Dell Secureworks Review

Event monitoring and logging that is stable and easy to set up

What is our primary use case?

We use Dell Secureworks as our SIEM solution.

What is most valuable?

The most valuable features are IDS and IPS.

The knowledge base is up to date and easy to use.

What needs improvement?

Log integration should be improved. If they can add SIEM, the event monitoring, then that would be great.

Scalability is an area that needs to be improved.

In the next release of this solution, I would like to see file integrity monitoring. I also hope that they will provide threat intelligence scripts for free.

For how long have I used the solution?

I have been using Dell Secureworks for three years.

What do I think about the stability of the solution?

This is a stable solution.

What do I think about the scalability of the solution?

I would rate the scalability at 50%. We have been having a problem as we are shifting from a previous appliance to a virtual machine. I think that it is an issue of scalability.

How are customer service and technical support?

Our experience with technical support depends on the problem. Proactive support is good, but if it's something to do with health status then it is a hassle for us to find the correct department. We need to get a direct answer but it can take a lot of time.

How was the initial setup?

The initial setup is straightforward.

What other advice do I have?

I would rate this solution an eight out of ten.

Which deployment model are you using for this solution?

**Disclosure: I am a real user, and this review is based on my own experience and opinions.
Add a Comment
ITCS user