Skip to main content
TrustRadius
NetWitness Incident Response and Cyber Defense Services

NetWitness Incident Response and Cyber Defense Services

Overview

What is NetWitness Incident Response and Cyber Defense Services?

The Incident Response and Cyber Defense Practice, from RSA company NetWitness, can help ensure organizational readiness to identify cyber threats fast and to defend against them on an ongoing basis. Their team enables organizations to reduce business risk and improve…

Read more

Learn from top reviewers

Return to navigation

Service Offering Details

What is NetWitness Incident Response and Cyber Defense Services?

Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(3)

Reviews

(1-2 of 2)
Companies can't remove reviews or game the system. Here's why

NetWitness Incident Response & Cyber Defense Services- Best SOC Solution for all Industries

Rating: 8 out of 10
January 10, 2022
BC
Vetted Review
Verified User
  • Comprehensive security services to improve threat detection & response.
  • Holistic Security program for targeted attack defense -across three interrelated areas of expertise people(including organization model), process & technology -with particular emphasis on threat detection& response.
  • Assess organization security gap & provide a detailed improvement plan that is specific for the organization.
If an organization has all the best breed cyber security tools are in place & want to know the holistic security posture of the organization, they need to best security program or SOC than RSA NetWitness Incident Response and Cyber defense Services is the best solution. The bottom line is not only buying the best solution but it is also about establishing an effective security program that brings together security expertise, process, and technology to improve an organization's ability to prevent detect and respond to attacks.
NetWitness Incident Response is Very well define KPIs & also easily integrate with solutions like NGFW & Web proxy ,EDR & DLP ..etc.. Reporting part is in-line with each compliance being used in different industries.

Incident Response by RSA

Rating: 10 out of 10
January 05, 2022
Verified User
Vetted Review
Verified User
  • Able to investigate threats faster.
  • Faster and more advanced treat detection.
  • Analytics.
The response speed of GUI for our security folks and threat hunting purpose was the most important portion to recommend if required. Fetching old data for any purposes including audit, takes just seconds, which is awesome. The investigation tab shows all available meta keys in the logs as well, which makes it easier to notice any suspicious artifacts.
ES offers the single pane of glass for investigation and monitoring needs, however, to get everything onboarded can be daunting. The identiy and assets enrichment was not as straightforward and required a lot of manual work to make them work. For it to be optimized for full benefit, there is a layer of complexity that needs to be managed along the journey post deployment as well.
Return to navigation