WatchGuard Threat Detection and Response Reviews

The basic functionality is fantastic. It has been performing well. I generated a report on one machine, using that as the deployment machine. When scanning the network, it discovered machines on the network and deployed the same endpoint protection from that one machine I have on my network. 

I can see all of that from any cloud solution. So far, it has been really easy to install, deploy, and have visibility on the endpoints that I manage.

I'm just looking for a few extra features, which are likely included in XDR and the other additional software services. Mainly the FortiEDR system. If I go through the computer status and look at the risk, it's a very basic assessment. 

Compared to Rapid7, which is a highly rated vulnerability scanner,  WatchGuard is more limited. Rapid7 can give me vulnerabilities like autorun being enabled and provide solutions to fix them. It can also reassess vulnerabilities. 

However, the EDR Core I'm using only gives me basic information, like "File full of fire and execution detection" as a high vulnerability. It doesn't tell me how to fix it, just that it's a risk. It's very minimal in terms of risk assessment. Rapid7 would say, "This software is outdated," or "You're using an older version of SQL." It's much more detailed, whereas EDR Core is more scaled-down and doesn't provide a full assessment.

So, I'd like a few extra features, especially around threat severity assessment.

Our company used the solution for endpoint detection response. 

When you download the executable file from the internet, it automatically sandboxes to make sure it's not doing anything incorrectly. It is a nice feature that any EDR should do. 

WatchGuard Threat Detection and Response is used to monitor traffic and give alarms to the administration if something goes wrong. It reacts when services protected by it are attacked and sends notifications that something is amiss.

There is a significant improvement in the security of our organization. It's challenging to quantify the cost savings precisely, but it prevents potential breaches and protects our intellectual property. If a breach occurs, it could be catastrophic and very costly.

We use the solution to protect our systems. We also use it for real-time detection.

The tool provides automated responses. It has a lot of features.

The solution is used to protect, detect, and respond.

It is a lightweight product. The interface is very good.

I would describe primary use cases as a solid and cost-effective solution, especially when compared to other comparable solutions like Fortinet or different Cisco firewall suppliers and network security providers. However, I must say that it's not so intuitive to install, maintain, and configure. Nevertheless, it remains a solid and cost-effective solution.

We have seen it effectively stop some network security threats. It provides cost-effective protection and is easier to set up compared to other solutions. With other providers, it sometimes takes four to six or even eighteen weeks to deploy or receive the equipment. With WatchGuard, we have solutions that can be quickly deployed.

WatchGuard integrates with our firewall to provide threat detection and remediation. 

I like WatchGuard's network segmentation features. It's easy to configure user policies.

We are a solution provider and WatchGuard is one of the product lines that we implement for our customers. I am the person in the company that is responsible for WatchGuard products.

We do not use this product in my organization. I'm enabling partners and providing training for them on how to use this technology and how to sell it.

I assist customers with implementing PoC installations in different environments.

This product has a dashboard on the cloud that manages logs coming for the WatchGuard Firebox and workstations. It is a good product but it is not a fully integrated EDR or endpoint solution.

This product is one that not many customers request.