Easy to deploy, very well managed implementation and exceptional ROI
What do you like best?
The Taegis Managed XDR platform was very easy to deploy in a medium sized organization and provided immediate monitoring and visibility across multiple environments. The XDR analysts are extremely knowledgeable and do an excellent job reviewing more information that could be done by a team of internal personnel and only escalate items that need to be addressed. The toolset provides search visibility beyond any of the other tools that I have used. Secureworks does a good job at listening to it's customers and results can be seen in product enhancements and regular communications. Proactive threat hunting is done and queries are provided so that we can repeat the exercise. A quarterly review with an executive report really shows the value proposition. I would highly recommend Taegis to any company. The Red Cloak agent is extremely easy to deploy and maintain,
What do you dislike?
When we first purchased the Taegis platform, it was not clear exactly what we were getting and took some time for out team to understand how to navigate the offering - it appeared as monitoring was substandard to other traditional SOCs I have used. Once we learned how to navigate the platform, we realized that Secureworks triages everything before escalating. Once we were accustomed to the platform and had our first review. it's ROI was apparent. I do recommend taking the time to understand all aspects of the solution and use the comprehensive on-line resources. We have had some minor performance challenges with the linux version of the Red Cloak agent, but Secureworks quickly worked with us to resolve the issue.
Recommendations to others considering the product:
When looking for SOC providers, it's important to understand the amount of work that your cyber security team will need to do to support the process. If you do not understand this, you may be dealing with a large number of false positives in order to embark on a journey to tune the offering. This platform required absolutely no tuning and any alerts escalated are vetted.
What problems are you solving with the product? What benefits have you realized?
Best in class managed security monitoring and response across an enterprise with a large number of disparate integrations and cloud environments without the addition of trained SOC, malware, forensic analysts.