Arctic Wolf Managed Detection and Response Room for Improvement

reviewer2114517 - PeerSpot reviewer
Director of IT Operations at Planalytics, Inc.

While it isn't a regular occurrence, there have been some gaps in response to some support questions. Questions get answered, yet there are times it takes longer than I'm comfortable with. Having worked in growing organizations, I realize this is likely to staff training/onboarding. Ultimately, my issues are addressed and resolved. Regarding additional features, I'd like to see further refinement of the dashboards. We subscribe to additional services, and the look and feel vary amongst the solutions.

View full review »
IK
Head of Cyber Security at ISDA

Third-party vendor management is an ever-increasing risk vector. We hate sending these out, and we hate when other vendors send them to us. Companies spend a lot of time and effort reaching out to their vendors with time-consuming questionnaires and endless follow-ups. For a small company like ours, it's a challenge dedicating resources to ensure this gets done. It would be great if that burden could be offloaded and/or the whole process of determining vendor risk could be simplified by Arctic Wolf.

View full review »
Jared Kruger - PeerSpot reviewer
Buisness Developer Manager / Sales Executive at Troye

In terms of areas for improvement, Arctic Wolf has been responsive to client feedback. They have addressed issues such as the lack of data exploration tools in the past by implementing solutions that enable clients to better understand the platform's actions. However, to further enhance the service, more integrations with various security tools to improve data ingestion would be beneficial. It is worth noting that I haven't received any negative feedback from clients, so there aren't any specific issues they are unhappy with at the moment.

View full review »
Buyer's Guide
Arctic Wolf Managed Detection and Response
March 2024
Learn what your peers think about Arctic Wolf Managed Detection and Response. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.
JM
Group Manager, Information Technology Security at a manufacturing company with 1,001-5,000 employees

The implementation process could be a little more streamlined.

View full review »
TL
Vice President of Technology at Hallmark Building Supplies, Inc.

In the security industry, there is always room for improvement, and Arctic Wolf ensures that we are continuously updated on areas that require improvement.

They keep us informed about the latest security developments and suggest ways to enhance our security posture. 

It's challenging to identify areas where they could improve as they already do an excellent job of staying up to date with the latest security trends. However, the security landscape is constantly evolving, requiring significant energy and effort to keep pace with.

I can't think of any specific features that they need to add at the moment. As long as they continue to develop new solutions to support different operating systems and technologies, we are satisfied with their service. 

We appreciate the effort they put into adding new features and functionality to their service and believe they are doing a great job in providing us with all the necessary tools and resources to stay secure.

View full review »
SD
Principal at TOPS Staffing, LLC.

The only thing I would say is that if they gave some lessons on some risks and how to help mitigate those risks, that could be helpful. If you are not in the security field, this can be difficult to figure out from time to time.

View full review »
CA
CIO at Professional Services Organization in Washington DC Area

While we truly enjoy working with ArcticWolf and have gained peace of mind from doing so, as with anything, there can be some improvements, such as:

  • An easier way to audit and act on agents
  • You shouldn't have to pay extra to view the logs you're storing (we can raise tickets to have them reviewed. That said, we would like both options without paying extra)
  • Quicker responses when questions are asked
  • Additional help with digging into alerts to resolve them
View full review »
Aaron Bock - PeerSpot reviewer
Managing Partner at Opkalla

We don't have many customers who complain about Arctic Wolf AWN CyberSOC. However, their new licensing model has room for improvement because of the limited user SKU. Many users do not necessarily use telemetry so they should not be charged for it.

I would like to see them build the ability to co-sell an EDR platform, manage an EDR or manage the actual response, potentially from the issues that are coming up from the security risks.

View full review »
Claus Hansen - PeerSpot reviewer
Director, .Advokat at a legal firm with 201-500 employees

Arctic Wolf Managed Detection and Response's analysis and remediation parts could be improved. It's not bad, but it needs improvement. 

View full review »
SW
AVP of Tech at a insurance company with 201-500 employees

It's nitpicky; however, if it could integrate with more of our products, like our CRM, that would be ideal. They may only integrate with Salesforce. We use a different mid-market CRM. We'd like to see integrations with Marketo and other software. 

It can be a bit expensive. 

View full review »
AH
Director, IT Systems and Security at Union Mutual Fire Insurance Company

This product is very feature-rich. I would actually be interested in having fewer features at a lower price. The problem is that the active responses require a high level of technical staffing and I expect it's hard to scale that down.

I am also interested in the new features which allow the customer access to the raw log repositories and the analysis tools provided by AW, however, I cannot justify the expense or time of adding those features at this time. Overall it is a very appropriately sized product that does not try to do everything. 

View full review »
PH
IT Director at a legal firm with 51-200 employees

The service is fabulous. AWN is one vendor I don't mind having to call. It doesn't matter what urgency you put on the ticket - all I have entered have always received fast replies. Also, this solution offers huge peace of mind. I know I can pick up the phone and get a live person and not be trapped in a looping call tree. 

In the future, I would like to see a summary report. One of my bosses is on the distribution, and I spend time every Monday explaining what the reports mean. Graphs are nice visuals and would help communicate what's happening more effectively.

View full review »
BG
Service Security Analyst at a government with 11-50 employees

It will be helpful if the dashboard is more granular. The vendor must allow us to see what they see on their end.

View full review »
SG
Senior IT Analyst at a insurance company with 51-200 employees

We get a lot of false alarms, but that's because they don't know our network in detail. I think that could be alleviated if we told them more about our network so they could create rules to skip some of those things. For instance, we've had alerts that people are coming onto the VPN from outside of Canada. If we told them that someone is going outside of Canada ahead of time, then they wouldn't alert us about it.

Our internal alerting systems generate 10 times as many false alerts, so they're actually doing pretty well.

View full review »
SG
Senior IT Analyst at a insurance company with 51-200 employees

They focus on detecting administrator-level control compromises. Because they're focusing more on administrator-level compromise, they are less able to see if an individual user has been compromised. It is, admittedly, very difficult because they don't know what normal human behavior is. If a hacker compromises a human account and then acts just like the human, how are you ever going to notice, unless you have some inside knowledge of how the company works? For example, they overlook account lockouts on user accounts, whereas in our own alerting system, we do not. We review every account lockout, and if it is bad, we contact the person, whereas they think of that as noise because they're more focused on the administrator-level compromise. This is not their fault. I'm sure this is common with all SOCs. They can't look at everything, so they look at the important stuff.

View full review »
KS
Network Security Administrator at a non-profit with 51-200 employees

They could probably expand on their integration tools. They can integrate with more security tools.

They can expand their Linux flavors. I believe they only have Ubuntu and one more flavor.

View full review »
MK
Sr Manager with 201-500 employees

I think the response time could be improved. It can sometimes take up to an hour to get notification of a problem and that's a long time. We currently report to users directly from our own dashboard. It would be helpful if they'd include a feature that would go directly to reports which would reduce the time between detection and communicating to industry partners.

View full review »
Buyer's Guide
Arctic Wolf Managed Detection and Response
March 2024
Learn what your peers think about Arctic Wolf Managed Detection and Response. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.