Cisco Threat Response automates integrations across select Cisco Security products and accelerates key security operations functions: detection, investigation, and remediation. Threat Response integrates threat intelligence from Cisco Talos and third-party sources, which adds context from integrated Cisco Security products automatically so you know instantly which of your systems was targeted and how.
N/A
Egnyte
Score 9.4 out of 10
N/A
Egnyte provides a unified content security and governance solution for collaboration, data security, compliance, and threat detection for multicloud businesses. More than 16,000 organizations trust Egnyte to reduce risks and IT complexity, prevent ransomware and IP theft, and boost employee productivity on any app, any cloud, anywhere.
$25
per month
Splunk User Behavior Analytics
Score 10.0 out of 10
N/A
Splunk supplies security analytics as a standalone solution or priced as an add-on for users of its popular SIEM products, to protect enterprises against unknown threats and malicious behavior, via the Splunk User Behavior Analytics application.
This is perfect for organisations with small or limited security teams who want to get more from their Cisco and third-party investments. With Secure Endpoint makes detecting and responding to threats much easier. Any organisation looking to overhaul its security infrastructure or even wrap around its cloud-first strategy with solutions such as Intune should seriously look at Cisco’s suite of products. I’ve implemented Secure Endpoint, Umbrella, and Duo for customers primarily using Intune for device management, and the cool new insight features in Cisco SecureX really help with visibility over their estate.
Egynte is best suited for companies that SharePoint is not the best fit for. This includes managers unfamiliar with SharePoint specifically, and those really looking for a replacement for a file server in the more traditional Windows sense. SharePoint has more or less done away with any management that resembles Active Directory or File Explorer. Egnyte's web portal is incredibly straightforward. I would say Egnyte is less suited for companies that have licensing access to SharePoint already and do not have a ton of files or granular sharing and security needs
Splunk User Behavior Analytics application is necessary when any company wants to capture the threat based on user behavior instead of just counting the number of occurrences of particular event. With Splunk UBA, we can analyse number of anomalies captured and which in turn creating threats which are nearly true positive.
So the product enables end users to get visibility into their security environment, not only across the Cisco products but across the third-party products as well. The product also automates detection and response. So the product really offers end-user efficiency in the security operations center.
Sharing files externally with passwords, link expiration and granular control of permissions
File syncing across end-user devices using a client installed onto the computer for seamless integration for end-users as if they had mapped a drive directly to their machine
Of course, many companies prefer to obtain security from the cloud; however, not all of them prefer it, which is why having a local implementation would allow these companies to also use said software as their ally for their security.
Working with this software can be simple, that is, any threat can be visualized with greater precision, but when it comes to managing its orchestration, it is a bit complex.
Its integration with other software can be simple but with others it is not, that is why it would be ideal if all of them could be carried out in the same way.
Integrating with a larger number of third party software would be of great help, to further enhance the analysis and detection of threats.
The main drawback of the system that it is lacking in managing the uploading of large or huge files, even though the large files can be easily downloadable but the upload takes a lot of time.
While uploading the system sometimes starts lagging and the file after sometimes needs to upload again.
Egnyte is lacking in syncing multiple platforms at the same time. It gives access to one platform at a time which somehow hinders the work while migrating a large amount of data.
We found that usage of Egnyte in our supported clients, with sufficient bandwidth, provided all the features and stability we required. The billing setup was fair and the support provided was ample for end users and well as our in house admins. There was a concern about high usage clients but this was taken into account during the vetting process.
Really easy to use the interface. The web browser is very intuitive and I have not had any notable issues with this. It's easy to work on documents as a team, and the only issues we have to tend to come with Apple apps and downloading large files to WebEdit. It's very similar to the filing systems that come on Apple and Windows devices so not a steep learning curve.
Egnyte works very well across all platforms and as an add-on to other programs. Load time is close to nothing. Reports can be made in no time as well. All in all no performance issues. We can see that it depends on the local network connection. If you're running with fiber there won't be any issues.
I never had to reach out to customer support for Egnyte. I don't know any coworkers who have had to reach out to Egnyte for support either. As far as I am concerned, the support team is doing a good job since I have not had to reach out to them.
A lot of the look and feel of both products is quite similar. There's several best practices on visualization that are followed in both and integration of common telemetry is comfortable and quick. But while Microsoft ATP offers deep insights into mostly the Microsoft environment and a limited view into other common sources, SecureX shines in all the non-client areas Microsoft's product seems lackluster in.
At the time when this was implemented (over 5 years ago and still in production), there were issues with syncing and reliability that Egnyte did not have, and have continued to impress with. Other providers have improved a lot and Egnyte is fairly costly, but switching costs would be high to move away from it to similar solutions.
Easier we were using Splunk Enterprise on heavy forwarder on which all the add-on were installed and were using Splunk Cloud with respect to search head and indexers stack. And with Splunk Enterprise Security premium app, we were relying on correlation rules which were throwing more number of false positive but after implementing Splunk UBA, we are now getting real-time true positive threat or incidents.
