Likelihood to Recommend We started an entirely new network segregation implementation for security policies. Armis was unparalleled at helping us find rogue static IP-assigned devices in our old network and helped us identify what they were so we could tackle the challenge of moving everything to the new network VLANs. Another use case is finding a specific device or a specific user account to track their activity. The layout is phenomenal, and the data is easy to understand and drill down into for further information. The new AVM (Asset Vulnerability Management) section is awesome to help us find the out-of-date devices or other risks on the network to figure out where we are most vulnerable and at risk. If you're looking for a way to have Armis auto patch vulnerabilities - that's only on the radar from what I've heard - but currently, it is an amazing tool for finding and detailing the CVEs and other risks. You can create policies to block specific risky behaviors, but currently, at the time of writing, there isn't any automated patching or remediation to known CVEs found on a device.
Read full review Symantec Critical System Protection (CSP) is very well suited for environments that do not change such as point of sale systems and critical servers. This product is spectacular at protecting end of life operating systems when supporting legacy software prevents upgrades. When security updates are no longer available, CSP will prevent exploits and other malware from taking advantage. This product is not well suited for systems that require a lot of changes. For one, it does not notify when a change has been blocked by CSP, causing some server administrators to waste many hours chasing a phantom technical problem when turning off CSP could have solved it right away. Also, profiling takes time so systems that constantly change would need hundreds of exceptions made.
Read full review Pros Analyzing Traffic Detecting Device Types Finding vulnerabilities by pure magic! Searching through all the data - intuitive and no programming required! Alerts and policies for anything you can imagine Reports and dashboards customizable to any extent you can imagine Integrates with so many systems and ties all your data together in one screen Create automated processes to handle events automatically by event/data/device etc. Read full review Data Center Security 6.0 and higher allows you to easily build out policies to deploy to monitor/block what is required/needed. The agent that is installed on the hosts has a small footprint in terms of CPU and memory usage. The ability to customize it anyway you need to as well as utilize out of the box policies to monitor critical OS functionality. Read full review Cons I've requested integration with Mosyle Manager for our Apple MDM products - it is on the radar but slow going - Mosyle has an API and a free 30-day trial, so implementation shouldn't be difficult - but honestly, other than that - Armis support has been astonishing, and there are so many integrations already - it's small potatoes. Considering Armis has all the data collected and parsed - it would be nice to see a back-end system for those of us who are true nerds and want to really dig into the Syslog data and analyze packets directly - however, building some quick queries is probably easier if you know what you are looking for anyway - which is probably why this is a backward way of my own thinking and no fault of Armis at all. They make the interface so easy to use it's not necessary, but it hurts my inner geek. Read full review Tuning takes a very long time Turning the product on or off can take time When an action is prevented by CSP, there is no pop up or notification, making this a burden for server administrators Read full review Support Rating They respond quickly and efficiently without the need to reiterate the actual issue. Their backline support is amazing and always there for us when it is needed. They explain the troubleshooting steps taken and what they did to help us resolve the issue just incase it creeps up again we have the information to correct it ourselves.
Read full review Alternatives Considered Armis is kind of a total conglomeration of a ton of different tools/systems, and depending on how you want to set it up can do almost anything a lot of these other tools can do - and in some cases, even better. It doesn't do software deployment or other things like
SCCM I have listed, but the reporting side is so much better than
SCCM 's interface. As far as data breaches, user/device activity tracking, vulnerability outlook, network scanning, device identification, and agentless miracles of magic - Armis is the king.
Read full review We evaluated Bit 9 and you have more flexibility with the rule set and do not rely on the cloud to tell you what is approved and not approved. You build out the policies the way you need them to be and who better knows the environment that the people that work it daily.
Read full review Return on Investment Armis helped with multiple projects saving incalculable time since we've gotten it Network analysis is a breeze Device traffic reports and alerts is one click easy peasy Blocking devices or specific traffic is super easy and helpful - if you have the right integrations for those options Read full review Great protection for unchanging systems We have comfort that the protected systems are safe from intrusion Excellent price Read full review ScreenShots