Secureworks Taegis ManagedXDR Reviews

We're using Carbon Black through SecureWorks for antivirus and RedCloak agent for endpoint telemetry. We also use the SecureWorks XDR for vulnerability management.

Securworks' threat intel seems pretty decent, and they integrate with several solutions we have, such as Azure AD, so all our Microsoft 365 stuff is covered. 

We did a PoC of their next-gen antivirus product, but it wasn't ready yet. It was underdeveloped and caused a lot of issues. We'd like to move away from Carbon Black, but they said that it's probably still not to a point where we'd be happy with it. Carbon Black and RedCloak seem to work fine for us. 

I have used Secureworks for nearly a year. 

We haven't had many issues except for their NGAV solution. 

I rate Dell support seven out of 10. We have a customer success manager, a threat hunter, and a sales rep. They've given us some documentation on how to do stuff, but their customer success team has some room for improvement. 

Neutral

Setting up SecureWorks was straightforward overall, but rolling out their sensors was a headache. We still aren't fully deployed on all the endpoints. It's been a very manual process.

I rate Dell SecureWorks seven out of 10. They're not terrible, but we feel like we could probably do better with a different vendor.

This solution gathers the information logs from all devices and correlates all the information. It notifies us of any critical events taking place across our networks which has been valuable. 

This solution could be improved with a higher degree of automation such as automated emails, triggers and defining the severity of the cases. It would be beneficial if this solution could predict future outcomes based on what is happening on the servers. There is a degree of automation on the back-end but not the front-end. 

We have used this solution for six months. 

This is a stable solution. 

This is a scalable solution since it is cloud based and not an event based setup. Any product can be added as long as it is supported by the solution. 

We get support for this solution locally and not directly from the Secureworks team. This is a new product and so there are some delays in receiving support when we have contacted the solution's team directly. 

Neutral

The initial setup was straightforward.

The implementation was done in-house but we have used a MSP for feedback, monitoring and SOPs. 

The pricing for this solution is reasonable. One agent costs approximately 270 dirhams/70 USD for one year. There is a reduction in cost per licence as the number of licences used increases. 

The advantage of using this solution is that the setup is done quickly and can be done in-house. This solution is also cheaper compared to others on the market. It has allowed us to integrate compliance and monitoring into our systems. 

I would rate this solution a seven out of ten. 

We use ManagedXDR for vulnerability management. 

We don't have a full SOC, so it's helpful to have them sifting through our alerts and only bringing actionable items to us.

The integration with the Carbon Black sensor could be better. ManagedXDR doesn't seem to know how to extract the forensic data from an endpoint that was quarantined by Carbon Black. 

It's a hybrid environment. Secureworks' environment is entirely in the cloud, but we have some on-prem components like vulnerability scanners. We had to set up VMs for those and launch them. 

After deployment, we maintain the vulnerability scanners and endpoints. We also need to configure the proactive response playbooks. Secureworks wasn't very helpful in getting those set up either.

I rate Secureworks Taegis ManagedXDR seven out of 10. 

We use Dell Secureworks as our SIEM solution.

The most valuable features are IDS and IPS.

The knowledge base is up to date and easy to use.

Log integration should be improved. If they can add SIEM, the event monitoring, then that would be great.

Scalability is an area that needs to be improved.

In the next release of this solution, I would like to see file integrity monitoring. I also hope that they will provide threat intelligence scripts for free.

I have been using Dell Secureworks for three years.

This is a stable solution.

I would rate the scalability at 50%. We have been having a problem as we are shifting from a previous appliance to a virtual machine. I think that it is an issue of scalability.

Our experience with technical support depends on the problem. Proactive support is good, but if it's something to do with health status then it is a hassle for us to find the correct department. We need to get a direct answer but it can take a lot of time.

The initial setup is straightforward.

I would rate this solution an eight out of ten.

At my last company, which was a small health care operator, I needed to outsource threat management and vulnerability management. And using DSW with Qualys, supported by Palo Alto next-gen firewall worked extremely well for us.

Solved a fundamental problem that lets us all sleep well at night! The service lived up to its reputation as a leader in the space. Not surprisingly, false positives happened, but forced us to register our preferred handling, which were consistently managed per preference going forward.

Support staff is excellent. Staff was always knowledgeable, available and eager to help. It was not unusual that a support person went above and beyond what I expected.

GUI for resolving tickets is terrible. Non-intuitive, offering a dizzying array of options, often none of which made sense even for common problems. I ended up choosing "Other" way more than I should have had to, to categorize an issue resolution.