Field Effect MDR Reviews

I use Field Effect Covalence primarily for EDR across various clients. It serves as a crucial layer of backup protection, enhancing overall security measures. The valance feature is particularly appreciated for its effectiveness in safeguarding our systems.

In the beginning, our main goal was to provide our clients with the best possible cybersecurity solution, and that's when we implemented Covalence. The primary objective was to ensure top-notch security, and so far, it has proven effective – we haven't experienced any breaches since its implementation.

The main benefit I have experienced with Covalence over the years is the peace of mind it provides. I don't have to worry about anything – it is a reliable product that has never been hacked.

The most valuable aspects of Covalence for me are the exceptional customer service and the support from the dedicated team.

In terms of improvement, I have discussed with Covalence about improving reporting for vendors like us. While the reporting is good, I would like more of a white-label option with my company's name at the top and a clean look for the report, perhaps with "Field Effect" or "Covalence" at the bottom. They are already working on it, which is great.

I have been using Field Effect Covalence for about a year.

We have not experienced any issues with the stability of Covalence.

The customer support is excellent. They are very fast and helpful. I would rate the support as a ten out of ten.

Positive

The initial deployment of the solution is straightforward.

The pricing for Covalence is great.

It is extremely important to me that Covalence is backed by experts for constant monitoring of attacks and risks.

Managing surveillance with Covalence is super easy. It is user-friendly to the point that even someone without extensive technical knowledge finds it straightforward to handle.

It significantly helps our security team save time in various ways. We are spared from manual monitoring, and we no longer need to rely on other products that may not be as trustworthy.

Covalence is replacing multiple cybersecurity solutions for us. We are in the process of phasing out some, including Arctic Wolf, as we find that Covalence meets our needs more effectively.

Covalence informs me of threats and provides clear recommendations on how to address them. I find the recommendations to be wonderful, making it easy to address and hunt for the rest of the potential threats.

My advice to new users is that Covalence is like our secret weapon in cybersecurity. It might be newer and not widely known yet, but I would strongly advise them not to overlook it – implementing it is a smart move. Overall, I would rate the solution as a nine out of ten.

We wanted a technology partner to provide complete cybersecurity protection to our entire organization.   

In the past, we had multiple solutions from different vendors and they were difficult to manage. I wanted one vendor to protect us from top to bottom and provide a single "pane of glass" for our technical team to manage.  

 I was also looking for a vendor with a stable team of cyber specialists who were easily and quickly accessible to us for consultation on any issues or questions.  Additionally, we wanted to be billed in Canadian dollars.  

The IT team is having to spend far less time investigating cybersecurity incidents and cybersecurity "noise" and more time on tasks that drive the business forward.  

We have one cybersecurity partner who has a 360-view of all activity on our network and is able to paint a picture of behaviour and respond to suspicious activity more intelligently. The result is fewer false alarms and less time wasted by our technical team on noise and fruitless investigations. The Field Effect team of experts is an extension of our IT team.

Direct and easy and quick communication to the Field Effect cybersecurity team experts has led to quick resolution of any problems or alerts. The ARO system provides easy explanations of issues detected and simple instructions for resolution. If an issue is expected we can respond accordingly and suppress future alerts pertaining to the same issue. If we believe we have resolved an issue, the Field Effect team will verify our solution and report on the issue again if our solution does not address the problem.  

The solution could improved DNS filtering and fuller integration into ConnectWise PSA (I understand both are in the works). The current roaming DNS filter doesn't seem to be too complete and we're hoping to be able to eliminate purchases on other filters, such as Umbrella.  

The ConnectWise PSA integration is two-way but does not send our comments back to the Field Effect portal. Additionally, they have recently come out with an option that does not require a physical appliance onsite.  This will be valuable for smaller locations.

I've used the solution for over two years - since Nov 2022 approximately.

The solution has been extremely stable and predictable.

It's very scalable from the very smallest organizations to the largest.  

Customer service and support are very responsive - particularly with possible cyber incidents. We hear from them nearly immediately on urgent issues and within a day on other questions.

Positive

We had used Arctic Wolf and a bundle from ConnectWise. The Arctic Wolf product, although very complete, was significantly more expensive. The ConnectWise solution included SentinelOne but was more challenging to use as it did not have one place to look for security issues.

Initial set up was very simple and detailed instructions were provided by FE for the appliance and network adjustments. FE engineers provided white glove support.

It was done in-house as the setup was very simple.

We didn't do a formal ROI.

In our evaluation, two years ago, we found the Field Effect Covalence product and service to be the simplest to set up and pricing was lower than the other competitors.   

We have tested and implemented a few other solutions.   

I'm a Field Effect reseller, and my clients use Covalence as an affordable fabric security solution. 

Covalence cuts down on the number of cybersecurity solutions you need because Field Effect is rigid. They're like, "It's all us or nothing." It's their Microsoft 365. They won't let you use your own EDR. It's all under one umbrella. They consolidate all the products into one service, which can be good and bad. It's good because you don't have to think about anything. It's bad because some larger organizations might want their own EDR products or endpoint security. Sometimes, it works; sometimes, it does not. 

Covalence's cloud protection element has been excellent. A lot of organizations are using 365. It's hard to find a secure solution for protecting accounts. We've gone down the path of trying to utilize other security solutions for that particular area. We've been disappointed and always come back to trying to implement Covalence when we can so we know people are safe.

The solution's expert monitoring is huge. Things happen when you sleep, so it's a big comfort knowing that people are watching who have the autonomy to act on things. It's a great augmentation to our own staff. Managing Covalence isn't that hard, but it notifies you of a lot of issues, and the vulnerability management aspect requires a lot of upkeep. It's challenging to keep everything 100 percent patched and stay on top of the vulnerabilities that they detect, but it's necessary. 

Some things are actions, some are recommendations, and some are observations. You are presented with these things, and you get some insight about the level of severity and whether or not it's something you need to jump on right away. It helps you prioritize the critical things by telling you an action that you must deal with immediately. 

Covalence should provide a live view of the endpoint because the endpoint view in the portal is 5 to 15 minutes behind the actual status of the endpoint and its vulnerabilities. When it doesn't update with the actual status, it makes managing those things harder because sometimes something gets updated, and one of those vulnerabilities has gone away, but that doesn't appear in the ARO. The ARO information becomes outdated. There should be more alignment between the actual view, the endpoint view, and the ARO list. It also lacks email security, so you have to implement other things. They cover a lot but not everything.

I have used Covalence for a little over two years now.

Performance and stability aren't issues. It doesn't really slow anything down. 

Covalence scales from small to large. That's not an issue.

I rate Field Effect's support nine out of 10. The response could be better. Their expertise is always excellent. When things come up, it's great to be able to plug into their team. They have a lot of expertise available to us that they share. We work together to get issues resolved, or they will mitigate the problems as soon as things are detected. They've never let us down. There were some bumps in the road in the beginning, but they seem to have passed. 

Positive

There weren't many options when we were looking to buy. I wasn't using anything equivalent in the past because it was just starting to get ramped up and things were starting to get back from the cybersecurity perspective. There were only large enterprise business solutions to choose from. There weren't options that fit into the SMB space. We were looking for something, came across Covalence, and gave it a try and it's worked out. 

Everything is hard when you first do it, but now deploying Covalence isn't a big deal. The deployment time depends on the size of the user base. There are just a couple of steps. The cloud part isn't difficult. Next, you deploy the endpoints. You may need to remove what's already there. It's all dictated by the number of users and systems. You must track down all those systems and ensure everybody gets that endpoint software. After deployment, it doesn't require a lot of maintenance. It's self-updating. 

The pricing isn't sized, so Field Effect doesn't make it easy for anything under 25 users. I'm not crazy about that.

I rate Field Effect Covalence nine out of 10. Many people out there try to do it themselves. They'll try to use a freeware or open-source solution to build their own thing. I see this in my industry a lot. People try to maximize profits by finding the most inexpensive solutions out there and combining them all under one solution. 

However, at the end of the day, your team has to monitor them 24/7. If you're not, what's the point? It doesn't work. Trying to talk somebody out of building a better mouse trap is always hard.

We use Field Effect Covalence as our endpoint detection and response solution. We use the solution on our desktops to provide an additional layer of security.

We wanted to detect deviations from baseline behavior on our endpoints and provide an additional layer of security beyond our antivirus protection. We also wanted to enhance our security posture for Office 365 on-premises and in the cloud.

Covalence has different levels of behavior. At the lowest level, it alerts us to potential problems. At the next level, it makes recommendations and allows us to take immediate action. At the highest level, it takes automated actions and escalates issues to the Covalence team. We can reach out to the Covalence team for their input and experience on threats in our environment. It's like having an extension of our team that we can draw on for expertise.

Managing Covalence is extremely simple. We use the web portal to manage all aspects of the solution.

Covalence provides a single cybersecurity solution that proactively protects all our threat services as part of our layered security approach. Covalence provides a strong defense package which is part of that multilayered suite of protections.

Covalence saves our organization time by constantly monitoring for threats in the environment, deviations from baseline behaviors, and threats in the cloud against our Office 365 landscape. It generates action responses that are sent to the team. We no longer have to actively monitor for those threats. Covalence monitors them for us. We have replaced one full-time employee's time with Covalence.

Covalence not only identifies threats, but it offers remediation advice as well.

Focusing on the threats that are relevant to us and the threats that actually matter in our environment, allows us to target the resources that we have to address specific issues and threats.

Covalence in the context of the recommendations that it makes gives us additional information that we can use. They have made a positive impact on the security posture by allowing us to close additional gaps and strengthen our security posture.

The solution's advanced detection behaviors, automated notifications and responses, and automated remediation behaviors are valuable features.

The tagging of ARO closure has room for improvement. Covalence needs different categorizations for closing AROs.

I have been using Field Effect Covalence for nearly two years.

Field Effect Covalence is extremely stable.

Field Effect Covalence is scalable. We have had no issues scaling in our environment.

The technical support is excellent and extremely responsive.

Positive

The deployment was straightforward. Post evaluation, we rolled Covalence out on mass to all endpoints within our environment. One person was required for the deployment.

The implementation was completed in-house.

Covalence has provided a return on investment by actively intercepting two incidents that would have had a significant financial impact on our organization if allowed to play out.

Covalence is cost-effective.

We evaluated a range of different products and found that Covalence provided us with the best suite of tools, giving us the functionality and visibility we were looking for.

I would rate Field Effect Covalence nine out of ten.

Our environment is a Windows environment, and there are approximately 300 endpoints.

People should consider Field Effect Covalence, which is a robust, scalable, and dependable solution that is certainly worth reviewing. Talk to some users who are currently using Covalence to get their feedback.

Covalence is an enterprise-level solution that is both functionally rich and cost-effective.

We're a managed service provider. So we resel Field Effect Covalence services to our customers for cybersecurity.

Field Effect Covalence can be deployed on-premises, in the cloud, or as a hybrid depending on each customer's requirements.

It is imperative that Covalence is backed by experts who are constantly monitoring for attacks and risks.

Managing Covalence is straightforward.

With Covalence, we have seen increased security, increased revenue, and a fuller product line, which helps us move into the security market.

Covalence provides a single cybersecurity product that proactively protects all of our threat surfaces.

It is nice that Covalence reduces the number of cybersecurity products needed by providing three threat services.

Covalence's 24/7 monitoring significantly reduces our security team's workload.

Covalence informs us of threats and provides recommendations on how to remediate them.

What I like the most about Field Effect Covalence is the ease of deployment, the fact that it's cost-effective to roll out, and it is reasonable. It's at a really good price point, and it provides great protection.

Field Effect Covalence could benefit from enhancing its packing slip process. When receiving multiple devices simultaneously, it can be challenging to initiate setup due to inadequate labeling on the packing slips, which often fails to clarify device-to-customer associations.

I have been using Field Effect Covalence for two years.

Field Effect Covalence is stable. We have not experienced any issues.

Field Effect Covalence is scalable.

The technical support responds quickly.

Positive

We have seen a return on investment with Field Effect Covalence.

The pricing is comparable to what else is out there.

I would rate Field Effect Covalence a nine out of ten.

Someone interested in a cybersecurity solution but has never heard of Field Effect Covalence, should check it out.

To anyone looking at Field Effect Covalence, I recommend doing their homework, doing a demo, comparing pricing, and ensuring it fits their environment.

Basically, the solution is used for monitoring devices and monitoring agents. We install it on every machine that we bring online to actively monitor in terms of security - not monitoring how people are using it. If there is a threat on a machine, if there is outdated software, if there is malware, et cetera, we get alerts. 

We had a cyber incident prior to getting the solution. We decided to look around, and we found lots of reviews of the solution and decided to implement it. 

The solution offers actual recommendations. With any machine we bring online or any person using the machine, it creates an alert if it sees a threat or any observation such as missing updates. It will send an email to the IT department right away.

It's important that it's backed by experts who are constantly monitoring for attacks and risks. If there is a threat that is a high priority or something, they do monitor it, and they see if there is any action needed.

It is easy to manage surveillance.

We use the tagging feature for security threats to tag actions, recommendations, and observations. It's not technically tagging; it's watching the machine and alerting us to issues. 

We are using it in conjunction with our antivirus suite. This is enough to make sure that our machines are safe.

It's fairly easy to manage as well. It offers a quick overview. I can go into the portal and see what's happening. It gives me quite a bit of information.

I save time with the solution. I do not have to manually monitor all the equipment that we have now - since we installed the Kubernetes. That saves a lot of time. It does do the automatic reporting in detail, and it also tells us what needs to be done. While I've saved quite a bit of time, I can't say in hours or in days.

The product so far has informed me of threats and how to address them. When it creates the action, it does tell us what needs to be done. The recommendations they provide help us reduce risk. We can decide how to eliminate something or how to reduce occurrences. 

The reporting is fine. 

We've really felt secure after implementing this. 

This is a new solution for us. We're pretty comfortable with it and haven't had any issues so far.

They put too much detail into the emails. They should streamline them.

I've been using the solution since April 2023.

I haven't had any issues with stability. Whenever I go to the portal, it's solid, and the reporting is efficient. 

It's scalable. It's fairly good. 

Initially, we contacted technical support a number of times. We needed to understand the product and were not sure how things were going. 

Support is extremely quick. They were available whenever I contacted them.

Positive

I haven't used this type of security application before. 

We are using antivirus solutions; however, this solution actively monitors.

We're using an on-premise deployment with two portals: one on the cloud and one directly on the device. 

I was involved in the initial deployment, and it was fairly straightforward. It's a plug-and-play solution. 

Up to this point, I haven't performed any maintenance. 

We did have help from Covalence during the deployment. 

I'm not really involved in the pricing. 

I'd recommend the product. I'd rate the solution ten out of ten.

It's a fairly solid solution. It does what it's supposed to do.

The main reason we wanted to have an MDR system was to monitor our network both internally and externally for any potential threats or risks that we might have that could create a problem for the business. That's the main reason for it. 

I like the solution in part due to the fact that it is Canadian-based, so being from Canada, I like to work with Canadian vendors if possible. It is very comprehensive, and the price point is better than some of the others that I looked at, which were more expensive, for example, Arctic Wolf and eSentire, and some of the other sick security solutions on the market.

We get regular AROs that alert us of anything that we need to be aware of that's happening. The ARO features are really important since they're also ranked by risk. Something that's high or critical would get our immediate attention. And then medium and low, these are things that we know that we need to address. However, we've got a little bit more time to take a look at them. We've got a really small IT team, and I can't afford to have a full-time security person working for me. Having this as a service where their analysts are reviewing the incidents as they come up is helpful. They can help us troubleshoot or understand the source of the issue. That is really, really important for us as we have no way of doing this otherwise with a team of three people.

I like that surveillance is backed by experts who are constantly monitoring for attacks and risks. That's really the key selling point for me. I want my system to be constantly monitored. You want to know what's happening at all times within the network or even on some of our cloud services. For example, we use Microsoft 365. If someone's trying to hack one of our user's accounts, I want to know that that's happening. With this product, I would get an alert for that.

The ease of managing the product is great. I don't do it myself on a day-to-day basis. The team does it. However, the team likes the software. They understand how it works. When they need assistance, they can ask one of the security experts who will help them do the analysis and understand exactly what's happening, why it's happening, and help them resolve the issue. We've activated the active response, so when there's a risk where they see a particular user account that looks like it may have been infiltrated, it will automatically shut that down. That way, if something is happening, they shut the door right away so that if it's a hack or trying to get in, no one is going to get access.

We make use of the tagging of security threats such as actions, recommendations, and observations. We also have the add-ins for Outlook, as phishing has become prolific now. We're getting a lot of phishing emails. We've trained our employees to be alert when they see a phishing email. They know that they can go and click on the Covalence button in Outlook to report that message. The team is alerted that there was a phishing email that came in that way. In addition to that, when they click that button, it asks them a few simple questions about what actions they've taken. For example, did they click on a link? Did they open a document? Did they actually do anything that might be triggering some kind of a virus or something like that in our network? Covalence gets that information, and they can assess if there's a risk there. 

We now have a single cybersecurity product that protects all of our threat services, and all the endpoints. East, West, North, South - it covers everything on all of our entry points. That's one of the big selling points is that every endpoint and every access point is covered.

Covalence helps our security team save some time. Since I don't actually have a full-time security team, it's really great. The IT team doesn't really have a lot of time to dedicate to security. And they aren't experts. They're more generalists. Therefore, just having access to true expertise in security is really, really important to me. And they're monitoring 24/7. My guys go home at night; they're not necessarily looking at any of the systems to see if something's going on. Having the alerts that come into all of our phones allows us to see right away if there's a high or critical alert, and we can immediately address it whatever time of day it is.

Besides the AROs that are really specific to my network, I get regular monthly reports. They include, for example, when there's a major threat that's out there that's been identified. They'll send out an email, and I can read up on that and determine if there's any risk to my organization.

Cylance gives recommendations on how to reduce risk. We meet regularly with the Covalence team, and we go over the status of our AROs, some of the situations that happened, any concerns, and things like that. They definitely provide recommendations as well on alert observations. Some of the recommendations are less of a priority for us. However, we definitely want to follow through on those so that we're closing the door on any possible threats.

I'd love the price to be a little bit less. I've been in IT for 25 years and security is obviously causing my budget to really balloon from what it used to be. I'm always looking to make things more cost-effective. 

While the interface is pretty good, they could always improve on it and make it more user-friendly. Darktrace, for example, has a really nice interface, however, its functionality wasn't necessarily what we needed. 

We originally started using the solution in February or March of 2022. However, I worked with it at a different company as well and used it there since 2019.

We've had no issues with stability at all. 

The solution is completely scalable. We went through a growth phase last year, and they were able to keep up with that. 

My team has contacted technical support, typically about pretty minor stuff. In the tear we've been on it, we've reached out maybe one to two times. They offer prompt responses. I've never heard anyone complain about them. 

Positive

It did not replace any cybersecurity solutions. However, we did not have anything like this in place. We did look at alternative solutions before we made the decision to go with Covalence. However, we did not really have much of anything other than your basic antivirus software. We needed proactive instead of reactive security, which is why we chose this product.

While I authorized its use, I was not involved in the initial deployment. My staff was. There were two people who handled the implementation. It was mostly handled by one individual, however.

It's maintained by the vendor, and they do that remotely.

I've never sat down and calculated the ROI.

While they were very competitive compared to some of the other ones we looked at, I'm always looking to reduce my costs.

I'm a customer and end-user.

If someone was interested in an MDR system, I would definitely tell them to look at this product and include them in any vendor comparison that they were doing. They're very comparable to the other bigger, more well-known MDR solution providers out there. They bring a lot to the table. The company was founded with members from the Canadian National Defense. They really know what needs to be done at the highest levels of security, and they were able to take that knowledge and experience and build a solution that is comparable to all of the others out there. 

They're a good team to work with. It's really important to me to have a team who are responsive and good to work with. 

I'd rate the solution ten out of ten.

We use Field Effect Covalence at three automotive car dealerships to monitor all of our endpoints and make sure that they comply with updates and security and to notify us of any threats or vulnerabilities that they may have.

Covalence being backed by experts who are constantly monitoring for attacks and risks is important to us.

Managing Covalence is easy.

The actions, recommendations, and observations work well and are timely. The only frustration we've had is when there is certain software that's out of date and it keeps finding traces of the software that did not get updated or uninstalled. Overall, they work very well.

Covalence's benefits were clear from the start. It revealed the significant outdatedness and deficiencies in our existing systems, and within just a few months, it identified a security vulnerability we would have completely missed otherwise.

Covalence informs us of threats with minimal false positives.

Covalence helps us mitigate security risks by recommending actions like keeping software current, removing unnecessary or unknown programs, and eliminating applications that could potentially compromise our organization.

The most valuable features are AROs, which provide timely notifications for out-of-compliance or out-of-specification detections. Additionally, the recently introduced endpoint view, which displays the health status of our network endpoints, has become an essential daily tool.

While Covalence addresses our notification and visibility needs, it falls short in keeping information up-to-date, which is where our MSP comes in to supplement its functionality.

I'd love to see a feature in Covalence that allows manually removing endpoints from the view and receiving notifications if they come back online. Currently, I use the Endpoint View daily, but some systems stay online for up to 30 days even when no longer in service. The ability to manually remove these would be very helpful. Additionally, since Covalence is a key tool for software updates and patch management notifications, it would be fantastic if it could automate some of this process or provide links to the latest software versions. While Covalence highlights the need for updates and what needs to be done, it doesn't necessarily point users to where they can find the software itself.

I have been using Field Effect Covalence for four years.

Field Effect Covalence has shown minimal stability issues, with only one incident attributable to a five-year-old hardware appliance.

Field Effect Covalence is highly scalable. It happens naturally as we add and remove devices.

The technical support team is professional, helpful, and responsive. I can't recall ever encountering an issue that they couldn't resolve.

Positive

The initial deployment of Covalence proved challenging due to my lack of experience, but subsequent deployments were much smoother as I gained familiarity with the process.

Our last two deployments took a couple of hours to complete.

I typically deploy the hardware and maybe help with the group policy. But then, for the most part, our managed service provider IT company, sets up the group policy, and it pushes it out that way the first time, and then it's just an ongoing automated process after that.

While I have not seen a quantifiable return on investment from Covalence, a major cybersecurity incident could have been incredibly expensive, highlighting its potential importance.

Field Effect Covalence's pricing is just right.

I would rate Field Effect Covalence nine out of ten.

The only maintenance Covalence requires is updating the endpoint agent twice a year, at most. These updates are released by Field Effect and necessitate modifying the group policy to reflect the new version. This is because the old group policy won't work with the updated agent.

Completely unfamiliar with Field Effect before consulting for an end user, I've come to appreciate it immensely. Now, it brings me real peace of mind.

My advice to almost everyone I've talked to about Covalence is that in the first few months, there's gonna be a lot of leg work, bringing your systems up to date and in compliance with what the AROs are recommending. But once you have them up to date and know what to look for, it's pretty easy maintenance going forward of your network.