Red Canary Managed Detection and Response
Red CanaryReviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
122 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Red Canary is Top Tier
What do you like best about the product?
Implementation, ease of use, and customer support are 3 of the main things that Red Canary goes above and beyond with. In the tech industry we've all experienced very unhelpful support, and when it comes to our security posture it's allows us to "set and forget" a lot of the triggers that we see on a daily basis. Their team has been instrumental in steering us towards success, whether it's monthly meetings, actual malicious triggers, or just to chat about upcoming security changes.
What do you dislike about the product?
We have yet to see many downsides, at all, when it comes to using Red Canary. With any security software, it will be quite overwhelming if you're just getting your feet wet for the first time, but their team of experts makes it very easy for your worries to subside.
What problems is the product solving and how is that benefiting you?
Having a MDR allows us to focus ourselves on things outside of our security posture. We are a small, but mighty, team so we need all the help we can get. Red Canary allows us to set and forget a lot of our triggers, as well as remediating them and doing the leg work before we're aware of what's going on.
Monitors traffic effectively and assists in compliance decision-making for quick response
What is our primary use case?
We use Red Canary to monitor incoming and outgoing traffic. For example, when we receive an alert that data from our internal IP address to an external IP address has been transferred, we investigate using a Palo Alto firewall.
What is most valuable?
Red Canary detects threats and attack patterns, allowing us to assess any significant damage caused to the banking environment, particularly if protected data has been damaged or corrupted. It is valuable for security teams in banking industries that need to make informed decisions quickly. Red Canary solutions are useful for compliance with standards like FFIEC and PCI and are employed in medical operations for HIPAA compliance.
What needs improvement?
Red Canary's pricing spectrum may not be ideal for smaller financial institutions.
For how long have I used the solution?
I have been using Red Canary for four years.
What do I think about the stability of the solution?
We have had no issues with stability. It runs smoothly.
What do I think about the scalability of the solution?
The pricing should be decreased so that other smaller banks, apart from the IT industry, can implement it.
How are customer service and support?
We have a monthly catch-up call with the support team to discuss alerts. In emergencies, there is an on-call person available to resolve issues immediately.
How would you rate customer service and support?
Positive
How was the initial setup?
The initial setup is easy and does not require external support.
What's my experience with pricing, setup cost, and licensing?
The services are higher priced.
What other advice do I have?
I recommended Red Canary to my friends who work in other organizations. I guide them about this tool, share knowledge on its features, and explain the process of how we use it. I would rate the overall solution on a scale of one to ten as nine.
Effective and reliable MDR service provider, a partner you can trust
What do you like best about the product?
Red Canary is quick and effective at detecting genuine threats and executing your automations to contain the threat.
We have been using Red Canary for a few years and have found comfort in their reliable and timely 24x7 detections. They often publish intelligence reports that helps reassure us they're on top of threat actors and attack trends.
When we ask about detection coverage for a current or emerging threat actor and their TTPs, they're already on top of it.
We've swapped EDR tools and with the Red Canary team's help, it was a seamless transition with no downtime or lapse in detection coverage.
Their threat hunting and engineering team is readily accessible and our account manager Matt Tauaese has been very proactive and engaged in helping make sure we get the most out of our service.
We have been using Red Canary for a few years and have found comfort in their reliable and timely 24x7 detections. They often publish intelligence reports that helps reassure us they're on top of threat actors and attack trends.
When we ask about detection coverage for a current or emerging threat actor and their TTPs, they're already on top of it.
We've swapped EDR tools and with the Red Canary team's help, it was a seamless transition with no downtime or lapse in detection coverage.
Their threat hunting and engineering team is readily accessible and our account manager Matt Tauaese has been very proactive and engaged in helping make sure we get the most out of our service.
What do you dislike about the product?
Their services are gradually becoming more expensive and its harder toignore their competition which are providing a full service offering a fully managed SOC offering at lower costs. Red Canary remains a top pick for MDR, but as organisations find the need to consolidate tools and optimise processes, their narrow offering may be a disadvantage in future.
What problems is the product solving and how is that benefiting you?
We needed 24x7 monitoring of our Endpoint Detection & Response tool, detection engineering capabilities backed by reliable and accurate threat intelligence, and effective automations to rapidly contain threats and minimise collateral damage.
Red Canary has been able to provide us with this service and comfort over the past few years that we've been a customer. With their MDR service, we can refocus our team on other prioirities.
Red Canary has been able to provide us with this service and comfort over the past few years that we've been a customer. With their MDR service, we can refocus our team on other prioirities.
Red Canary Customer Review
What do you like best about the product?
The partnership and collaborative approach that we are not treated like just another customer, and that when we have ideas for ways to improve our customer experience and make suggestions on improvements to the product and services that Red Canary provides an environment of active listening to our concerns and feedback.
What do you dislike about the product?
If I had one complaint I think it would be related to cost as this is my most expensive reoccuring subscription.
What problems is the product solving and how is that benefiting you?
The alerts of potential incidents and the real time reporting so my team can reduce our MTTR from days to hours is one of the biggest benefits.
Good solution to get you started on Managed Detection and Response
What do you like best about the product?
The Active Remediation add on is extremely useful
What do you dislike about the product?
Lack of account maintenance follow up after the intial setup
What problems is the product solving and how is that benefiting you?
24/7/365 coverage in place of a three person SOC
Great Partner!
What do you like best about the product?
The support from our account team has been top notch and the product has really helped the security of our company. Implementation was real easy.
What do you dislike about the product?
No negatives to report. We have been very happy
What problems is the product solving and how is that benefiting you?
We are not large enough to keep a full time security person so this fills our need.
Feedback on Red Canary
What do you like best about the product?
Good customer service, easy to use, decent threat intelligence and threat detection capability. Playbook automation helps with timely response to threats. The 24*7 service is a great addition to the in house SOC team.
What do you dislike about the product?
We cannot solely rely on RC as it primarily focuses on EDR and identity security log monitoring. It does not allow custom detect engineering either.
What problems is the product solving and how is that benefiting you?
24*7 security monitoring
Red Canary Doesn't Disappoint
What do you like best about the product?
I appreciate the service that we receive from Red Canary. Red Canary is quick to respond and I like that we have a dedicated team for support. It's also very easy to use and allows us to track the alerts we recieve.
What do you dislike about the product?
There are a few features that I wish Red Canary had including the ability to see logins from the screen to eliminate the need to toggle back and forth between tools.
What problems is the product solving and how is that benefiting you?
Red Canary is solving the problem of "alert fatigue". We are no longer investigating every alert that comes through. We are confident that Red Canary is going to reach out to us if we need to take action.
Red Canary Provide a Great Service
What do you like best about the product?
RC will work with you to improve your security posture. Always had a great experience with their support and customer managers.
The analysis of alerts is detailed and cuts down a large amount of benign alerts
The analysis of alerts is detailed and cuts down a large amount of benign alerts
What do you dislike about the product?
RC support work in US timezones, can be tricky to organise a suitable time for meetings.
What problems is the product solving and how is that benefiting you?
Performing detailed analysis on a large volume of events with automated playbooks taking effect in case of malicious activity.
Extension of the team
What do you like best about the product?
They are great extension to the team. Providing around the clock monitoring and enrichment to alerts, they help bring down that mean time to detect threats in the environment. I appreciate their investigation data across the client base to help find threats that the other players down. Being reliant on 3rd party definitions that have to appease a wide scope of clients can be determental to early discovery.
What do you dislike about the product?
Appending security around SaaS applications and limitations on involvment in a real incident response situation are the dislikes of avilable options.
What problems is the product solving and how is that benefiting you?
Discovery and threat enrichment to alerts. Bringing down investigation time on positive alerts to remeidate is the greatest benefit.
showing 21 - 30