We changed our name from IT Central Station: Here's why
2018-10-02T19:04:00Z

What is your primary use case for Carbon Black CB Defense?


How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

ITCS user
Guest
2121 Answers

author avatar
Top 5LeaderboardReseller

We primarily leverage the product for its security functionality.

2021-12-09T09:21:48Z
author avatar
Top 20Real User

We primarily use the solution for operations and also security. On the security front, we have a specific project that's ongoing right now. We are moving away from the on-prem Carbon Black to the cloud one. We primarily use the solution for endpoint protection.

2021-08-20T00:27:01Z
author avatar
Real User

The solution is deployed in our computers in the company. However, I can't speak to the use cases, as I'm still quite new to the company. After we apply some policies we will receive, for example, alerts. We'll look at the devices that have given us alerts and we'll look to see if there is an issue. Then we can prioritize the issues into high and low categories. We try to know what is a malicious file or malicious application and we can investigate what's happening according to the alerts in Carbon Black. Many times we've found that our policies avoid false positives. That said, sometimes, we have false positives and we get many alerts. We're working with this in Carbon Black. Carbon black is basically blocking my application. I cannot open files and I cannot install software without it passing the policies. Not just any application can be installed on our computers. They need to be pre-approved. If we need to, however, we can manually bypass to finish an installation.

2021-06-29T12:53:03Z
author avatar
Top 20Reseller

Some of my client's use cases are typical endpoint protection, telemetry, and threat hunting. We are using all three of the most popular services that point back to the cloud central console.

2021-05-12T07:27:47Z
author avatar
Top 5LeaderboardReal User

We use Carbon Black agents that are monitored by the Forescout Extended Module for CB. It will check that CB Agents are deployed and are in running state to secure containers across vmware environment. The dashboard shows the security analyst who looks at the reports of the threats around policies monitoring Carbon Black agents. The discovery happens in Carbon Black, and as part of the discovery, it will monitor multiple Carbon Black agents. Deployment is on hybrid cloud VM cloud on AWS.

2021-02-24T23:26:00Z
author avatar
Real User

Basically we use the solution for protecting and detecting misuse of end-users while using their end-points to access the internet, especially for browsing websites, or suspicious activity as far as misusing their web browser. It protects them from web-based attacks such as DDos (Denial of Service) or ransomware.

2021-01-16T05:10:33Z
author avatar
Top 5LeaderboardReal User

We used it for EDR, as well as endpoint protection, the whitelisting feature.

2021-01-11T19:44:34Z
author avatar
Real User

We manage service providers. We provide this solution to other clients and companies that need it, and we are using the latest version.

2020-11-20T07:47:34Z
author avatar
Real User

We primarily use the solution as endpoint security.

2020-11-11T15:30:03Z
author avatar
Real User

We are an MSP, and we deployed this solution for a banking client. We use it to help us defend against advanced persistent threats.

2020-11-11T08:48:45Z
author avatar
Top 5Real User

We are a distributor for Carbon Black and CB Defense is one of the products that we work with and demo for our customers.

2020-11-05T01:08:01Z
author avatar
Top 20Consultant

We are using the Carbon Black CB Defense for endpoint security.

2020-10-11T08:58:21Z
author avatar
Real User

The primary use case is for stopping spyware, malware, and viruses in their tracks. It's very good at doing that. It has intelligent learning behind it and we have been very successful in preventing attacks.

2020-10-01T09:57:00Z
author avatar
User

A few agents want to develop our own cloud and looking at protection technology

2020-06-14T06:20:11Z
author avatar
Top 5LeaderboardReseller

We are a distributor of Carbon Black in Asia. Generally our customers are looking for endpoint features such as EDR (endpoint detection and response). Their existing solutions are usually from another vendor that has provided a normal antivirus solution. They are looking for endpoint protection and detection and response.

2020-04-23T10:13:00Z
author avatar
Top 20Real User

We started using it to protect our environment from ransomware specifically.

2020-04-06T08:22:00Z
author avatar
Real User

We use this solution for endpoint security and protection.

2019-10-30T14:12:00Z
author avatar
Consultant

We are a partner in the managed security service provider (MSSP) space. We service hundreds of customers globally. We implement these solutions on behalf of our customers. With Carbon Black, we've been using them for about six years. We're an MSSP and channel partner with them, as well as an incident response partner. We were like the second incident response company registered with them (through that program) to start using the cb Defense platform. We also integrate it with SIEM. However, we're using it in a managed service capacity. We usually implement it, then manage the platform for our clients long-term. It's used for traditional antivirus, real-time threat protection and prevention, and it also provides us with the ability to do more in-depth investigations into endpoints. With the product, we can do a bit of threat hunting along with managed detection and response. The platform works quite well using it in this capacity. With Symantec, we have been using it for about six years. We integrate it with our SIEM products. We have a lot of customers who actually run it, so we see it quite often. We collect a lot of data from Symantec and help with responding to anything that Symantec finds. We've had a chance to use the product quite a lot.

2019-04-17T08:37:00Z
author avatar
Real User

We use this solution as an endpoint solution for protection.

2018-10-28T09:33:00Z
author avatar
Consultant

It was basically for an EDR solution. We were apparently in the migration phase, to be frank. We were using McAfee VSE, and we wanted a media solution which would give us more insight in terms of the events that are happening with respect to Malware threats. So that's the reason why we went for the Carbon Black Defense.

2018-10-08T17:34:00Z
author avatar
Real User

We use it for endpoint visibility and endpoint detection and response. It is our central mechanism for the cyber defense or endpoint detection, response and visibility.

2018-10-02T19:04:00Z
Learn what your peers think about Carbon Black CB Defense. Get advice and tips from experienced pros sharing their opinions. Updated: January 2022.
563,780 professionals have used our research since 2012.