With Infinity MDR, the Check Point MDR team will monitor, detect, investigate, hunt, respond, and remediate attacks on the user's environment, covering the entire infrastructure: network, endpoint, email, and more, using information from the ThreatCloud threat intelligence service, also from Cheeck Point, and AI-based analytics tools.
N/A
Mandiant Managed Defense
Score 6.8 out of 10
Enterprise companies (1,001+ employees)
Since 2004, Mandiant has been a partner to security-conscious organizations. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.
I believe for anyone running Check Point Firewalls, there is a big benefit. Their MDR team and pro service folks are extremely knowledgeable on their products, and very quick to implement fixed if needed. If you are also running endpoint, or harmony email (Avanan) it's a no brainer. If don't run any Check Point Products, it might make more sense to find the best bang for your buck based on reviews and feedback from current clients.
Rapid identification & Neutralization : The Madiant Rapid Response team will get work right away often within hours to identify and eject the adversary . Others Vendor takes days. Post Incidents Threat Summary: Mandiant provide formal summary of its investigation, detailing the actions it took & discovery it made as well as recommending long term guidance on how to mitigate the recurrence of similar threats in future . Also provide ongoing detection & response.
Excellent across all major tenant of incident response (detection, containment, eradication, etc.)
Has a strong backend support system to perform advanced incident response activities (reverse malware engineering, etc.)
Very scalable - no matter how small or large the incident, Managed Defense can tackle it, or escalate to Mandiant IR if the incident is complex and/or large enough.
Due to split from FireEye Mandiant no longer can provide its own End Point Protection as part of MDR for customers that want to transition after incident is complete .
Single remediation response with no-ongoing monitoring
Only because there is not a good mobile app for it. Other than that it's great. If there was a mobile app for this product, it would be a perfect 10/10 for sure.
We selected the Check Point MDR service largely because we are a Check Point Infinity client. I have to say, I thought that we would be trading a bit of cost, and ease of integration for slower response or less attention to detail, but that could not be further from the truth. I have been extremely satisfied with what they have been able to alert, detect and prevent in our environment.
They have literally saved us from fraud and reputation damaging issues by the speed at which they detect someone's email has been compromised. I would say the last one was within 15 minutes. The fraudsters only got 2 emails out before we intervened.
I don't know that you can put a price on them quarantining an infected workstation at 2am when you are sleeping, and it's about 1/1000 the cost of hiring a 3rd shift network admin.
