Carbon Black Cb Response Room for Improvement

reviewer1259415
Senior Manager at a financial services firm with 1,001-5,000 employees
If Carbon Black could improve in the area or reducing the number of false positives or if there was a better way to filter out false positives that would enhance efficiency and utility. But in general, I think we are happy with the performance of Carbon Black. It would be nice to be able to consolidate all of our tools. We have Imperva for database monitoring, we have Red Cloak, we have Carbon Black, and we have Trend Micro. So when you end up installing multiple different tools that do various different things and they each come with their own agents that need to be on all the endpoints, it takes a toll on the utilization. One of the issues that we tend to encounter — especially when we have all these tools on all the endpoints — the number of agents can affect the performance of desktops and servers. So we get those issues from time to time because there are many agents on the endpoints. So it might be nice to either have a lighter-weight agent or an agent that encompasses multiple functions and different purposes for better integration so we do not have to install various tools. View full review »
Nicholas Carroll
Cyber Security Manager at a insurance company with 51-200 employees
Cb Response is really designed to complement Carbon Black’s Defense product. While Response can be used on its own, coupling with Defense seems like the best strategy if you can afford the price tag. In the end, other antivirus tools and log aggregation solutions seem to have started to incorporate many of Cb Response’s signature features, lessening its value proposition for some organizations. View full review »
CBresponse677
Cyber Defense Consulunt at a security firm
One of the big issues we're facing is that their solution doesn't support multi-tenants. The second area for improvement is that they have different products, but if we wanted to take their protection and their EPR, then we would need to have two agents. In our scenario, having a client work within the cloud is not an option, so we cannot extend the support for Carbon Black to provide the protection that comes from Carbon Black. This will cause resource consumption. What I would like to see in the new platform is for it to have a higher visibility for being able to fix the solution. Having also just the visibility to separate the collectors on site. If the informed agent can connect to the collectors the ability to be connected to the management consult or superior management directly. View full review »
Find out what your peers are saying about Carbon Black Cb Response vs. Cynet and other solutions. Updated: March 2020.
406,312 professionals have used our research since 2012.
Security83d6
Security Analyst at a financial services firm with 10,001+ employees
They need to improve the batch console. It needs more capabilities. We are limited by the ones it provides, although we can type commands from the native operating system. View full review »
Imad Taha
Group CIO at a construction company with 10,001+ employees
This product has room for improvement in the cloud console. The cloud console has a lot of bugs and issues in the analysis part. The additional features I would like to see included in the next release are IT access components. We need to have IT access as a feature like CloudStrike. View full review »
Consultic624
Consulting IT Architect
The solution needs to simplify the process of adding custom watchlists, as well as embrace YARA for rule creation. View full review »
Snrsoftdev67
Senior Software Developer Engineer at Diyar United Company
The first thing they can do is make it more available. It's not highly available, so you have to have a core server. If the primary server goes down, you need a new one. It's not available at the same time, however. It's not automatically swapped from one server to another. The second thing is that they need to have a multi-tenancy feature, especially for the MSSP model. We wanted to have this solution in our stock so we could create a different tenant or one tenant per customer. They also have to have a bigger number of watch lists pre-configured already. They should add file integrity monitoring as well. One of the major things that attackers will try to do to is to modify files. View full review »
SeniorIn8d7c
Senior Information Security Specialist at a tech services company with 1,001-5,000 employees
It's maybe it's too verbose. For a junior user or admin. You have to know some basic rules. It's not simple. For a junior engineer, it's confusing. It's hard to use Carbon Black Response. It will take time. It may take more than one year to understand the uses of the product. I'd like the ability to see all the kernel-side features also on the client side. View full review »
Augusto Jose Garcia
SOC Analyst at a tech services company with 201-500 employees
The dashboard should be more user-friendly. The additional features I would like to see included in the next release are better analytics and report generation. View full review »
Find out what your peers are saying about Carbon Black Cb Response vs. Cynet and other solutions. Updated: March 2020.
406,312 professionals have used our research since 2012.