IT Security Manager at a wholesaler/distributor with 1,001-5,000 employees
Mar 24, 2023
With Binary Defense, we don't just get an alert, but also a detailed rundown of why they're alerting us on it. They tell us what was executed, or the username, script, or IP. That way, we're not wasting time investigating.
AVP, IT Security Compliance and Audit/Information Security Officer at Western Reserve Group
May 1, 2023
The speed at which their services are reactive is valuable. Nowadays, when a threat hits an endpoint, you've got minutes, not hours or days. Their average response time is about four minutes on an alert. For anything that needs to be sent to us, it's about fourteen minutes, which is pretty good. They're the third SOC that I've used in fifteen years. By far, they are the quickest ones to act. When you're looking at prevention, that's a key factor.
The customization has been the most valuable aspect and was really the reason we ended up selecting Binary Defense. They worked with us to provide exactly the level of support, features, response, and collaboration we needed.
Cybersecurity Architect, Information Technology Division at a healthcare company with 1,001-5,000 employees
Oct 25, 2024
In the six months we have been with Binary Defense on this, they run with the ball. They take care of our problems. When we get a ticket, they do not just give us a report.
Senior Information Security Analyst at a manufacturing company with 10,001+ employees
Feb 22, 2023
The most valuable features are the SIEM and the ticketing function; the latter is very smooth and easy to read and understand. We don't have any issues looking at the ticketing information when we're trying to identify what's going on.
Head of Cybersecurity at a sports company with 501-1,000 employees
May 16, 2023
The biggest aspect for us is that they are able to conform to our environment and utilize our tools. That way, we still maintain ownership of all the data and access to the applications, and we never lose control of the ability to run the solution ourselves if we need to.
IT Security Manager at a wholesaler/distributor with 1,001-5,000 employees
Mar 24, 2023
If I were shopping for an MDR solution today, I would not only look for a company that has the ability to alert, detect, and remediate, but also the ability to integrate vulnerability management. That's a big thing that they're lacking today.
AVP, IT Security Compliance and Audit/Information Security Officer at Western Reserve Group
May 1, 2023
I don't find any downside to them, but if I have to put one, it would be consistent manpower or staffing. The only area where the solution can be improved is going to be with people. As they grow, they are struggling with the same thing that every other company is, which is getting talent and getting that talent to stay, but they've just revised their tiering system to go from a flat analyst and manager to a three-tier solution where it goes through two or three before it gets elevated. That seems to have worked out well, so if one level misses it, the next one picks it up, and it works out fine.
We found that an earlier version of the agent had high memory usage and that was a bit concerning, but we raised the concern with their support team and they immediately replied that they had noticed the same thing and had a candidate fix already available... it totally fixed the issue.
Cybersecurity Architect, Information Technology Division at a healthcare company with 1,001-5,000 employees
Oct 25, 2024
The only area for improvement that I can think of relates to statistical analysis for SLAs. They are in the middle of moving to a new product called D3 which is going to do some backend work for them. I know they are working to improve some of the help desk statistics, such as the time the tickets open and the time they are closed.
Senior Information Security Analyst at a manufacturing company with 10,001+ employees
Feb 22, 2023
The most significant area for improvement is in support for non-English speakers; we're a global organization, so many of our users are not English speakers, which can make interacting with them a challenge. There's no Chinese language support, so we must rely on what we can do with the internet. We don't expect Binary Defense to build a language staff, but details can get lost in translation when we assume the whole world speaks English.
Head of Cybersecurity at a sports company with 501-1,000 employees
May 16, 2023
It's sometimes difficult to know when to engage Binary Defense or TrustedSec, their sister company. TrustedSec is more focused on offensive security, as opposed to the defensive security that the MDR solution provides. It would be awesome if there were a better bridge between that relationship for when we need to get more proactive services or when we need to do a penetration test.
