Managed Rick/Vulnerability Scanning Solutions reccomendations
-
Howdy all,
I'm looking for recommendations/opinions for a new Managed Risk/Vulnerability Scanning solution. The 3 we have been looking at are Arctic Wolf, SecureWorks and Rapid7. Any comments on those or others would be most appreciated.
Thanks
Charles J Stella
-
Greetings, @Charles-Stella
This is a difficult question to answer, as it is really subjective to your organization and its needs.
What's really fun, is that as your organization changes, the solution you pick today may not be the solution you need tomorrow. And that doesn't mean that your current solution is bad, just that your needs have changed and now a different solution is a better fit.
All of the vendors you listed have good reputations for quality products, so it's just going to boil down to which one fits your use-case the best.
All the best,
Daniel -
I know this is a really late response, but I thought I'd add my two cents to this for history reasons. Our company has chosen to implement BOTH SecureWorks (Taegis XDR) and Rapid 7. I didn't have any part in the decision, but I really like the capabilities of the two. The Taegis XDR product gives us near real-time responses to events in our environment, both from the internal network and our cloud resources, showing us what's going on with our servers and our devices. We also have CrowdStrike Falcon, that was already in place and that feeds a lot of data to the Taegis XDR platform. So we actually have two separate products that are monitoring and automatically responding to and preventing a lot of things that could have been an issue or caused problems. We've had a few events that were stopped that might have become a bigger issue.
As for the Rapid 7 environment, we are using it currently for active vulnerability tracking and penetration testing on our external and cloud environments. It finds vulnerabilities or even just things that are recommended security changes. We haven't yet set it up for scanning our internal systems, but once we do I can certainly see it providing as useful information there as it has been for our external and cloud systems.