AWS Marketplace: Red Canary Managed Detection and Response Comments

Sign in

Sign in

or

Create a new account

Categories

What is AWS Marketplace Procurement Governance and Entitlement Cost Management How to Sell AWS Marketplace for Builders

Infrastructure Software Backup & Recovery Data Analytics High Performance Computing Migration Network Infrastructure Operating Systems Security Storage

DevOps Agile Lifecycle Management Application Development Application Servers Application Stacks Continuous Integration and Continuous Delivery Infrastructure as Code Issue & Bug Tracking Monitoring Log Analysis Source Control Testing

Business Applications Blockchain Collaboration & Productivity Contact Center Content Management CRM eCommerce eLearning Human Resources IT Business Management Project Management

Machine Learning Human Review Services ML Solutions Data Labeling Services Computer Vision Natural Language Processing Speech Recognition Text Image Video Audio Structured Intelligent Automation Generative AI

Data Products Financial Services Data Healthcare & Life Sciences Data Media & Entertainment Data Telecommunications Data Gaming Data Automotive Data Manufacturing Data Resources Data Retail, Location & Marketing Data Public Sector Data Environmental Data

IoT Analytics Applications Device Connectivity Device Management Device Security Industrial IoT Smart Home & City

Professional Services Assessments Implementation Managed Services Premium Support Training

Industries Education & Research Financial Services Healthcare & Life Sciences Media & Entertainment Industrial Energy Automotive

Cloud Operations Cloud Governance Cloud Financial Management

Delivery Methods Amazon Machine Image Amazon SageMaker AWS Data Exchange CloudFormation Stack Container Image Helm Chart Add-on for Amazon EKS Professional Services SaaS

Solutions AWS Well-Architected Business Applications CloudOps Data & Analytics Data Products DevOps Generative AI Infrastructure Software Internet of Things Machine Learning Migration Security

Industry ??industrySolutions.dropdown.advertising_and_marketing_en??Energy ??industrySolutions.dropdown.engineering_construction_and_real_estate_en??Financial Services Healthcare & Life Industrial ??industrySolutions.dropdown.life_sciences_en??Media & Entertainment Nonprofit ??industrySolutions.dropdown.power_and_utility_en??Public Health Public Sector ??industrySolutions.dropdown.retail_en????industrySolutions.dropdown.sustainability_en??Telecommunications

AWS Service Integrations AWS Control Tower AWS PrivateLink Pre-trained Amazon SageMaker Models

Resources Analyst Reports AWS Builder Resources Blogs Customer Success Stories Events Implementation Guides Videos Webinars Whitepapers

Your Saved List

Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help

Catalina's Red Canary Review

By Etienne B.
on 05/31/2024

What do you like best about the product?

Catalina is a small to medium size company which some MSSP may put less priority when it comes to coverage however throughout the many years with Red Canary and working with their team, never once have I felt as if we weren't a priority client to them.

From their customer support, incident response, threat investigation and continous hands-on helping deploy and technology and secure our environment, Red Canary always provide timely and extremely effective services!

Also the Threat Investigation integration abilities to add all of our security sources to a single centralized review area has definitly made my and our analysts life easier! (with continous new source options rolling out)

What do you dislike about the product?

I wouldn't go so far as say "dislike", but rather a weakness that has seen continous improvement throught the years is the Red Canary portal. As they need to have it operational for all their customers and not specific for everyone, there can be some limitations or hard time placing feature requests if not enough clients also make the ask. Filtering can be very case sensitive, tagging had some improvements done and myself had some redirect issues something when accessing the home page itself.

But overall comparing starting day to where it is now, it's definitly in a much more comfortable position with great reports readily available, more easily navigable and quick automation rules that can be placed.

What problems is the product solving and how is that benefiting you?

Red Canary monitores and provides access to our EDR agents and other Security sources under a unified protal which we have been using as evidence for SOC2 controls as well as all incidents triaging. The Threat Investigation concern gives us almost a "mini-SIEM" option that, while transitioning from actual SIEM solutions, we knew we still had a data point collecting our firewall, EDR, Azure and other alert sources (while it's not at the logs level of a SIEM, we never felt as if we had a full blind spot).

Leave a Comment

There are no comments to display