How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
I am a security consultant. I work for an MSSP, a managed service provider. I go in and evaluate what the deficiencies are. We don't sell any of these services. We're not a manufacturer, we're not a software company. We just help our clients implement the different technologies. If they don't have a SIM, we help them set one up if they need review scanning. We do pen testing, things like that. We originally started with this client as a pen test and then went on to security POS assessments, and from there, started making recommendations and we're going through that list of deficiencies. Secureworks Red Cloak Threat Detection and Response is a SIM. It is monitoring an environment with three different business units. The business use case is that we just want a SIM that is not in-house, it's outsourced to Dell and they manage it for us, and they notify our IT staff as events are identified.
What do you like most about Secureworks Red Cloak Threat Detection and Response?
Thanks for sharing your thoughts with the community!
What is the difference between Incident Detection Response (IDR) e.g. in Rapid7 InsightIDR and Endpoint Detection and Response (EDR) in other solutions?