Darktrace AI interrupts in-progress cyber-attacks, including ransomware, email phishing, and threats to cloud environments. It's able to detect and establish baselines for your organization so it can make the distinction between what is and what isn't normal network activity for your organization. This allows it to tackle complex cyber-attacks as they happen and prevent future cyber-attacks from happening.
N/A
Nutanix Cloud Infrastructure
Score 8.9 out of 10
N/A
Nutanix in San Jose, California offers their software-defined Enterprise Cloud as a hyper-converged infrastructure solution. The Nutanix Cloud Infrastructure solution combines the Nutanix Acropolis virtualization solution, Nutanix AHV hypervisor (though Acropolis works with other hypervisors), Prism cluster manager, Nutanix Calm and Nutanix Flow server management, and is available on the Nutanix NX series of server hardware appliances, as well as third-party OEM appliances.
Darktrace is a product well suited for the vast majority of infrastructures and helps monitoring and responding to threats based on the network in a very elastic way. This is a product based on on-premise infrastructures that hosts its machines locally, of course it can be technically difficult to monitor an entire On-Cloud infrastructure but even there there's room for sensors and monitoring, not to mention the SaaS and mail integration that completes the product.
For an organization that requires top-notch performance HCI, Nutanix is the best. You may start with 3 nodes and expand the cluster as required. The management through Nutanix Prism Central and Element was so easy that even a Junior Engineer was able to handle it. The Nutanix platform is not suitable for organizations with a small budget and fewer requirements for high-performance infrastructure, as the Nutanix solution itself is suited for enterprises.
Uses it Al model UEBA to detect anomalies in the behaviour of not only the users in a corporate network but also the routers, servers, and endpoints in that network.
Provides a visualisation of both egress and outbound network traffics flowing in and out of the organisation.
Darktrace comes with it autonomous AI model detection and responses capabilities.
Darktrace as an AI next generation NDR solution, prevents ,contains and quarantines malicious traffics from and into the corporate network.
One-click upgrades; whether it's hypervisor, firmware, disk or other updates. This feature has drastically decreased complexity and administration time.
Data Locality. Not all hyperconverged technology is created equal. When I first purchased Nutanix they were the only vendor (and as far as I know, still are) that made sure the storage a VM used was on the same host that VM was running on. Given a normal operating state, the [storage] network is literally only used for replication data.
They got rid of traditional RAID. Nutanix uses software to determine where a VM's storage should be written and replicated to. This dramatically decreases I/O when changing the number of nodes in a cluster, be it on purpose or during a failure scenario. Ex. adding a new node: If one uses RAID arrays then enough space has to be set aside to create a new array that includes the new node, then all the information has to be copied over, and the old array destroyed. RAID arrays do not grow and shrink gracefully so Nutanix has designed a better solution.
The Nutanix management interface was built on HTML5. No more flash headaches!
There are few areas that I would say need to be improved; their customer support portal allows you to log tickets with any suggestions or things you feel the product is missing, and they will generally show you how to achieve what you want, or in some cases, introduce it as a feature in a later update.
The one downside I have working with Nutanix is the sales team. They seem to try to add in extra goodies to sales quotes or push for extras that you don't really need and you have to tell them to take them out. Don't be afraid to push back on them.
Need to analyze sizing with sales team to ensure right sizing.
AOS definitely make our dev/test virtual environment management much easier than before. And the consolidation the test/dev environment from Azure and Cisco UCS, we have less need to transfer large amount of data between different hardware platforms which was very big challenge. To expand the capacity is very easy to archive as well.
The Darktrace toolset is very expansive, allowing it to handle many different tasks, but this leads to a user interface that is sometimes not at all intuitive. Icons don't always make sense visually, and the associated tool tips do not always provide enough detail on what action the button performs
It's not out of the box easy, but once you get the fundamentals the steep learning curve flattens out and the processes to get things done and how it works becomes very apparent. It's wrapping the slight change in workflow from prior VM management methods took time to unbox and apply the Nutanix Cloud Infrastructure way
The performance is nothing short of amazing. This is an HCI solution, and as any all-flash HCI solution is amazingly fast, Nutanix AOS fills local IO requests until its local IO is saturated before reaching out over the network. This lowers latency substantially compared to vSAN.
Darktrace support is excellent in my experience. They send a competent engineer on-site to provide on-boarding training. They were also very responsive in responding to questions and concerns. Having an individual point of contact who is a competent network and security engineer is not a common experience, at least for me.
Our implementation team were great and worked with us and got the program up and running very easily. Every time we called post implementation we immediately talked to an Engineer, which is so unusual in dealing with companies. Everything they have promised they have full filled. I think their support is top notch.
IPv6 is needed for link local discovery. We do not have IPv6 configured on our network so the easiest way to get our nodes configured and discovered by foundation was to configure the IPv4 addressing within the node prior to trying to discover with foundation.
We did NOT select Darktrace. OSSIM/AlienVault is a more mature product and it provided better intelligence and reporting. The end user interface is much easier to use - and you can tell built form engineers who have had to do the work. My suggestion for anyone considering Darktrace, is to get the price upfront; do a 30/60 onsite trail; and do the same thing, at the same time, with AlienVault. AlientVault will win every time. I say that because that's exactly what I did.
Nutanix integrates very well with Rubrik for backup and protection of the environment. Nutanix gave us simplicity and scalability compared to VMware and allowed us to extend our infrastructure into the cloud using EC2. One unified management pane for all our workloads, unlike VMWare.
One big positive is how it helps us with the security assessments that clients have done on us. They are looking to see if we know how we might have unusual/malicious traffic running on the network.
If you have a small network and only need 1 appliance, it can be a good ROI and peace of mind.
You could go down a hole in trying to spend time looking at all of your traffic with this software. You need to focus only on what it is showing as potential bad traffic.
We find that return on investment is probably a better metric in most cases.
ROI analysis is more than an exercise. Companies must outline what their future looks like, even if it’s vastly different from what they’re used to and comfortable with.
As good as your financial analysis might be, displacing status quo infrastructure has a lot of emotions tied to it.
