We just raised a $30M Series A: Read our story

DivvyCloud Alternatives and Competitors

Get our free report covering Fugue, CloudCheckr, and other competitors of DivvyCloud. Updated: November 2021.
552,136 professionals have used our research since 2012.

Read reviews of DivvyCloud alternatives and competitors

MS
DevSecOps Engineer at Cloudstronaut LLC
Real User
Top 10
Allows us to create customized rules but isn't suitable for threat and vulnerability management

Pros and Cons

  • "The thing that CloudHealth does well is billing. It does really well on the billing part."
  • "I think the dashboards could be improved."

What is our primary use case?

CloudHealth is more of a cloud configuration management tool. It ingests and has a read-only account to our AWS or Azure GCP — it's similar to AWS configuration. It configures rules based on AWS best practices or CIS or PCI. It meets all of our APIs in regard to configuration data. It gives them a pass or fail rating and details their severity level. We don't necessarily need to watch it because it takes all of the rules that we're piping to the security hub in AWS. It has a custom rule component where we can create custom rules in AWS config. We can also create custom rules in Cloud Custodian, which is what we prefer for creating custom rules. CloudHealth has some built-in rules, which I think are just based on AWS and CIS, and then it checks for open ports, which is also a good feature.

What is most valuable?

The thing that CloudHealth does well is billing. It does really well on the billing part. It looks like it does a better job than some other tools that we have used for billing in the past. It has a nice dashboard, but the dashboard that we have now doesn't include the compliance checkpoint. I think that's another separate product that they offer that allows you to take the compliance metrics and act around them.

We have billing dashboards, but I know that they also have a compliance dashboard, but we are back to pulling all of the notification data from our policies, manually. It just seems like a redundant product for us because we can do cloud configuration in cloud security management with Flatstack or with Security Hub. It doesn't do threat and vulnerability management well. I guess you could build the rules off of that and consider that threat and vulnerability management, but it feels like our configurations are not configured correctly. They have a vulnerability issue.

What needs improvement?

They should improve some of their custom rule creation capabilities and make it easier to create custom rules. I think the dashboards could be improved. They could have better compliance and security dashboards. That would probably make it look better because currently, it's kind of a fast dashboard. It's a nice, slick-looking dashboard, but it's kind of confusing because of the tabs — security and policy are in different tabs. There is a recommendations tab with security and policy, and also a security tab with other policies in it. There is also a separate tab for governance. We have security in each of those tabs but that doesn't really make sense. It's not really intuitive to have those tabs like that.

In short, it could have easier tabs, better dashboards, and better custom rule creation capabilities. 

Other tools out there that I've used, including Divvycloud, Lacework, and Prisma, have features for remediating issues that come up. Still, some tools like Prisma, don't have all of the APIs that are needed. I don't understand why they can't just have all the APIs when the native product can.

What do I think about the stability of the solution?

Stability-wise, it's good. 

How are customer service and technical support?

I have communicated with technical support through emails. The tech support is good, but it's not the best. It's definitely not like Flatstack where I have direct communication with a direct faculty person or a direct customer support person.

How was the initial setup?

It comes with clear directions on how to set it up. The integration is pretty smooth. It could just be more intuitive in terms of the UI setup.

There are similar products out there that have a high ramp-up time. They can take weeks or months to ramp-up. CloudHealth allows users to easily understand how to create custom rules.

What's my experience with pricing, setup cost, and licensing?

I don't deal with the licensing.

What other advice do I have?

I would definitely recommend this solution. It works, it's a good tool. If you don't have other CCM tools for classification or classificatory practice, then I think it's a good product. I definitely recommend working with the support team to understand the templates. It seems like they have good templates for ADS best practices and CIS. 

Overall, on a scale from one to ten, I would give this solution a rating of six. 

Disclosure: I am a real user, and this review is based on my own experience and opinions.
Flag as inappropriate
Get our free report covering Fugue, CloudCheckr, and other competitors of DivvyCloud. Updated: November 2021.
552,136 professionals have used our research since 2012.