Check Point Harmony SASE vs. Darktrace

I'd suggest that Perimeter81 is recommended when you want something that is easy to administrate, with little maintenance, unlike a VPN/secure network that you host and manage internally. We've had incidents when there has been downtime at Perimeter81, which has effectively locked us out of some of our secure services (anything locked down via IP). They have made improvements to their infrastructure and it seems to have improved in recent months, but this is something to keep in mind for critical connections

Incentivized

Darktrace is a product well suited for the vast majority of infrastructures and helps monitoring and responding to threats based on the network in a very elastic way. This is a product based on on-premise infrastructures that hosts its machines locally, of course it can be technically difficult to monitor an entire On-Cloud infrastructure but even there there's room for sensors and monitoring, not to mention the SaaS and mail integration that completes the product.

Incentivized

• Simple easy to read icon.
• You can hover over and see if you are logged in via the systems tray on your computer.
• Easy to switch between regions around the world.

Incentivized

• Uses it Al model UEBA to detect anomalies in the behaviour of not only the users in a corporate network but also the routers, servers, and endpoints in that network.
• Provides a visualisation of both egress and outbound network traffics flowing in and out of the organisation.
• Darktrace comes with it autonomous AI model detection and responses capabilities.
• Darktrace as an AI next generation NDR solution, prevents ,contains and quarantines malicious traffics from and into the corporate network.

• Customer support was lacking before, now seems better.
• Had much difficulty using Chrome as my browser to install the app.
• Increase the throughput speeds at time would be nicer.

Incentivized

• There are few areas that I would say need to be improved; their customer support portal allows you to log tickets with any suggestions or things you feel the product is missing, and they will generally show you how to achieve what you want, or in some cases, introduce it as a feature in a later update.

Incentivized

It's a powerfull product that help administrators to provide email security to our organization.

Good metrics about received emails that help us to determine in doubt case if the email is a false positive or it's malware.

They're improving the product releasing continuous updates and have mobile phone app to manage it.

Incentivized

The Darktrace toolset is very expansive, allowing it to handle many different tasks, but this leads to a user interface that is sometimes not at all intuitive. Icons don't always make sense visually, and the associated tool tips do not always provide enough detail on what action the button performs

Incentivized

Darktrace support is excellent in my experience. They send a competent engineer on-site to provide on-boarding training. They were also very responsive in responding to questions and concerns. Having an individual point of contact who is a competent network and security engineer is not a common experience, at least for me.

Incentivized

In the beginning, it was a bit rough getting it to work and getting any kind of quality support from customer service. But recently they really improved their service and customer service. I believe they raise 100M in new funding which provides them the resources to make a better product with better tools and a better help desk.

Incentivized

We did NOT select Darktrace. OSSIM/AlienVault is a more mature product and it provided better intelligence and reporting. The end user interface is much easier to use - and you can tell built form engineers who have had to do the work. My suggestion for anyone considering Darktrace, is to get the price upfront; do a 30/60 onsite trail; and do the same thing, at the same time, with AlienVault. AlientVault will win every time. I say that because that's exactly what I did.

Incentivized

• I think it is just a cost of doing business.
• I don't think the cost is too prohibitive.
• We also use it as an example of what a small cost can provide big protection for your security.

Incentivized

• One big positive is how it helps us with the security assessments that clients have done on us. They are looking to see if we know how we might have unusual/malicious traffic running on the network.
• If you have a small network and only need 1 appliance, it can be a good ROI and peace of mind.
• You could go down a hole in trying to spend time looking at all of your traffic with this software. You need to focus only on what it is showing as potential bad traffic.

Incentivized