Anomali Threat Platform

2 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 8.1 out of 101

RackFoundry Total Security Management

6 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow'>trScore algorithm: Learn more.</a>
Score 6.9 out of 101

Add comparison

Likelihood to Recommend

Anomali Threat Platform

Being the best threat intelligence platform/tool on the market, it is fantastic in terms of performance and it has taken a lot of burden of curating and weeding through false positives off of our team freeing them up to focus on manual threat hunting and content building.
No photo available

RackFoundry Total Security Management

RackFoundry Total Security Management (TSM) is suited for most companies that have the same challenge as my team had. If you are looking to purchase one security tool and spend most of your allocated budget then I would not recommend this for you. However, if you are looking for something close to a single pane of glass, (granted there is no such thing) this solution does come close as they have the main components built in such as their FW/IPS/IDS/SIEM. Before selecting RackFoundry we had two options which were: 1) Upgrade our current solution and spend an overbearing amount 2) Search for new vendors and maybe procure 1-3 devices and then manually integrate them. Because this was a unified console and integration between devices was simple, we were able to obtain 4-6 security functions and we even had some sense of security visibility via the SIEM. It's not as powerful as Splunk or LogRhythm, but it definitely does the job
No photo available

Feature Rating Comparison

Security Information and Event Management (SIEM)

Anomali Threat Platform
RackFoundry Total Security Management
9.4
Centralized event and log data collection
Anomali Threat Platform
RackFoundry Total Security Management
9.1
Correlation
Anomali Threat Platform
RackFoundry Total Security Management
9.1
Event and log normalization
Anomali Threat Platform
RackFoundry Total Security Management
9.6
Deployment flexibility
Anomali Threat Platform
RackFoundry Total Security Management
10.0
Integration with Identity and Access Management Tools
Anomali Threat Platform
RackFoundry Total Security Management
9.1
Custom dashboards and views
Anomali Threat Platform
RackFoundry Total Security Management
9.6
Host and network-based intrusion detection
Anomali Threat Platform
RackFoundry Total Security Management
9.1

Pros

  • Fantastic UI
  • STAXXX for sharing intelligence
  • Threat Intelligence feeds
  • Automation and collaboration cuts work down for the analysts
No photo available
  • All-in-one solution that covers all the essentials and basic of security needs
  • Unique methodology way for cost effective enterprise security solution
  • Help exceed compliance as their interface allows you to tailor your compliance needs
  • Simple and friendly customizable user interface dashboard
  • Unique function: Ask an Expert
  • Premium fully manage automatic updates with access
  • Deployable Security Modules that encompass IPS/IDS/SIEM/VA/FW
  • Knowledgeable engineers, who helped improve our overall infrastructure by making it more secure
No photo available

Cons

No answers on this topic
  • Ask an Expert takes takes 2-48 to hours respond. I've seen them take up to 47 hours on an unknown log, however it has never been greater than 48 hours.
  • Initial configuration took 2-3 weeks to adapt to my team's preference.
  • Professional service days are expensive.
No photo available

Alternatives Considered

No answers on this topic
Well I have experience with the big names: SecureWorks, IBM and Splunk. Individually their logging tools are much better than RackFoundry's Total Security Management. This is great for large corporations and urban cities, however not so great for municipalities, mid size businesses and companies who fluctuate between 1-7 members on their IT staff. Why? Because it takes too much of their resources and integration with other products gets a little rough as you will need to configure your preferences to theirs. When a company has stability it is great to have a name brand product, however renewals and upgrade costs can be taxing to an organization.
No photo available

Return on Investment

  • After the Initial startup cost, it has overall had a positive impact by increasing efficiency of the team and freeing up analysts to do manual threat hunting
No photo available
  • We were able to have greater security visibility because of the IDS and the SIEM feature.
  • If we did not choose RackFoundry's Appliance, we probably would have only had 2 security functions that has limited features. Instead we have multiple security functions and had a little extra budget to use towards new equipment.
  • The device has allowed me to use my time more effectively at work. Instead of having some of my staff dedicate their time towards sifting through logs, we are able to see actionable data and react faster.
No photo available

Pricing Details

Anomali Threat Platform

General
Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No
Additional Pricing Details

RackFoundry Total Security Management

General
Free Trial
Yes
Free/Freemium Version
Premium Consulting/Integration Services
Yes
Entry-level set up fee?
Optional
Additional Pricing Details