The Picus Security Validation Platform
Picus SecurityReviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
218 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Cyber Security Technologies Manager
What do you like best about the product?
I think, the platform's greatest strength is producing accurate and actionable outputs for security controls. Besides, It helps our customers to select the right product by testing the products with real world scenarios. Finally, It easy to deploy and there is nearly no maintenance effort required. The product's integration to the other systems are easy. The customer support is fast to find solutions to escalated problems.
What do you dislike about the product?
I haven't seen a downside about Picus yet.
What problems is the product solving and how is that benefiting you?
In my point of view, there are two major problems that Picus addresses.
The first one is that, It validates if the security controls works as expected. When I detect a misconfiguration on my own, sometimes it is hard to make the system administrator to change the configuration. When I support my suggestion with simulation outputs, then it becomes easier to convince the system admins to correct the configurations.
The other one is that, my customers ask me which product they should purchase. Testing all of the candidate products with Picus simulations makes it easier to decide to select the best product.
The first one is that, It validates if the security controls works as expected. When I detect a misconfiguration on my own, sometimes it is hard to make the system administrator to change the configuration. When I support my suggestion with simulation outputs, then it becomes easier to convince the system admins to correct the configurations.
The other one is that, my customers ask me which product they should purchase. Testing all of the candidate products with Picus simulations makes it easier to decide to select the best product.
Very Efficient Security Tool
What do you like best about the product?
The product is key role to harden our weaknesses, easy to use and deployment. Awesome staff to solve our needs quickly.
What do you dislike about the product?
Nothing in general, works like a charm.
What problems is the product solving and how is that benefiting you?
In banking sector, you should be ready for the attacks, so it helps to harden our security architecture.
Security Status with Picus Security
What do you like best about the product?
My favorite feature of Picus Security is its continuous and automated cybersecurity posture validation. Thanks to its Breach and Attack Simulation (BAS) capabilities, we can constantly test the effectiveness of security controls by simulating real threat scenarios and proactively identify vulnerabilities. This allows organizations to maximize the return on their security investments while providing the opportunity to address weaknesses before a potential breach. Furthermore, its ease of integration and detailed reporting features greatly support our decision-making processes.
What do you dislike about the product?
Given the value offered by Picus Security, it's generally difficult to point out a negative aspect. However, as constructive feedback for continuous improvement, more detailed and actionable recommendations for resolving identified vulnerabilities could be provided
What problems is the product solving and how is that benefiting you?
Picus Security addresses fundamental cybersecurity challenges by providing organizations with a clear, continuous understanding of their actual security posture. It solves the problem of unknown security gaps by constantly validating whether existing security tools like firewalls and EDRs are truly effective against real-world threats. Furthermore, it identifies and helps correct ineffective configurations within these controls that could leave an organization vulnerable. By continuously testing defenses against the latest attack techniques, Picus ensures that an organization is proactively prepared for an evolving threat landscape. Finally, it helps security teams cut through the noise by clarifying which vulnerabilities are truly exploitable and pose the highest risk, enabling them to prioritize remediation efforts effectively. Ultimately, this benefits organizations by providing continuous validation of their security, optimizing their existing security investments, significantly reducing their risk of a breach through proactive defense, and improving the overall efficiency of their security operations.
Picus Customer Review
What do you like best about the product?
The SCV Module in Picus is good, and the features in that module are useful in real time environment
What do you dislike about the product?
Nothing as of now, because the product seems to work as per the requirement.
What problems is the product solving and how is that benefiting you?
Overall the product helps us to understand the real time attacks and the fixes to the same.
Why do I recommend Picus?
What do you like best about the product?
I've been using Picus for many years in large, well-established organizations. I find it particularly valuable for detecting misconfigurations in security products. By repeating checks at specific intervals, it allows me to identify unauthorized access at any time.
What do you dislike about the product?
There are very few awareness-raising activities regarding the simulation of lateral movement attacks.
What problems is the product solving and how is that benefiting you?
It is quite sufficient reason to show security misconfigurations in our daily simulations.
A Must-Have Breach and Attack Simulation Platform for Continuous Security Validation
What do you like best about the product?
Picus Security provides an extremely practical and intelligent way to continuously assess and improve an organization’s security posture. Its extensive attack library, updated daily with real-world threat vectors, allows us to simulate adversary techniques in alignment with MITRE ATT&CK. The prevention and detection analytics are especially valuable—we can clearly see which controls are underperforming and take immediate, actionable steps. The UI is intuitive, the deployment is smooth, and integration with existing SIEM/SOAR/EDR tools is seamless. It's not just a BAS tool; it's a security operations enhancer.
What do you dislike about the product?
While the platform is generally very strong, the reporting module could benefit from more customization options—especially for tailoring reports to different stakeholders (e.g., executives vs. technical teams). Additionally, for highly segmented environments, agentless deployment options could be explored further to reduce friction in complex networks.
What problems is the product solving and how is that benefiting you?
Picus Security helps us continuously validate our security controls against real-world threats. It identifies gaps in both prevention and detection capabilities by simulating attack techniques mapped to MITRE ATT&CK. This allows our SOC team to respond faster, fine-tune our rules, and prioritize remediation efforts based on evidence. It brings continuous, data-driven assurance that our defenses are working as expected.
What business problems is Picus Security helping you solve?
We used to rely heavily on periodic assessments and manual red teaming, which were time-consuming and costly. Picus now allows us to automate this process and gain real-time insights into our security posture. It has significantly improved our incident readiness, reduced alert fatigue by highlighting ineffective rules, and helped justify security investments with measurable data.
What business problems is Picus Security helping you solve?
We used to rely heavily on periodic assessments and manual red teaming, which were time-consuming and costly. Picus now allows us to automate this process and gain real-time insights into our security posture. It has significantly improved our incident readiness, reduced alert fatigue by highlighting ineffective rules, and helped justify security investments with measurable data.
Picus provides a practical and efficient way to test and improve security controls.
What do you like best about the product?
I like that PİCUS Security makes it easy to simulate real-world cyber threats and evaluate the effectiveness of our security controls in a continuous and automated way.
What do you dislike about the product?
So far , I have not encountered any issues or negative aspects with Picus Security. My experience is positive overall.
What problems is the product solving and how is that benefiting you?
Picus helps us identify gaps in our security controls by simulating real world attacks. It also allows us to test whether our security products are configured correctly, which helps us proactively strengthen our defenses and improve overall cuber readiness.
Picuse vey nice product
What do you like best about the product?
What I like best about Picus Security is its proactive approach to cybersecurity through continuous security validation. Unlike traditional security tools that often take a reactive stance, Picus allows organizations to simulate real-world attacks and identify gaps in their defenses before they can be exploited. I’m particularly impressed by the comprehensiveness of its threat library and how quickly it incorporates the latest attack techniques. Additionally, the seamless integration with existing security infrastructure and the actionable mitigation insights make it an invaluable tool for both red and blue teams. It helps create a true culture of cyber resilience.
What do you dislike about the product?
While Picus Security is a highly effective platform, one area that could be improved is the learning curve for new users. Due to the platform's wide range of features and technical depth, it can take some time for security teams to fully understand and utilize all of its capabilities. Additionally, while the threat library is impressive, occasional updates may lag slightly behind newly emerging attack techniques. That said, these are relatively minor concerns, and the value the platform provides far outweighs these challenges.
What problems is the product solving and how is that benefiting you?
Picus Security addresses a major gap in traditional cybersecurity: the inability to continuously validate security controls against real-world threats. In many environments, security teams rely heavily on theoretical protection—trusting that their tools are working as expected. Picus solves this by simulating real attack scenarios and highlighting exactly where defenses are lacking.
For me, the biggest benefit is the visibility it provides. I no longer have to guess whether our controls will hold up under real attacks—we can test, measure, and improve proactively. The automated mitigation recommendations also save a significant amount of time for our blue team, helping us prioritize and act faster. Ultimately, Picus improves our overall security posture and builds confidence in our resilience.
For me, the biggest benefit is the visibility it provides. I no longer have to guess whether our controls will hold up under real attacks—we can test, measure, and improve proactively. The automated mitigation recommendations also save a significant amount of time for our blue team, helping us prioritize and act faster. Ultimately, Picus improves our overall security posture and builds confidence in our resilience.
Great Platform that provides BAS technology.
What do you like best about the product?
Picus Security helps organization to continuously test, monitor and improve cybersecurity defences.
What do you dislike about the product?
I faced problem when accessing data from API. The commands were not working properly and needed a developer to fix the command.
What problems is the product solving and how is that benefiting you?
Picus helps solving the critical problem of not knowing if our security controls are actually working as it supposed to work.
Easy to implementation and integration
What do you like best about the product?
PICUS is regarded as a mature, practical, and customer-oriented BAS platform that significantly aids in proactive security validation and continuous improvement of defenses. Its ease of use, comprehensive threat simulation, and strong support are standout features that together deliver a very good overall experience
What do you dislike about the product?
Integration with third-party security tools can sometimes fail or require manual intervention to resolve issues
What problems is the product solving and how is that benefiting you?
Picus Security helps users gain accurate, up-to-date insights into their security posture, enabling more effective prioritization, remediation, and confidence in their defenses against evolving cyber threats.
showing 171 - 180