeve with a lot of these cloud-based systems is that a lot of times, the interface for the management is a little clunky. If you live and breathe IRONSCALES all day long, you'll obviously know where everything is just from muscle memory, but the system is not designed for people to be in it all day long. You're only supposed to occasionally look at it. When things get moved around, it is not necessarily that intuitive. I'm an IT guy, and I can pretty much take the worst UI and figure it out, but the menus and the options in the interface could be a little cleaner graphically. If you have a quick problem that you want to resolve, it takes a little bit of digging in the admin console, whereas it should take a few clicks up front."
"There's room for improvement in the campaign management. IRONSCALES has many built-in templates that I use, but you can also build templates from scratch. However, the interface for creating custom templates needs to be updated."
More Microsoft Defender for Office 365 Pricing and Cost Advice →
Darktrace is ranked 12th in Email Security with 66 reviews while IRONSCALES is ranked 3rd in Secure Email Gateway (SEG) with 11 reviews. Darktrace is rated 8.2, while IRONSCALES is rated 9.2. The top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". On the other hand, the top reviewer of IRONSCALES writes "It has an easy installation that can be done in a matter of minutes". Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and ExtraHop Reveal(x), whereas IRONSCALES is most compared with Avanan, Sublime Security, Perception Point Advanced Email Security, Cisco Secure Email and Trend Micro Email Security. See our Darktrace vs. IRONSCALES report.
We monitor all Email Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.