Mandiant Managed Defense - Strong, very Strong
July 22, 2021
Mandiant Managed Defense - Strong, very Strong
Score 10 out of 10
Vetted Review
Verified User
Overall Satisfaction with Mandiant Managed Defense
Mandiant Managed Defense is being used for 24/7 coverage for the CSOC. Managed Defense is also used as an escalation point for high-severity incidents.
- Excellent across all major tenant of incident response (detection, containment, eradication, etc.)
- Has a strong backend support system to perform advanced incident response activities (reverse malware engineering, etc.)
- Very scalable - no matter how small or large the incident, Managed Defense can tackle it, or escalate to Mandiant IR if the incident is complex and/or large enough.
- Very little opportunities for improvement. Perhaps support for more alert types. Currently, not all alerts reviewed by the in-house CSOC team are in-scope for Managed Defense.
Do you think Mandiant Managed Defense delivers good value for the price?
Yes
Are you happy with Mandiant Managed Defense's feature set?
Yes
Did Mandiant Managed Defense live up to sales and marketing promises?
Yes
Did implementation of Mandiant Managed Defense go as expected?
Yes
Would you buy Mandiant Managed Defense again?
Yes
- 24/7 coverage has been huge - that ROI has allowed the company to refrain from additional internal staffing of CSOC resources.
- There is a significant improvement in time to remediate and recover from incidents.
- Managed Defense has the ability to perform threat hunt exercises and perform enterprise-wide forensics beyond the capabilities of in-house CSOC resources.
I have found Managed Defense to be much stronger than previous managed providers I have used in the past. For example, SecureWorks provided a lot of email alerts that were noisy and very low fidelity. When our CSOC team sees an email come in from Managed Defense, they consider it high fidelity and jump on it immediately. There isn't a lot of noise of fluff with Managed Defense.