Very good support, excellent visibility, and useful security bulletins
What is our primary use case?
We partnered with Arctic Wolf to provide us with 24/7 monitoring of our mixed environment organization.
Arctic Wolf provides coverage for our cloud servers and services, and remote workforce endpoints.
As a relatively small organization with a lean IT staff, we do not have the bandwidth to dedicate ourselves to security 24/7. While our team is security aware, it is not the daily responsibility of any of our team members. We realized we needed a partner that could provide SOC services for our wide-ranging data sources.
How has it helped my organization?
Arctic Wolf's insight into our environment and notification when something needs our review are key. The Security Concierge Team (along with the rest of the AW team) truly are teammates and allow us to be more security conscious without the expense of adding more internal staff.
Our prior security vendor added little to no value to our organization. The extent of the relationship was monthly reports that we emailed and tended to be inaccurate. Arctic Wolf absolutely provides value on a regular basis with useful reports and actionable recommendations.
What is most valuable?
The visibility into our endpoints is huge.
The data collected is provided in a view that is understandable and approachable.
The quarterly review with our account manager and Concierge Security Team provides good information and also provides a nice overview of the Arctic Wolf roadmap.
The Security Bulletins that Arctic Wolf provides when there is a new threat or zero-day vulnerability are extremely helpful. They explain the issue and provide understandable recommendations with actionable steps.
What needs improvement?
While it isn't a regular occurrence, there have been some gaps in response to some support questions. Questions get answered, yet there are times it takes longer than I'm comfortable with. Having worked in growing organizations, I realize this is likely to staff training/onboarding. Ultimately, my issues are addressed and resolved. Regarding additional features, I'd like to see further refinement of the dashboards. We subscribe to additional services, and the look and feel vary amongst the solutions.
For how long have I used the solution?
I've used the solution 3+ years.
What do I think about the stability of the solution?
We have had very few outages or issues related to stability in the time we've been a customer.
What do I think about the scalability of the solution?
Our footprint is relatively small, however, it appears to scale well.
How are customer service and support?
Technical support is very good trending towards excellent.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
We switched from Alert Logic. We didn't find value in the service provided.
How was the initial setup?
Onboarding was straightforward, and the support team was able to address any questions or issues with had during the process in a timely fashion.
What about the implementation team?
We handled the initial setup in-house.
What was our ROI?
Our ROI is good and certainly better than with our prior vendor.
What's my experience with pricing, setup cost, and licensing?
Costs are relatively transparent. Setup/onboarding is project-driven and the team responsible for that is good. The account management/sales team understands the licensing model well and provides good recommendations for your needs.
Which other solutions did I evaluate?
We evaluated Alert Logic's new offering and decided against it based on the cost and prior experience.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Mid-sized law firm
What do you like best about the product?
The log collection and aggregation is very helpful. We feel sufficient monitoring is in place. Concierge team is thorough and very service-oriented.
What do you dislike about the product?
There are still quite a few reports and data sources to wade through.
What problems is the product solving and how is that benefiting you?
We have a relatively small IT staff and would not be able to monitor all our endpoints well without support from AW.
Arctic Wolf SOC services
What do you like best about the product?
Our organization has monthly meetings on the tickets and potential vulnerabilities where both our Information Security and Information Technology teams find informative and helpful to harden our environments.
What do you dislike about the product?
Nothing of note we dislike as we have had a good experience with their services!
What problems is the product solving and how is that benefiting you?
The most frequent problems they have helped resolve is any potential intrusion and also methods to harden our environment. Very helpful and responsive in these areas.
CylancePROTECT for endpoint management
What do you like best about the product?
Script control over endpoints and threats dashboard showing a combined list of threats.
What do you dislike about the product?
Lavks automatic remediation to the exploit attempts on the endpoints
What problems is the product solving and how is that benefiting you?
Enterprise end point security solution. Agents are installed on all windows-based endpoints and servers.
Hello, World!
What do you like best about the product?
I can't speak enough about Arctic Wolf's importance to our security culture. With all of their tools inplace i truly get a full picture of what is going on in my organization. The MSA tool is excellent for educating my end users on real-life threats in the Cyber environment. I see who my problem people are within my buildings. The external and internal scans from Arctic Wolf give me insight into my weakest points. Arctic Wolf doesn't just tell you what is wrong but will also give remediations. It's tools you get and constant meetings with my concierge team to review the data they ingested and what steps I need to take to fix issues. There is a true passion within this company to help us IT professionals to be as safe as possible. I'm grateful to have found them and have them in my corner.
What do you dislike about the product?
MSA tool, I wish, allowed me to add and remove users. If you are out of the stone age and have your AD in the cloud then you are fine. Unfortunately onsite AD requires me to email a spreadsheet to support. But they are quick about the upload.
What problems is the product solving and how is that benefiting you?
Arctic Wolf is helping fulfill our new FTC guidelines by offering the MDR and MSA requirements. I'm receiving new sights into my security posture, and my end users are getting an excellent education on the security threats ahead.
Packaged Support for a Non-Profit
What do you like best about the product?
As a non-profit we are looking for the best product for our budget. Arctic Wolf provides us with a SIEM, Vulnerability Scanning, and SOC support without the need for added purchases. With Arctic Wolf we have better protected and supported our employees worldwide.
What do you dislike about the product?
We would like to see integration with some of our tools into the Arctic Wolf Managed Services SIEM. We understand that Arctic Wolf is always adding partners and hope to have more of the other security tools we utilized added to the list soon.
What problems is the product solving and how is that benefiting you?
We needed a SIEM solution with the support to teach us how to use it. We needed staff to support security operations and Arctic Wolf provided analysts and a 24/7 SOC.
Arctic Wolf MDR is a excellent product backed by top of the line service.
What do you like best about the product?
Our Arctic Wolf Concierge Security Team is excellent to work with. Having scheduled calls to proactively review areas of our environment gives me confidence in the security posture of network.
What do you dislike about the product?
Overall we are very satisfied with the service from Arctic Wolf.
What problems is the product solving and how is that benefiting you?
Having a slim staff we are unable to keep eyes on our environment 24/7. Between the sensors, agents, and logs we are sending AW, they are able to have visibility into all areas of our environment 24/7 and alert us when needed.
Needed in today environment
What do you like best about the product?
Having a "dedicated employee" watching 24/7 for a cybersecurity event.
What do you dislike about the product?
Would like to see DDoS alerting so we can start mitigation
What problems is the product solving and how is that benefiting you?
Detection alerting to my employee. Company employees seem more aware of phishing emails now, seeing that we train every month instead of annually.
Arctic Wolf is truly an extension of your staff, constantly surveying the environment
What do you like best about the product?
They truly are an extension of our staff. They enable us to keep a close eye on the landscape and alert us to any anomalies. They are always there to assist us, providing recommendations and best practice alerts.
What do you dislike about the product?
I do not have anything negative to say about them.
What problems is the product solving and how is that benefiting you?
They are our security operations center & do that well. I have a small staff and do not have the ability to monitor 24*7. That is where they fill in the gap. They alert us to anomalies immediately and provide ongoing best practice recommendations. We just signed up for managed risk to help us continuously scan our environment.
The perfect relationship between security and customer service
What do you like best about the product?
They care, they honor their commitment and no matter what products you acquire from them, you will be taken care of in the right way, with integrity.
What do you dislike about the product?
Nothing yet; up to now, Arctic Wolf has been amazing.
What problems is the product solving and how is that benefiting you?
They are providing the education our user base needs to remain vigilant and protected while also helping us from a SOC perspective to react to real-time threats in our network.
