Sold by: Secureworks
Deployed on AWS
Your network is unique to your enterprise and so is your vulnerability risk. Secureworks® Taegis™ VDR is a modern vulnerability management solution that minimizes the manual effort - and eliminates the guesswork - from conventional vulnerability management operations.
Learn more at https://www.secureworks.com/partners/aws
3.8
Overview
Secureworks Taegis VDR leverages 40+ internal and external factors to yield a meaningful prioritized list of vulnerabilities, so you know what to fix first, and what can wait. Other vulnerability management products may require substantial upfront configuration, as well as ongoing manual intervention. Our objective is to automate as much of the VM process as possible, automating manual tasks you normally must do daily, weekly and monthly.
Our holistic view of vulnerabilities across machines, connected devices, and web applications allows Secureworks to deliver a significantly more meaningful risk score for each vulnerability, one that accounts for each vulnerability's unique circumstances, surrounding environment, and operational context.
VDR's Contextual Prioritization has been shown to reduce the number of critical vulnerabilities on some networks by a factor of 15. More importantly, Secureworks' prioritization engine identifies seemingly low criticality vulnerabilities that are actually high priority, surfacing serious security issues that might otherwise be neglected.
Perhaps the most compelling element of VDR is its exclusive Contextual Prioritization. No other VM solution on the market delivers a prioritization capability that understands the asset's operational context, accounts for the unique characteristics of your network, and yields a vulnerability risk score unique to each network - and even unique to the same vulnerability on different parts of the network.
Learn more at https://www.secureworks.com/products/vdr
Highlights
- Automated, Configuration-Free Approach
- Self-Learning, Machine Learning-Driven Performance Improvement
- Built-In, Meaningful Contextual Prioritization"Remediation Planning
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on the duration and terms of your contract with the vendor. This entitles you to a specified quantity of use for the contract duration. If you choose not to renew or replace your contract before it ends, access to these entitlements will expire.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/12 months |
|---|---|---|
VDR - 1000 Endpoints | Per endpoint, 1000 endpoints. | $20,000.00 |
Custom Pricing | Custom pricing w/terms via Private Offer | $100,000.00 |
Vendor refund policy
N/A.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Support
Vendor support
Taegis VDR is supported through a web portal, live chat and live agent (telephone) support.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Secureworks
By Rapid7
By Trellix
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Vulnerability Prioritization Engine
Leverages 40+ internal and external factors to generate contextually-aware risk scores that account for asset operational context, network characteristics, and environmental factors, reducing critical vulnerabilities by up to 15x on some networks.
Machine Learning-Driven Automation
Self-learning machine learning capabilities that automate manual vulnerability management tasks performed daily, weekly, and monthly, minimizing manual intervention throughout the VM process.
Contextual Risk Assessment
Delivers holistic vulnerability analysis across machines, connected devices, and web applications with unique risk scoring per vulnerability and per network location, identifying high-priority vulnerabilities masked by low criticality ratings.
Configuration-Free Deployment
Automated setup approach that eliminates substantial upfront configuration requirements and ongoing manual intervention typically required by conventional vulnerability management solutions.
Threat Detection Engine
Library of 900+ out-of-the-box detections with user and attacker behavior analytics backed by community threat intelligence
Data Ingestion and Integration
Ingests CloudTrail, GuardDuty, EC2 network traffic, raw logs via SQS from multiple AWS accounts, on-premises networks, remote endpoints, and SaaS solutions
Investigation and Response Capabilities
Visual investigation timeline with detailed log timelines, automated response workflows, and instant actions such as asset quarantining
Deception Technology
Honeypots, honey credentials, and honey files for layered defense mechanisms
Compliance and Monitoring
File Integrity Monitoring (FIM) with support for PCI, HIPAA, and GDPR compliance requirements, plus detection of new AWS regions, services, and EC2 instance types
Multi-Source Threat Data Integration
Correlates security events from Trellix Security Platform and over 500 third-party tools including 13 AWS integrations to create unified threat visibility across the security stack.
AI-Driven Alert Triage and Prioritization
Applies artificial intelligence-driven analytics to perform 100% alert triage, prioritize threats, and provide GenAI-powered insights for threat investigation and remediation guidance.
No-Code Automation for Investigation and Response
Provides UI-driven, point-and-click automation capabilities to offload repetitive security operations tasks and accelerate investigation and response workflows.
Pre-Built Analytics and Correlation Rules
Ingests data from multiple sources and correlates events using pre-built analytics and rules to reconstruct complete attack narratives and reduce manual investigation pivots.
Multi-Deployment Architecture Support
Supports cloud, hybrid, and air-gapped deployment models with an open integration ecosystem for flexible security infrastructure configurations.
Standard contract
No
No
No
Customer reviews
Mohammad Jundiah
Centralized threat detection has improved incident response and now reduces alert fatigue
Reviewed on Jan 31, 2026
Review provided by PeerSpot
What is our primary use case?
My main use case for SecureWorks Taegis VDR is as a central detection and response platform.
For detection and response, I use SecureWorks Taegis VDR for threat detection, incident response, SOC efficiency, and alert reduction because it detects lateral movement, credential abuse, ransom activity, and provides a full attack story rather than just single alerts, allowing the SOC to act quickly.
My primary use case with SecureWorks Taegis VDR is for MDR and XDR purposes.
What is most valuable?
SecureWorks Taegis VDR's best features include unified detection and response, as it pulls in alerts and logs from all my different tools such as EDR, SIEM , firewall, cloud services, and Windows machines, collecting everything into one clean dashboard where I can view all these items and eliminate the need to hunt through ten dashboards to piece a threat together.
I find it very easy to navigate and customize the dashboard to fit my team's needs once everything is set up, and it is very simple to view the dashboard after setup.
Cloud and hybrid support is another valuable feature of SecureWorks Taegis VDR, as it supports on-premise and cloud workloads, managing endpoints and network traffic to provide centralized visibility regardless of where my assets live, whether in the cloud or on-premise.
SecureWorks Taegis VDR has positively impacted my organization because of its ease of use.
The positive impacts include faster incident response, as I can detect, investigate, and contain threats much faster because it shows the full attack path in one place with deeper analysis of everything, and it reduces alert fatigue by consolidating alerts into one or two high-confidence incidents, which improves analysis efficiency and morale.
What needs improvement?
There is always room for improvement in SecureWorks Taegis VDR, especially regarding user interface and navigation, as the platform is powerful but the UI can feel complex for new users.
The integration setup time for SecureWorks Taegis VDR needs improvement, as although it integrates with many tools, the initial onboarding and log ingestion can take time and require significant technical effort, particularly when connecting multiple organizations to this one centralized solution.
For how long have I used the solution?
I have been using SecureWorks Taegis VDR for almost four years.
What do I think about the stability of the solution?
SecureWorks Taegis VDR is stable.
What do I think about the scalability of the solution?
The scalability of SecureWorks Taegis VDR is very good.
How are customer service and support?
The customer support for SecureWorks Taegis VDR is the best thing they have, as I receive responses in about five seconds from real people, not AI.
I would rate the customer support for SecureWorks Taegis VDR a perfect ten out of ten.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
I previously used a different solution, but most of my SecureWorks deployments were greenfield, usually switching from CrowdStrike or SentinelOne to SecureWorks Taegis VDR because of the centralized management feature.
What was our ROI?
I have seen a return on investment with SecureWorks Taegis VDR, as it delivers strong ROI by reducing security workload and preventing costly incidents, improving response speed and lowering operational costs, along with fewer security incidents.
What's my experience with pricing, setup cost, and licensing?
My experience with the pricing, setup cost, and licensing for SecureWorks Taegis VDR is that it was very costly on a per-user price basis.
Which other solutions did I evaluate?
Before choosing SecureWorks Taegis VDR, I evaluated CrowdStrike and Microsoft Defender.
What other advice do I have?
My advice for others looking into using SecureWorks Taegis VDR is to consider its tool consolidation feature, as it replaces the need to use multiple disconnected security tools and dashboards, saving on licensing and management costs. I would rate this product an eight out of ten overall.
Venugk Venugk
Advanced detections have exposed credential abuse early and stop lateral movement across environments
Reviewed on Jan 13, 2026
Review provided by PeerSpot
What is our primary use case?
My main use case for SecureWorks Taegis VDR was initially conducting a proof of concept after we were using McAfee. I rolled it out to a pilot set of devices to understand how it functions, and the results were amazing because it provided detailed analysis.
A specific example of how SecureWorks Taegis VDR helped my team during that pilot was detecting early credential abuse and lateral movement across my hybrid environment. Since we had SecureWorks Taegis VDR in place, we wanted to assess how it would detect these threats, and it was able to detect multiple servers using Kerberos and NTLM attacks. It also detected the lateral movement using valid credentials and captured the suspicious administrative commands that were executed in this multi-stage incident.
My main use case for SecureWorks Taegis VDR is that it is definitely one of the best tools in terms of high-fidelity detections, with initial access, credential abuse, lateral movement, and these elements mapped appropriately in terms of the MITRE ATT&CK framework.
What is most valuable?
The best features SecureWorks Taegis VDR offers that stand out to me are the dashboard and the automated response. Based on severity, it can isolate the affected device and disable the compromised account or reset the password for the compromised account, and also block suspicious networks while notifying the SOC analysts with enriched text content.
SecureWorks Taegis VDR has positively impacted my organization by correlating identity, endpoint, and network signals to detect credential-based attacks early and responding before lateral movement escalation in most of my scenarios.
What needs improvement?
I would like to improve SecureWorks Taegis VDR by enhancing the dashboard to provide a holistic view with granular data.
I also request the product engineering team for enhancements regarding integration, reporting, or user experience.
For how long have I used the solution?
I have been using SecureWorks Taegis VDR from 2022 until today.
What do I think about the stability of the solution?
SecureWorks Taegis VDR is stable.
What do I think about the scalability of the solution?
SecureWorks Taegis VDR's scalability is notable.
How are customer service and support?
The customer support is good.
How would you rate customer service and support?
Negative
Which solution did I use previously and why did I switch?
I previously used McAfee, which had become very traditional, so I had to switch.
What was our ROI?
I have seen a return on investment, specifically in terms of time saved.
What's my experience with pricing, setup cost, and licensing?
I think the pricing, setup cost, and licensing of SecureWorks Taegis VDR are acceptable compared with CrowdStrike and other tools.
Which other solutions did I evaluate?
I chose SecureWorks Taegis VDR because I trust SecureWorks, having worked with McAfee, Symantec, Trend Micro, Kaspersky, Carbon Black, Cylance, CrowdStrike, Palo Alto Cortex XDR , and more. I know these products have evolved from traditional antivirus to EDR, and I would say SecureWorks Taegis VDR is outstanding among all the other vendors in terms of functionality, ease of access, and UI friendliness.
What other advice do I have?
I found this interview absolutely fantastic.
I would advise others looking into using SecureWorks Taegis VDR that it is one of the reliable solutions anyone should try, and if it yields good results, I would definitely recommend switching to SecureWorks.
I recommend SecureWorks Taegis VDR because it is highly scalable by design and well-suited for mid-sized to very large enterprises, including global hybrid and cloud-heavy environments. Its cloud-native elastic architecture is built as a cloud-native SaaS platform that automatically scales compute and storage as telemetry volume increases without requiring customer-side infrastructure scaling, and it can handle bursty workloads such as incident spikes and ransomware attacks. I gave this product a rating of eight out of ten.
Balakrishnan Mysore
Improves organizational security with comprehensive support
Reviewed on Oct 28, 2024
Review provided by PeerSpot
What is our primary use case?
SecureWorks Taegis VDR is used for telemetry, SOC operations, or endpoint management, depending on the configuration and the organization's requirements.
How has it helped my organization?
The solution helps by securing the brand of the organization, which is essential.
What is most valuable?
It is a one-stop solution for different needs with separate APIs. The product offers different solutions for different companies.
For how long have I used the solution?
I have been using SecureWorks Taegis VDR for about three years.
What do I think about the stability of the solution?
SecureWorks Taegis VDR is very stable, though there is scope for improvement.
What do I think about the scalability of the solution?
I would rate the scalability an 8.5 out of ten.
How are customer service and support?
The support is very effective and responsive, not only technically but also through quarterly meetings.
How would you rate customer service and support?
Positive
How was the initial setup?
The initial setup is a comprehensive project managed activity.
What about the implementation team?
We provide support as system integrators but do not use third-party services. Our organization has about one hundred ten security resources.
What's my experience with pricing, setup cost, and licensing?
I would rate pricing a seven out of ten. There is room for improvement when it comes to affordability.
Which other solutions did I evaluate?
Palo Alto, Splunk, and ProStrike are other solutions that we evaluated.
What other advice do I have?
As a system integrator, I maintain an unbiased opinion. The choice of solution depends on an organization's risk appetite and funding.
I would rate it a nine out of ten.
Transportation/Trucking/Railroad
Not the best, but will suffice
Reviewed on Nov 09, 2021
Review provided by G2
What do you like best about the product?
Reporting is the only topic I could say was actually good.
What do you dislike about the product?
The techs were not very punctual and never hit proposed dates
What problems is the product solving and how is that benefiting you?
It checked the box for an audit