Skip to main content
TrustRadius
NetWitness Incident Response and Cyber Defense Services

NetWitness Incident Response and Cyber Defense Services

Overview

What is NetWitness Incident Response and Cyber Defense Services?

The Incident Response and Cyber Defense Practice, from RSA company NetWitness, can help ensure organizational readiness to identify cyber threats fast and to defend against them on an ongoing basis. Their team enables organizations to reduce business risk and improve…

Read more
Recent Reviews
Return to navigation

Service Offering Details

What is NetWitness Incident Response and Cyber Defense Services?

Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(3)

Attribute Ratings

Reviews

(1-2 of 2)
Companies can't remove reviews or game the system. Here's why
January 10, 2022

NetWitness Incident Response & Cyber Defense Services- Best SOC Solution for all Industries

Bhuwan Chandra | TrustRadius Reviewer
Bhuwan Chandra
Business Development Manager
ConnectUp IT Solutions (Computer & Network Security, 11-50 employees)
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Pros and Cons
  • Comprehensive security services to improve threat detection & response.
  • Holistic Security program for targeted attack defense -across three interrelated areas of expertise people(including organization model), process & technology -with particular emphasis on threat detection& response.
  • Assess organization security gap & provide a detailed improvement plan that is specific for the organization.
  • NetWitness Incident Response and Cyber Defense Services SIEM managed services which we call managed SOC requires multiple resources with expertise in different domains like Threat forensics & Logs Analytics ..etc. Sometimes it gets tough to get the right resources.
  • Difficulty in navigating & configuring, which is necessary for any solution to get the best result & reporting part.
  • Commercial of solution in comparison to competitors is at the higher end.
Likelihood to Recommend
If an organization has all the best breed cyber security tools are in place & want to know the holistic security posture of the organization, they need to best security program or SOC than RSA NetWitness Incident Response and Cyber defense Services is the best solution. The bottom line is not only buying the best solution but it is also about establishing an effective security program that brings together security expertise, process, and technology to improve an organization's ability to prevent detect and respond to attacks.
Alternatives Considered
NetWitness Incident Response is Very well define KPIs & also easily integrate with solutions like NGFW & Web proxy ,EDR & DLP ..etc.. Reporting part is in-line with each compliance being used in different industries.
January 05, 2022

Incident Response by RSA

Verified User
Team Lead in Sales
Information Technology and Services Company, 10,001+ employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Pros and Cons
  • Able to investigate threats faster.
  • Faster and more advanced treat detection.
  • Analytics.
  • Documentation.
  • Parsing of logs.
  • User interface.
Likelihood to Recommend
The response speed of GUI for our security folks and threat hunting purpose was the most important portion to recommend if required. Fetching old data for any purposes including audit, takes just seconds, which is awesome. The investigation tab shows all available meta keys in the logs as well, which makes it easier to notice any suspicious artifacts.
Alternatives Considered
ES offers the single pane of glass for investigation and monitoring needs, however, to get everything onboarded can be daunting. The identiy and assets enrichment was not as straightforward and required a lot of manual work to make them work. For it to be optimized for full benefit, there is a layer of complexity that needs to be managed along the journey post deployment as well.
Return to navigation