Network Administrator at Cape Breton Regional Municipality
Real User
Top 20
2024-06-12T18:04:22Z
Jun 12, 2024
VPNs are the only thing we don't currently offer to users. If someone has a laptop that is not corporate, we can forward it to an MPS server and get the agent installed. We haven't gotten that route purely because of licensing. I will recommend the product to others. I prefer WatchGuard’s firewall. The integration of the solution with the firewall pricing is beneficial for me. Due to all the integrations, we have one single pane of glass for logging and auditing. It brings everything together and makes it a little simpler to see what's going on in our network. The price is excellent. The features are excellent compared to anything on the market. Overall, I rate the solution a ten out of ten.
When we deploy your free solutions, we initially face a risk of around 60% of potential attacks, breaches, and infections as we install the first customers. However, as time progresses, this risk gradually decreases. It may diminish to zero or perhaps one to three percent because we actively patch vulnerabilities, detect threats, and ensure the security of their operating systems. After a few days, everything will work perfectly, beginning from an up-to-date standpoint. I would recommend it above other solutions, including Kaspersky, with whom we have had a longstanding relationship. What sets WatchGuard apart is its exceptional ability to connect and integrate with various solutions within its stack seamlessly. This includes connectivity with firewalls, EPR, MSA, DNS security, and other offerings, all accessible through a unified interface. Overall, I rate the solution a ten out of ten.
I would say that the product has been able to improve my organization's security posture by around 90 percent. The product supports my company's remote workforce's security needs as it is really good for areas like URL filtering, and you can also match technologies like WatchGuard Passport with the DNS part in WatchGuard. You can also match the multi-factor authentication with WatchGuard AuthPoint. For the remote workforce, having DNS protection and protection against phishing, while also having protection for their credentials, reduces a lot of vulnerabilities for remote workers. The zero-trust application service is the feature that I find to be the most effective for threat detection in the product. Speaking about the capabilities of the product that have helped mitigate threats, I can say that my company has dealt with some users who are affected by some threats, after which we have had to isolate them and prevent the expansion of the attack in their environment, while also stopping privilege escalation and lateral movement. My company could remediate the one endpoint of the user environment that got affected because of the attacks, after which nobody else in the company was affected. Sometimes, there are some services that receive RDP brute force, after which the endpoint detects it and blocks the access automatically without any human intervention. To those planning to use the product, I would say that they need to go with a trusted partner who has experience and is certified to deal with WatchGuard EPDR because such partners can provide an effective implementation process to users. I recommend the product to those who plan to use it. I rate the overall tool a ten out of ten.
EDR for continuous monitoring that prevents the execution of unknown processes. Behavioral analysis and detection of IoAs (indicators of attack) scripts, macros, etc. Automatic detection and response for targeted attacks and in-memory exploits. Endpoint protection capabilities such as URL filtering, device control and managed firewall. Zero-Trust Application and Threat Hunting features delivered as managed services. Lightweight agent and easy-to-use Cloud-based console with detailed...
I'd rate WatchGuard EPDR a seven out of ten. It lacks a proper virtual patching solution, which competitors like Trend Micro and CloudStrike offer.
VPNs are the only thing we don't currently offer to users. If someone has a laptop that is not corporate, we can forward it to an MPS server and get the agent installed. We haven't gotten that route purely because of licensing. I will recommend the product to others. I prefer WatchGuard’s firewall. The integration of the solution with the firewall pricing is beneficial for me. Due to all the integrations, we have one single pane of glass for logging and auditing. It brings everything together and makes it a little simpler to see what's going on in our network. The price is excellent. The features are excellent compared to anything on the market. Overall, I rate the solution a ten out of ten.
When we deploy your free solutions, we initially face a risk of around 60% of potential attacks, breaches, and infections as we install the first customers. However, as time progresses, this risk gradually decreases. It may diminish to zero or perhaps one to three percent because we actively patch vulnerabilities, detect threats, and ensure the security of their operating systems. After a few days, everything will work perfectly, beginning from an up-to-date standpoint. I would recommend it above other solutions, including Kaspersky, with whom we have had a longstanding relationship. What sets WatchGuard apart is its exceptional ability to connect and integrate with various solutions within its stack seamlessly. This includes connectivity with firewalls, EPR, MSA, DNS security, and other offerings, all accessible through a unified interface. Overall, I rate the solution a ten out of ten.
I would say that the product has been able to improve my organization's security posture by around 90 percent. The product supports my company's remote workforce's security needs as it is really good for areas like URL filtering, and you can also match technologies like WatchGuard Passport with the DNS part in WatchGuard. You can also match the multi-factor authentication with WatchGuard AuthPoint. For the remote workforce, having DNS protection and protection against phishing, while also having protection for their credentials, reduces a lot of vulnerabilities for remote workers. The zero-trust application service is the feature that I find to be the most effective for threat detection in the product. Speaking about the capabilities of the product that have helped mitigate threats, I can say that my company has dealt with some users who are affected by some threats, after which we have had to isolate them and prevent the expansion of the attack in their environment, while also stopping privilege escalation and lateral movement. My company could remediate the one endpoint of the user environment that got affected because of the attacks, after which nobody else in the company was affected. Sometimes, there are some services that receive RDP brute force, after which the endpoint detects it and blocks the access automatically without any human intervention. To those planning to use the product, I would say that they need to go with a trusted partner who has experience and is certified to deal with WatchGuard EPDR because such partners can provide an effective implementation process to users. I recommend the product to those who plan to use it. I rate the overall tool a ten out of ten.