Lacework is a cloud security platform whose Polygraph Data Platform automates cloud security at scale so customers can innovate with speed and safety. Lacework is the only security platform that can collect, analyze, and accurately correlate data across an organization’s AWS, Azure, GCP, and Kubernetes environments, and narrow it down to the handful of security events that matter. As a breach detection and investigation tool, Lacework provides information on when and how a breach happened, including the users, machines, and applications involved in the breach. By using machine learning and behavioral analytics, the solution can automatically learn what's normal for your environment and reveal any abnormal behavior. In addition, Lacework gives you continuous visibility to find vulnerabilities, misconfigurations, and malicious activity across your cloud environment.
Lacework's most valuable features include identifying vulnerabilities and anomalous activities, continuously monitoring configurations, providing compliance reports, and distilling security and audit logs. It offers insights into an organization's security posture and helps users see their environment from an attacker's perspective. The tool prioritizes alerts based on severity and provides context to understand the likelihood of an adversary exploiting vulnerabilities. Users appreciate the ease of use and machine learning anomaly detection.
Users have expressed that Lacework could improve in various areas, including making the platform more intuitive and user-friendly, reducing the number of alerts and improving the speed of scanning, communicating changes to customers more effectively, enabling sorting and filtering of alerts and policies, obtaining a FedRAMP moderate authorization, adding remediation features and improving integration with other systems. Additionally, users have suggested that Lacework could benefit from better visibility, compliance-related metrics, and IAM security control, as well as data governance and detection capabilities.
Some users have found that Lacework has not provided a clear ROI, while others have seen significant benefits.
Lacework's pricing has seen improvement and they have an interesting licensing structure where a "resource" is defined as 200 resources per "Lacework unit." The initial lack of clarity on what a "resource" was led to feedback and improvement. Lacework has been flexible with early adopters and customers and tries to balance out numbers for those with a lot of ephemeral resources. The price is rated as seven out of ten for affordability and the licensing fee is a one-time fee with no additional charges, though discounts may be available.
Lacework is primarily used for cloud security monitoring, compliance, vulnerability management, anomaly detection, and ingesting logs from multiple cloud providers. It is used by organizations to ensure security posture in their cloud infrastructure and to detect and respond to security threats. One of its main features includes generating reports to determine if a company is in compliance with AWS regulations. It is also used to protect cloud environments, particularly Kubernetes, and to offer container environment's detecting capabilities.
Lacework's customer service and support are highly responsive and helpful according to the reviews. They offer a lot of advice and suggestions, and are proactive in reaching out to customers. Their technical team is connected all the time and responds within minutes. They are good at working through issues in a timely manner and have a method of escalating problems. The account guys are also super responsive. There have been some stickier and more challenging problems that have taken more time to resolve, but generally speaking, they've been pretty good.
Lacework's initial setup was found to be straightforward by most reviewers, with some using Terraform scripts to deploy it quickly. It was rolled out across multiple AWS accounts and did not require much maintenance. The resource feature provided visibility into all containers and instances, making it easy to configure hosts without the Lacework agent.
Lacework's solution is highly scalable, with users reporting no issues in adding resources and monitoring large numbers of people. The solution is flexible and can be deployed across multiple cloud environments, including AWS, GCP, and Azure. While the licensing structure requires some attention, it is easy to scale and the company is accommodating in this regard. Users rate the scalability of the solution highly, with no issues reported in scaling to large numbers of hosts or agents. While some concerns have been raised around the potential for difficulties when populating large environments, these were not experienced by users in organizations with fewer than 20 people using the solution.
Lacework's stability is viewed positively by users. While some have experienced minor issues or lag, they haven't faced any major outages or disruptions. The company is seen as growing and improving, with frequent webinars on new features and hires from other organizations. However, there are some accuracy issues with detection and data models that could be improved.
Lacework Features
Lacework has many valuable key features. Some of the most useful ones include:
Lacework Benefits
There are many benefits to implementing Lacework. Some of the biggest advantages the solution offers include:
Lacework was previously known as Polygraph.
J.Crew, AdRoll, Snowflake, VMWare, Iterable, Pure Storage, TrueCar, NerdWallet, and more.