Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Fantastic Tool
What do you like best about the product?
Laces is seamless to integrate with our cloud tenants. The UI is very straight forward, allowing us to visualize our cloud security status easily. We integrated our SIEM to correlate security incidents.
What do you dislike about the product?
Their support for Linux is fantastic, but their Windows support is lacking. There currently is an agent in testing, but with our predominantly heavy use of Windows, we do have some gaps.
What problems is the product solving and how is that benefiting you?
We are solving the problem of understanding what exists within our cloud instances. It allows us to cut down on alerting easily. The behavioral analytics are great!
- Leave a Comment |
- Mark review as helpful
Good alerting tool I have ever seen
What do you like best about the product?
The Sysmetic order of parsing alerts according to the severity
What do you dislike about the product?
No I have not seen any difficulties so far.
What problems is the product solving and how is that benefiting you?
All the integrated applications with severity level issues
Recommendations to others considering the product:
N/A
Critical Security Monitor Tool
What do you like best about the product?
As our systems get larger, with more and more activity, Laceworks anomoly detection based approach is key to filtering out false positives so we can focus on events that matter.
What do you dislike about the product?
When it comes time to actually investigate an event, it could be a little easier to get at all the information you need. Not super easy to customize compliance rules at the moment although this is supposed to be on the roadmap :)
What problems is the product solving and how is that benefiting you?
We use Lacework to monitor our infrastructure for anomolies and potentially malicious activity.
Lacework usage
What do you like best about the product?
Agile development. Lacework always helping to bring new features to the product.
What do you dislike about the product?
agents. I wish to get more flexibility with using other endpoints to send json format data to Lacework
What problems is the product solving and how is that benefiting you?
Filtering data before bring to SIEM. Quick reports to review compliances. Agile SIEM case development
Lacework makes it easy to monitor malicious behaviour within our multi-cluster cloud environment!
What do you like best about the product?
There are a lot of things to like:
- The detailed visibility of all our container workloads across multiple accounts is great
- Anomaly-based detection allows us to focus our efforts
- Setting up Lacework is very easy, including integrations with e.g., Jira, Slack, etc.
- The lacework team is very helpful and proactive for any issues you might encounter
- The detailed visibility of all our container workloads across multiple accounts is great
- Anomaly-based detection allows us to focus our efforts
- Setting up Lacework is very easy, including integrations with e.g., Jira, Slack, etc.
- The lacework team is very helpful and proactive for any issues you might encounter
What do you dislike about the product?
Not all runtime behavior alerts offer enough data to decide whether or not something is malicious. Having even more data (e.g., what process is doing a specific action) would help.
What problems is the product solving and how is that benefiting you?
Lacework allowed us to move away from a very intensive, time-consuming security monitoring process where a lot of manual investigation was needed. With Lacework, we can now fully integrate this with our other incident management processes. Especially in a multi-account, multi-cluster environment, the centralized overview offered by Lacework helps out a lot when triaging potential issues.
Recommendations to others considering the product:
Highly recommend doing a PoC with Lacework. The ease of setup and the team's structured PoC approach with clearly defined success criteria helps you to see the value of the product quickly.
Very good
What do you like best about the product?
Dashboard, easy to Navigate the options and account settings
What do you dislike about the product?
Not much particularly but dashboard can be improvised.
What problems is the product solving and how is that benefiting you?
Cloud related issues
Recommendations to others considering the product:
NA
Great product!
What do you like best about the product?
Great help to a security team. Drastically reduced the number of false-positive alerts.
What do you dislike about the product?
There few things to add to the functionality, but those are niceties and are on the road map.
What problems is the product solving and how is that benefiting you?
Vulnerability management, IDS
Recommendations to others considering the product:
The seamless experience of deployment and usage across multiple types of infrastructure.
Increases visibility really effectively, growing in all the right ways.
What do you like best about the product?
The cross cloud, cross data center visibility from the app level and the ability to weave a lot of data into a simpler process. Their roadmap is awesome, and features are malleable. They bring some intelligence data to the view as well. We get visibility from agents in concert with kubernetes and our cloud providers that makes actions much more meaningful. Filtering views is also a very nice feature - you can review how a pod communicates within a system with clever use of filtering.
What do you dislike about the product?
Lacework collects the data to provide many more features that would make compliance and security reviews significantly easier, but they are still growing and road mapping things. There is incredible potential in this tool. My only dislike is that we have to wait, but I am satisfied with the tremendous progress.
What problems is the product solving and how is that benefiting you?
Lacework can help reveal interactions between microservices you weren't expecting. It can help with detecting intrusion. It helps you get visibility when bad actors are hitting your services. Overall its wholistic view is very powerful and really helps contextualize network movement in an increasingly complex world of orchestrated deployments.
High fidelity and observability into our environment!
What do you like best about the product?
The high fidelity of the alerts with little noise to sort though. Also love the visualization.
What do you dislike about the product?
The sales process seemed to be very drawn out and not transparent as to pricing structure
What problems is the product solving and how is that benefiting you?
Small security team and a lack of deep visibility and intelligence into our environment. Provided us with the tools we need to effectively protect and monitor our environment.
Streamlined setup, Quick to start gaining value out of detections.
What do you like best about the product?
The setup and documentation is very easy to navigate. There were a variety of up to date templates depending on your orchestration. I could easily run terraform plans to setup the cloud posture and they had provided chef cookbooks handle the agents. Basically however I wanted to deploy the agent, they had codified modules I could use and fold into my code base.
The network diagrams (polygraphs) are really helpful when responding to an alert or just doing Threat modeling, Its nice to be able to very quickly visualize communications between your services.
Integrating into the container registry was really easy and provides us Vuln visibility prior to deployments. The mapping of containers in the registry to containers at runtime is very intuitive, helps you prioritize which items to look at first.
The network diagrams (polygraphs) are really helpful when responding to an alert or just doing Threat modeling, Its nice to be able to very quickly visualize communications between your services.
Integrating into the container registry was really easy and provides us Vuln visibility prior to deployments. The mapping of containers in the registry to containers at runtime is very intuitive, helps you prioritize which items to look at first.
What do you dislike about the product?
The vulnerability management at runtime only updates once per day and a vuln must be cleared for at-least 24 hours before it will no longer show in the platform. This makes closing out issues after a code change or dependency update a more drawn out process. Would be nice if it could be done on demand.
Lacework has nice documentation on how to remediate findings in AWS, however they only provide details on how to do it in the AWS console, it would be helpful if they could also provide terraform samples, as that could greatly increase the speed of remediation.
Lacework has nice documentation on how to remediate findings in AWS, however they only provide details on how to do it in the AWS console, it would be helpful if they could also provide terraform samples, as that could greatly increase the speed of remediation.
What problems is the product solving and how is that benefiting you?
Vulnerability Management - Host and Containers
AWS Cloud Compliance
Threat Hunting
The lacework setup allows us to easily run a Vulnerability Management program on our AWS images, Instances, and our Container fleet both at run and build-time.
The Automatic network diagrams allow us to look at all network connections between our systems and compare them to our baselines.
AWS Cloud Compliance
Threat Hunting
The lacework setup allows us to easily run a Vulnerability Management program on our AWS images, Instances, and our Container fleet both at run and build-time.
The Automatic network diagrams allow us to look at all network connections between our systems and compare them to our baselines.
showing 331 - 340