Name: Network Intrusion Detection for Containers
Uploaded: 2020-10-21T23:01:46.000Z
Duration: 3 min 8 s
Description: Network Intrusion Detection for Containers

Help Desk

Web and Video Conferencing

Customer Support

Mind Mapping

Mobile App Development

Push Notifications

Development

Audit

Business Intelligence (BI)

Calibration Management

Collaboration

Embedded Business Intelligence (BI)

Org Chart

Procurement

Enterprise

Accounting

Finance and Accounting

Applicant Tracking

Corporate Learning Management

Credentialing

HR Management

Payroll

Professional Employer Organizations (PEO)

Talent Intelligence

Talent Management

Workforce Analytics

Workforce Management

Human Resources

C/C++ Integrated Development Environments

Cloud Storage

Compliance Consulting

Cybersecurity Consulting

Data Virtualization

Dynamic Application Security Testing (DAST)

Electronic Data Interchange (EDI)

Fraud Detection

HTML Editors

IT Service Management (ITSM)

Identity Management

Infrastructure-as-Code (IaC)

Integration Platform as a Service (iPaaS)

Managed Print

Network Performance Monitoring

Password Management System

Relational Databases

Remote Monitoring and Management

Software Defined Networking (SDN)

Traffic Switching

Virtual Private Network (VPN)

Virtualization Management

Voice Recognition

Information Technology

A/B Testing

Ad Serving & Retargeting

All-in-One Marketing

Consumer Ratings & Reviews

Content Management

Email Marketing

Heatmap and Session Recording

Landing Page

Marketing Automation

Marketing Resource Management

Mobile Marketing

Presentation

Social Login

Social Media Management

Survey & Forms Building

Video Streaming

Web Analytics

Marketing

Project Management

Professional Services

Customer Relationship Management (CRM)

Sales

Antivirus

User and Entity Behavior Analytics (UEBA)

Security

Auto Repair

Equation Editors

Insurance Agency Management

Legal Research

Library Management

OSS/BSS (Operations Support/Business Support)

Real Estate Property Management

Vertical-Specific

Find top rated software and services based on in-depth reviews from verified users. 400+ software categories including PaaS, NoSQL, BI, HR, and more.

Microsoft Sentinel

Microsoft

CrowdStrike Falcon

CrowdStrike

Splunk Enterprise

Splunk

IBM Security QRadar SIEM

Datadog

Microsoft Defender for Endpoint

SentinelOne Singularity

SentinelOne

Tenable Nessus

Tenable

LogicMonitor

Alert Logic delivers managed detection and response (MDR) with comprehensive coverage for public clouds, SaaS, on-premises, and hybrid environments. Alert Logic is a HelpSystems brand since the 2022 acquisition announced in March.

ThreatDown replaces the former Malwarebytes for Business product suite, combining Malwarebytes' endpoint security capabilities in four bundles. The basic Core tier includes incident response, Next-gen AV, device control, vulnerability assessments, and the ability to block unwanted application. Higher tiers include EDR and MDR services, managed threat hunting, patch management, website content filtering.

Core

Advanced

Elite

Ultimate

ThreatDown, powered by Malwarebytes

Alert Logic Managed Detection and Response

Managed Detection and Response (MDR)

Likelihood to Recommend

Fortra is a leading provider of systems and network management, business intelligence, and security and compliance solutions. Our software reduces data center costs by improving operational control and delivery of IT services. Founded in 1982, we have offices worldwide and more than 8,700 customers from small businesses to Fortune 100 companies. Based in Minneapolis, Minnesota, our mission is to be an expert provider of data center software that solves real business problems. We take pride in offering the best service in the industry. Our calls are answered the old fashioned way—by a live person. We do not use interactive voice response. And our support teams provide award-winning, knowledgeable, and friendly service.

Fortra

Network Intrusion Detection for Containers

In this 3-minute demo video, you’ll learn how Alert Logic detects and visualizes container threats in real-time. See how easy it is to monitor traffic between containers as well as traffic to and from the base host. Finally, examine the associated metadata to learn even more about the incident, and explore remediation recommendations.

DevOps Engineer

Alert Logic Network Threat Detection 2019-03-04 16:20:15

Cisco IPS Sensor (Discontinued)

Snort

Cisco Secure Web Appliance

Sr. Network Engineer - Contract Work

Alert Logic Network Threat Detection 2019-01-22 09:54:05

IT Director

Barkly 2018-02-27 08:04:58

Alert Logic Cloud Insight 2018-03-28 15:43:38

IT Security Infrastructure Coordinator

Alert Logic Web Security Manager 2017-01-17 10:39:07

TrustRadius is a technology and business research firm based in Austin, Texas. The company is known as a review platform for verified B2B technology and software reviews through a proprietary algorithm and human verification.

TrustRadius

Good features

End users

Specific need

Little lacking

Professional services

Not supported

Change management

Incredible amount

Windows update

Security team

False positives

Pre sales

Managed service

Overly complex

Simple and easy

Account management

Cost benefit

Easy to use

Top tier

Security risks

Home

Managed Detection and Response (MDR) Services

Alert Logic

This is the IDS solution for our SaaS platform. Everything that's connected to our application in any way is being monitored by Alert Logic to identify rogue actors or other ill behavior on the network.

Customer Service. Usually, I'd put the technical details up front, and they're good with that too. But the service from pre-sales all the way through onboarding and continued account management is top tier. Our onboarding schedule got messed up, partly because of us, but that was rather minor. I always get prompt replies to any tickets, and they've even reached out to discuss my feature requests. When it comes to security, it's critical to have a responsive team, and they've got it.
Detection seems good. It's hard to quantify exactly, but it seems that they always detect the bad actors. And when we get an alert, they include a bunch of details so we know what kind of scan they're trying to do, how far they got, etc. You can't prevent everyone from doing a scan on your IP, but it gives you a really good idea of where your soft spots might be. And if you're getting those low-level alerts, it's a reminder that it's there and working if you have a major event too.
Very easy setup. This goes back to their customer support to some extent, as they walk you through all the steps required. But it's also about their technical solution, it's not so overly complex that it's fragile, nor does it take a great deal of time to deploy. And it's been zero effort to maintain since then.

Diffie-Hellman cipher is not supported. This is the way of the future, and I'd prefer to ONLY use DH or EDH. But I understand the complication of PFS, and hopefully, they're working on supporting this in the future.
Price. You can't get all this good stuff for free. But we've tried the "budget solution" before, and it either just doesn't work well, or requires an incredible amount of administration. If you have a large security team, you might be better off with a cheaper option. For us, we're paying more for a product and saving a bit on in house labor.
Hard to think of any other cons! There were some UI issues at first, but I know they've added some good features, and more were in development last we spoke. Some of their reporting could be improved a bit, but that's getting pretty picky. Unless you have a really specific need, these things won't be any more than a minor nuisance.

It's hard to put a price on security. But rather than dollars directly, I believe it has helped our business reputation, first that having an IDS solution in place helps put customers at ease, but also by maintaining that reputation by blocking damaging activity.
Their team has also been good support and saved us from having to invest in specific skills in house. We pay more for the solution so it's probably not a huge cost savings, but a big savings in the headache of finding staff, managing staff turnover, etc.

Previously we used Logrhythm to collect syslogs on an on primus server. Logrhythm is/was very convoluted and almost required a dedicated person to manage the system. Alert Logic is a cloud managed service that removed the need for an on primus dedicated person to constantly review logs and determine if there was an issue. The main users of this is our security team.

The cloud managed service; the cost benefit and 24x7 monitoring
The Alert system went from possibly 24 hours to 1 hour
The benefit of nothing having to write our own queries

The interface is a little lacking from a search perspective but its not really meant for us to have to do the work

The cloud service vs have an on prim dedicated person
24x7 monitoring
The detailed threat analysis

Cisco IPS Sensor and Cisco Sourcefire SNORT

Cisco IPS Sensor, Cisco Sourcefire SNORT, Cisco IronPort Web Security Appliance

Barkly is our primary end-user and server anti-virus program. We use this company-wide, for all end-users. This helps our end users protect against virus, malware and the like and it also alerts me to any issues that may arise on my network.

Stops programs from making changes to users' system - this can be hit or miss, but I'd rather have a false positive and have to override it, then a virus on my systems.
The override system for false positives is very simple and easy to use - if a program throws up a flag, it is very easy to tell Barkly to leave it alone and it will do this network-wide, which is nice for things like updates.
Very lightweight, small install and leaves almost no footprint on your system. Also system resource utilization is very light.

There is no visible icon that it is installed unless you go into Add/Remove programs, locally you would not know its there.
If an update is installed (i.e. Windows Update) and Barkly flags it, you will get SPAMMed with alerts until it is overridden. An easy fix but can be annoying if you are on your way in and not at the office yet.
Reporting is a bit lit in the Admin console - installs, and updates, but not much else.
Getting better, but when they update their product, there wasn't much warning originally. A bit unsettling when you log into your console and see every one of your end users out-of-date.

Decently priced for AVs
Has protected against several viruses, and that right there is enough to warrant purchase, any virus stopped is money saved
Low impact on users, so they aren't complaining of slowness on their computers when scanning (it does not scan traditionally)

Trend Micro and Sophos Endpoint Protection

Alert Logic Cloud Insight is a different type of security program, unlike others. I was using this software for my AWS environment for myself, and then my organization wanted to use this software after my recommendation. Now my company is using this software.Thanks to this software you can gain deep insight into your AWS environment with the ability to monitoring of environments changes with its intelligence. It has many features that you can do whatever you want like changing policy, allowing third-party sign in etc.This program is right now providing us 24/7 security especially from many hack-attacks.

It has a really intelligent system that it can realize any illegal activities from the outside.
It can be designed by you. Whatever you want, you can do or change anything that you made before.
High security 24/7. Just feeling safe.

I would like to see voice assistance when I am creating new things for my environment
When you are creating an external ID, it has some delay at times.
I think the price is too expensive. I would like to have a decreased price.

It is pretty complicated to understand for beginner levels when you start to use it.
The product is really secure and reliable for any organization.
Best side of this software is that it is not like other security programs. Unlike them, this software is stronger and has 24/7 security.

Dropbox Business, QuickBooks Enterprise Solutions, Salesforce Analytics Cloud, Wrike, Toggl, TimeCamp

It is being used to manage websites hosted internally and to manage those sites on a day to day basis. The web security manager includes the ability to check the status of sites, conduct log review and analysis as well as protection of sites from web-born attacks (SQL injection, cross-site scripting and redirect attacks etc.

Web-based attack protection
Site monitoring
Notification and alerting from the vendor

Initial professional services engagement for setup/implementation
Vendor change management without notification

Filled a critical business need to protect home grown websites.
Integrated well with SIEM.

Fidelis XPS Advanced Threat Defense Solution, Palo Alto Networks PA-5000 Series, Cisco ASA

Alert Logic

Overview

What is Alert Logic?