Field Effect MDR Reviews

We are a start-up. I review the reports, but we have outside IT. They get all of the AROs, and they action them. I monitor it, and I am aware of what is happening, but I do not act on anything to respond to an error.

By implementing Covalence, we wanted to make sure that we are protected against the new cyber threats as best as we can. We wanted to preempt any attacks.

Covalence is backed by experts who are constantly monitoring for attacks and risks. That is the whole point. There is somebody monitoring on a regular basis.

From my perspective, it is very easy. We just got it installed, and it just runs. We get regular updates or notices when there is something. For example, it could be as simple as out-of-date software, but it is a potential threat. It is an easy click-and-action. I like that we are constantly being made aware of those things and updating our systems.

Covalence provides comfort and a sense of security. We are aware that it is not perfect, and there are still some vulnerabilities, but it does provide a certain level of comfort. We could see its benefits after we saw how reporting worked and what was being reported, especially when we saw how quickly an incident was actioned. Within a year, we were feeling very confident in their ability.

Covalence helps our security team save time.

Covalence gave us recommendations on how to reduce our risk when we set it up originally.

It is very user-friendly. We have regular reports to see what is going on. 

It is quick. We did have a potential incident where a staff member clicked on a bad link. Within an hour, that account was locked, and it was actioned right away.

There are tags for security threats, but I only view them. I do not action anything. I just see what is happening. Sometimes, they are a little bit vague, and I am unsure what they mean, so I leave that to the IT experts. Overall, we are quite satisfied with their product and how it is working. I am kind of a middle person. I am not a tech person, so I do not really understand how it all works. It provides me comfort that somebody else is doing it because I do not understand it.

It has been a couple of years for sure.

As far as I know, it just runs.

I interacted with their technical support for an email check, which is a part of their service. I also have regular or periodic checks with our rep.

We were not using a similar solution to this level. We have always had outside IT and trusted that they were doing it, but we felt that there was a gap, so we added Field Effect.

Covalence did not replace any cybersecurity solutions for us. I am not sure if Covalence gives a single cybersecurity product that proactively protects all threat surfaces. We have other things in place for security.

In terms of the deployment model, I believe there is an agent on our server in the building, and it runs remotely from there.

I was not involved in its deployment. I was aware that people were installing it and showed them where the server closet was, but I physically did not touch anything.

It does not require any maintenance from our end.

It is a little pricey. It is a little on the high end, but we are continuing to use it. We signed the contract and have not canceled, so we find value in having it.

To a colleague who is interested in a cybersecurity solution but says they have never heard of the vendor Field Effect, the provider of Covalence, I would say definitely check it out. I would probably send them the onboarding material that I received when I first started with all of the information on how it works and why it is a benefit.

I would rate Covalence a nine out of ten. I am quite happy with it. It is very user-friendly, but there is always room for improvement. There may be things that I do not understand because I am not fully tech-savvy, but it is doing what it is supposed to be doing as far as I am concerned. I am happy with the product and the service.

We use the solution as a tool to protect our endpoints against cybersecurity threats. We also use it for monitoring network traffic at our office, specifically against denial of service attacks or other cybersecurity threats.

The Covalence agent that's been installed and running on all of our user's devices is great.

I get alerts if there's malicious activity or restrictions or if any suspicious activity should emerge. That allows me to reach out to that user and investigate further.

We like that it’s backed by experts who are constantly monitoring for attacks and risks. It's very important. I've called upon them a few times. I don't need to every time. However, they've always responded extremely quickly - within minutes. They've helped me understand what the issue is and what a resolution could be.

For the most part, it's fairly easy to manage. On a scale of one to ten, I would probably say, with ten being minimal effort, zero being extremely difficult, I would put it around, you know, seven and a half or so.

We use the tagging of security threats such as actions, recommendations, observations, et cetera. For the most pressing issues, it's good.   

It doesn’t help us save time. However, it does help us be more focused on where we're spending our time.

The solution informs us of threats and how to address them. It has definitely helped with security. It gives recommendations on how to reduce our risk. That's very helpful, particularly when you have a more junior resource that's been dealing with the threat. The explanation and the description of the threat and the remedy suggested are very helpful.

I have had a couple of challenges around updates to the agents where it seems it doesn't automatically replace older versions. I've had to go in and manually remove them and do a reinstall, which is a bit cumbersome to do on all the devices. They should offer a silent install and update. I'm using InTune to install the agent on new devices; however, getting it updated to the new agent is difficult. Other than that, once it's up and running, it's pretty well a very easy advantage.

I find that sometimes it will send alerts a bit too quickly. For example, it will send me an alert if it detects that there is an older version of Windows running on a device. However, Windows forces us to update very quickly. We often get those alerts, and the updates just haven't had time to get installed yet.

As far as phishing emails in particular, it doesn't really help me in protecting against those. For that, I'm relying on Microsoft 365’s own tools. I get notified if somebody clicks on, for example, a suspicious link in an email; however, that's after the fact. I don't count on Covalent to filter out those potential emails from being delivered. We’re relying on Microsoft to do that.

We started using the solution almost two years ago. 

We haven't had any issues with crashing or downtime since we've been using it. 

We had a case where there was a power outage in the building. That created some alerts, however, when the power came back on, everything just reset, and we were fine. 

We contacted support during the initial setup and when we had to do an update. They were satisfactory. We had no complaints. 

Positive

We were not using a different solution previously.  

We do use their appliance to protect our network. However, we don't have any servers inside our network since all of our business apps are on the public cloud. 

I was involved with the initial setup of the solution. We did have some challenges getting it to work for the silent install that uses Intune. When we first tried to install it, we had difficulty getting it to do a silane install. And it took a while to get that resolved. Once we did, it worked fine, except we're having a similar kind of problem when there are updates to the agent that need to be installed. If we install it through, you know, a manual process, it works great. However, when you are trying to use Microsoft Intune, which is our endpoint device manager, there are some difficulties.

We had three members handling the installation process. 

Maintenance involves ensuring the latest version of the endpoint agent is installed on all devices. 

We handled the installation process in-house. 

The pricing is quite reasonable for the value we get out of the product.

We did look at other options, including Crowdstrike. The fact that Covalence was Canadian was important to us. The price point was attractive as well. 

We're customers and end-users.

I'd advise anyone to give it a serious look. It's a cost-effective solution compared to other options. However, they don't seem to be spending on marketing as you never hear about them really.

Look at all the features, if they're comparing it with other products, to make sure that they have everything required included. Make sure that you're looking at alternatives, considering various components. It's very easy to get confused between this agent, compared to, say, CrowdStrike's agent; however, if you need to add in the other components from CrowdStrike, do you have a comparable solution?

I'd rate the product nine out of ten. 

Field Effect MDR forms part of our robust security solution bundle for our clients as well as internally. It has helped us consolidate IDS/IPS functionality. 

We primarily manage IT services for clients, including infrastructure (servers, networks, storage), software (applications, security tools), user support (helpdesk, remote support), security (threat detection, compliance), and cloud services (hosting, SaaS). 

Our offerings include proactive monitoring, SLAs, scalability, and cost efficiency, providing businesses with expert support, allowing them to focus on core activities, and ensuring reliable, up-to-date systems.

The solution has helped us consolidate our security tools stack. The rich feature set has enabled us to retire a couple of individual solutions that performed only a single function. This has reduced our overall spending with a healthy ROI. 

By integrating various security functionalities into a single platform, we have streamlined our operations and improved efficiency. This consolidation has simplified our security management. It also enhanced our ability to respond to threats more effectively. 

In the past, managing multiple security tools was a complex and time-consuming task. Each tool required its own updates, maintenance, and monitoring, which often led to inefficiencies and gaps in our security posture. With the new consolidated security stack, we have a unified approach that ensures all aspects of our security infrastructure work seamlessly together.

One of the most useful and impressive features of the system is its detailed notification mechanism. Rather than merely identifying a threat or potential threat, the system goes a step further by providing actionable recommendations along with clear steps to take in response. This proactive approach ensures that technicians are not left guessing about the next steps, thereby enhancing their ability to respond swiftly and effectively. 

Moreover, the notification includes detailed information on compliance and aligns its recommendations with best practices and industry standards. This comprehensive and integrated notification system has significantly increased our efficiency in addressing security incidents, allowing us to provide prompt and well-informed resolutions. By offering a combination of threat identification, actionable guidance, and compliance information, the system has become an indispensable tool in our security infrastructure.

It would be greatly beneficial to integrate compliance-related reporting directly into the portal. By doing so, users could easily monitor and evaluate compliance levels in relation to popular security standards and frameworks such as ISO 27001, NIST, CIS, and AICPA TSC. This feature would provide a comprehensive overview of adherence to common controls, enabling more efficient identification of areas needing improvement and ensuring that the organization remains aligned with critical regulatory requirements. 

Furthermore, it would streamline the auditing process by offering detailed insights and facilitating proactive compliance management, ultimately enhancing the organization's overall security posture.

I've used the solution for four months.

The solution has been quite stable so far.

The solution is highly scalable, catering to for multiple network endpoints.

We switched solutions to consolidate our security toolset.

The initial setup was straightforward for the most part, and the management portal is very user-friendly.

We implemented the solution with our in-house team.

It is quite reasonable for the rich feature set we receive.

We offer Field Effect Covalence as a cybersecurity package for our customers primarily for on-prem networks and cloud-based storage.

Field Effect Covalence has been able to detect zero-day Trojans almost immediately after installation on client systems, which our previous solution was unable to do. The network traffic monitoring has also been able to flag any potential issues before they become a problem. This has been a great help in monitoring issues with network configuration, such as DNS errors and port configuration.

The most valuable feature is the network traffic monitoring function.

The cost of the solution has room for improvement.

I have been using the solution for four months.

I give the stability a ten out of ten.

I give the scalability an eight out of ten.

We have 60 people using the solution in our organization.

We previously used SentinelOne Vigilance but switched to Field Effect Covalence due to its more robust offering of cloud, cloud storage protection, and live agents that triage the alerts and send them to us.

The cost of the solution is high.

I give the solution a nine out of ten.

People should be prepared for the solution to quickly identify a lot of things that have gone unnoticed for some time. Field Effect Covalence is an excellent solution.

We are an MSP and have integrated Covalence as a core offering across all of our SMB clients.

Covalence is deployed to monitor the physical network, end-points, cloud (Microsoft 365/Duo/SalesForce/Azure/Google), and DNS filtering.

Covalence allowed us to replace and consolidate a number of tools which provided immediate cost savings. Additionally, Covalence filled knowledge gaps and offloaded a big portion of monitoring activity. Finally, everyone feels more secure now knowing professionals and the right tools are in place.

We like the 24/7/365 SOC. Hackers are trying to breach a business when they least expect it - that's often at night, weekends, and holidays. Covalence never sleeps or misses a second of monitoring. 

Over the last four years, there have been so many improvements and additions that I honestly can't think of anything else, aside from more third-party integrations with other MSP tools.

I've used the solution for three or four years.

The business is extremely stable. They have great funding and are fully staffed.

The initial setup is very straightforward.

We handled the setup in-house.