Google Threat Intelligence (Mandiant) Reviews and Ratings

Rating: 8.8 out of 10

Score

8.8 out of 10

Reviews

18 Reviews

Mandiant TI: To keep your organization's Security Posture rock solid!

Rating: 8 out of 10

Incentivized

October 24, 2023

Use Cases and Deployment Scope

Threat Intel is the core of any SOC to function properly. Our analysts have been using Mandiant TI by various means.

The feeds are integrated to the SIEM and reference sets have been built around it. Additionally it's SaaS based portal is being used for IOC lookups, advisories and latest on-going threats.

Pros

Accuracy of the IOCs
UI for the SaaS based portal is quite friendly
API integration is quite easy

Cons

Tweaking the feeds as per threat profiling
Number of advisories being pushed
Brand List and Watch List Addition

Likelihood to Recommend

Usually SOC leverages Intel from mutiple sources. The scenarios are:

1.Suitable: In large scale SOC where more than 5000 devices are being monitored and the tech stack is wide, Mandiant will play an excellent role in that scenario.

2.Not Suitable: In small scale SOCs wherein limited devices belonging to the same tech stack is being used then the analysts can rely on OSINT and it is not useful to buy the solution.

Verified User

Analyst in Information Technology (5001-10,000 employees)

Vetted Review

2 years of experience

A complete package / suite of tools to keep you secure on prem and online.

Rating: 8 out of 10

Incentivized

October 24, 2023

Use Cases and Deployment Scope

The deployment has been part of our managing service; this is part of the infrastructure service provided overall. It is used to monitor the behaviors of systems within the organization. The service allows us to spend time understanding various situations, occurrences, and patterns of threats and actors.

Pros

Understanding a particular vulnerability within the software vendors we work with.
Understanding the threat pattern and occurrences.
Understanding bad actor behaviors and expert information from the service itself.

Cons

Most cases are usually up to date, but there have been instances where we had to provide additional information or proactive findings.
The support responses to noncritical cases are a bit slow.

Likelihood to Recommend

The tool is easy to integrate into our current service; the enterprise version has connectivity with multiple APIs and is easy to connect to our other security suite and monitoring tools. The ease of management with the web-based console makes it simpler for the engineers working on the tool.

Anirudh Srinivas

Global Enterprise Architect in Information Technology at Kyndryl (10,001+ employees)

Vetted Review

3 years of experience

View profile

Intelligence Security! Believe in Safety!

Rating: 9 out of 10

Incentivized

October 23, 2023

Use Cases and Deployment Scope

In the new trend of working from remote locations, the majority of folks have opted to work from home. With the facilities of having the machines and system presented at their home, the security and vulnerabilities have also increased along with the threats. The Mandiant Threat Intelligence is a very powerful and comprehensive SaaS platform that provides security-relevant cyber threat intelligence in order to focus more on security and provide a protected environment to work.

Pros

accelerated threat response feature, prioritizing threats according to requirement.
Optimization of the threat intelligence , and can be integrated with 3rd party tools.
Features like - Breach ,Adversary, Machine and Operational Intelligence.
Mandiant dynamic host and the malware views along with indicators.

Cons

A bit hectic and Complexity can be observed in architecture and while implementing.
Processor Intensive, as it puts strain on CPU sometime when a scan is running.
Support system could be improved after moving towards a portal system.

Likelihood to Recommend

The feature that could be appreciated is that when Threats are trying to attack infrastructure, the Threat intelligence alerts in advance, giving plenty of time to prepare and providing detailed information about the attacks and tactics. The responses to these threats are Accelerated with an informed cyber defense strategy. Mandiants data intelligence gathering enables them to obtain threat details ahead of others.

Verified User

Engineer in Corporate (10,001+ employees)

Vetted Review

1 year of experience

A great tool for overall threat management

Rating: 8 out of 10

Incentivized

October 10, 2023

Use Cases and Deployment Scope

The main thing I experienced for Mandiant Advantage Threat Intelligence is incident response workflows which help in deeply understanding and narrowing the root cause of the threats in minimum time and the identified vulnerabilities can be profiled and acted upon. The information received from the data sources provided by MATI assists in fixing and responding to issues.

Pros

Deep data sources
Integration API
Ease of usage and analysis

Cons

Mainly understanding the full features available to completely use the platform
More dynamic approach to cloud capabilities
Pricing may be and as there are other products which comes integrated with cloud platforms for threat management

Likelihood to Recommend

It is definitely for teams looking to manage the overall threat lifecycle under one platform with great insight feeds backed by data and analytics, also the integration with different services is also great. On the other side, I think if MATI should for more on building their own data sources which will make it more reliable.

Verified User

Employee in Professional Services (10,001+ employees)

Vetted Review

1 year of experience

Mandiant Threat Intelligence

Rating: 8 out of 10

Incentivized

October 10, 2023

Use Cases and Deployment Scope

It gives high visibility of threats. We are using it in our organization mostly for incident response and its analysis. We also use it as a sandboxing. We also use same device for vulnerability detection and its remediation. It has high visibility of all ongoing threats that are currently active

Pros

Threat Detection
Vulnerability Remediation
Sandboxing

Cons

Require more options for view on device dashboard
Require quick support in analysis
Threat campaign feature visibility

Likelihood to Recommend

This device is well suited for threat analysis in our organization. It has very high visibility of all threats going on currently across the world from most of the countries. It has very excellent graphical view for more detailed analysis for our environment. We used in our organization for vulnerability analysis

Sunil Redekar

Network Security Engineer in Information Technology at Hitachi Systems Micro Clinic (5001-10,000 employees)

Vetted Review

1 year of experience

View profile

Proactively know your exposure and threats

Rating: 10 out of 10

Incentivized

October 10, 2023

Use Cases and Deployment Scope

<div>We are using Mandiant Advantage Threat Intelligence a few time ago, but it's very usefull, because it provides live information about in progress attacks. You'll get informed about tactics, techniques and procedures used by cybercriminals to attack companies.</div><div>With the provided info you can anticipate and take measures to go ahead of an cyberattack.

</div>

Pros

Threat information
recommended steps to protect Organization
Visibility

Cons

No improvement areas found at the moment. It's OK for us right now

Likelihood to Recommend

Mandiant Advantage Threat Intelligence is SaaS based, it helps us to stay ahead of cybercriminals, becasuse it provides tactics, techniques and procedures currently used on companies like us. It's the difference between being proactive or reactive and understand your exposure and threat landscape.

Verified User

Manager in Information Technology (201-500 employees)

Vetted Review

Mandiant Advantage Threat Intelligence is easy to use.

Rating: 9 out of 10

Incentivized

April 28, 2023

Use Cases and Deployment Scope

I use Mandiant Advantage Threat Intelligence for threat management.

Pros

Vulnerability management
Integration
API

Cons

Risk scores

Likelihood to Recommend

I give Mandiant Advantage Threat Intelligence a nine and it is well suited for most of the non-zero threats I deal with.

Verified User

Director in Information Technology (51-200 employees)

Vetted Review

4 years of experience

Mandiant Advantage Threat Intelligence Review

Rating: 8 out of 10

Incentivized

April 26, 2023

Use Cases and Deployment Scope

I use Mandiant Advantage Threat Intelligence in my company to monitor the current state of cybersecurity in the industry.

Pros

Information about the current threat landscape.

Likelihood to Recommend

I give Mandiant Advantage Threat Intelligence an eight and recommend them to anyone looking to monitor details about threat actors.

Craig Rosenberg

Senior Security Engineer in Information Technology at NCRIC (51-200 employees)

Vetted Review

5 years of experience

Mandiant Advantage Threat Intelligence is just that good.

Rating: 10 out of 10

Incentivized

April 26, 2023

Use Cases and Deployment Scope

Mandiant Advantage Threat Intelligence is an amazing platform that is easy to use and helpful for managing cyber security problems. It solves multiple business problems for me including dynamically securing Google Cloud Platform and threat intelligence management. I also like the incident response services Mandiant offers.

Pros

Threat problem solutions
Secure cloud services
Providing incident responses
Providing protection from threats
Easy to use

Likelihood to Recommend

I would recommend Mandiant Advantage Threat Intelligence if asked by a colleague and score it a 10 out of 10. In my experience, it is easy to handle and I can get support any time through their customer support team. There have been many times when my company has had to deal with an attack from a virus and was protected by Mandiant. Overall, this is a good software and I am happy I use it.

Rajbhushan Sharma

IT Department in Human Resources at It Trailblazers (501-1000 employees)

Vetted Review

1 year of experience

Gain the Mandiant Advantage!

Rating: 10 out of 10

Incentivized

January 20, 2023

Use Cases and Deployment Scope

We use Mandiant Advantage to stay up to date on the most relevant cyber threats to our industry and company. The platform provides a plethora of collections to utilize as inputs to meeting our stakeholders' prioritized intelligence requirements and is a great starting point for any analyst to understand the current landscape of cyber threats.

Pros

The organization of finished Threat Intelligence reports is a huge plus. Mandiant Advantage has broken up their delivery of Intel in a way that makes it seamless to access the things analysts are interested in. Whether it is a particular adversary, vulnerability or malware family, executing searches on any of the categories provided is intuitive and provides a great deal of info in the search results.
Transparency in Intel sources, risk scoring and assessments is something Mandiant Advantage does very well. When Mandiant is not the source of the investigations or has not reached a definitive conclusion from their research, they are transparent in these gaps and they avoid biases at all costs in their reporting.
Mandiant Advantage does a great job with flexibility in delivery of Threat Intelligence that makes sense to your company and the things you care about. Through dashboard customizations, it makes displaying the high priority Intelligence an easy task.

Cons

The Digital Threat Monitoring (DTM) module within Mandiant Advantage has been a value add for our company and has gone through a complete overhaul in usability that has greatly improved the functionality. That said, this is an area that should not be viewed as complete as there are always ways to improve upon these types of alerting queues to continue staying competitive in the market.
The user access provisioning within the platform itself has room for improvement, but this is not a show stopper by any means.

Likelihood to Recommend

The Mandiant Advantage platform is continually discussed as a market leader in threat intelligence delivery for a reason. The intuitive user experience makes it seamless to get to the topics that are of highest priority to your company and its stakeholders. Additionally, the reporting is unbiased and transparent and is backed by a large footprint of endpoint / network telemetry and real incident response data. This helps keep customers on the forefront of the ever-evolving state of cyber threats and applicable defense mechanisms.

Verified User

Team Lead in Information Technology (10,001+ employees)

Vetted Review

3 years of experience

Loading Reviews List....

Gain the Mandiant Advantage!

Rating: 10 out of 10

Incentivized

January 20, 2023

Use Cases and Deployment Scope

Pros

The organization of finished Threat Intelligence reports is a huge plus. Mandiant Advantage has broken up their delivery of Intel in a way that makes it seamless to access the things analysts are interested in. Whether it is a particular adversary, vulnerability or malware family, executing searches on any of the categories provided is intuitive and provides a great deal of info in the search results.
Transparency in Intel sources, risk scoring and assessments is something Mandiant Advantage does very well. When Mandiant is not the source of the investigations or has not reached a definitive conclusion from their research, they are transparent in these gaps and they avoid biases at all costs in their reporting.
Mandiant Advantage does a great job with flexibility in delivery of Threat Intelligence that makes sense to your company and the things you care about. Through dashboard customizations, it makes displaying the high priority Intelligence an easy task.

Cons

The Digital Threat Monitoring (DTM) module within Mandiant Advantage has been a value add for our company and has gone through a complete overhaul in usability that has greatly improved the functionality. That said, this is an area that should not be viewed as complete as there are always ways to improve upon these types of alerting queues to continue staying competitive in the market.
The user access provisioning within the platform itself has room for improvement, but this is not a show stopper by any means.

Likelihood to Recommend

Verified User

Team Lead in Information Technology (10,001+ employees)

Vetted Review

3 years of experience