What is your primary use case for Darktrace?

I am a distributor for several vendors and act as a trusted adviser. Although I do not have an official relationship with Darktrace, I know the product and vendor from working with some organizations in the Netherlands. My clients vary from two hundred fifty seats to fifteen hundred.

We use Darktrace for standard network security, mail security, and SaaS security.

We use Darktrace primarily as a network detection device to monitor our network points and nodes. We fully utilize its capabilities, including Antigena, for post-work hours remediation and blocking potentially risky ports. We chose not to use its email security features, as the user interface was less responsive. We opted for network detection instead, which aligns better with our needs.

We use Darktrace for threat monitoring in the finance industry.

I use it for Email security and network traffic analysis.

We use the product to collect and monitor my environment. It models my traffic and sends me reports. Additionally, I have the response module in place to handle critical breaches by quarantining devices. I utilize it for generating reports and analyzing data to leverage threat intelligence.

Darktrace is used for detecting network-based threats like ransomware in the early stage or illicit communications with external endpoints.

We use the solution for email, network and cloud security.

Our primary use case is incident response.

The solution is a security cover for our on-premises solution to improve our security rating. Also, we want to protect our emails.

Our customers use Darktrace to monitor network traffic.

The solution is used as an anti-phishing tool.

We have a layered approach to our cyber security. We have unified threat management and use several solutions such as Kaspersky, FortiGate, and Mimecast. However, we felt that we needed something on top of all of these and decided to go with Darktrace. We only have one in-house IT security person and were looking for a solution like Darktrace that was more automated.

Our primary use case is for monitoring traffic for unusual behaviors.

We primarily use the solution for IT. Customers use it for banks or construction sites, depending on our customers. We haven't had an OT implementation yet. However, we have interest from two companies.

Darktrace is used for lateral entry investigations, lateral movement investigations, behavioral anomalies from end users, and endpoint detection.

We're using it in a complete security solution yet still within a different product that Darktrace has that's related to the network or email.

We are a financial Institute and make use of the IDS solution. We have the SIM called QRadar. We analyze all the traffic clouds with Darktrace and SIM.

Darktrace is an appliance that has been installed in our network, and it is connected to the database SaaS applications and they're collecting the data from there. We are using Darktrace for tracking our network and if any suspicious activity happens, we will be notified or we can check it on our tenant.

We use Darktrace to analyze our network traffic.

The product is a type of intrusion detection and prevention software. It is for network traffic monitoring.

Darktrace is a cybersecurity solution that is essentially an AI-driven ecosystem. Call it network monitoring with telemetry SaaS cloud connections.

We use it to understand our network and traffic. We are basically getting visibility into our infrastructure. We are using its latest version. It has both deployments. There is one cloud, and there is one on-prem.

Darktrace is a platform that is used to check all infrastructures. They check the compartmental in the network.

We use it to protect IoT devices. Darktrace does network traffic analysis. So, by analyzing all traffic patterns in your environment, you can detect any type of anomalous activity, as far as the network is concerned. I have been using its latest version. Its deployment depends on the environment. It can do sensors in the cloud, and it can also do on-prem.

Darktrace is used for cybersecurity, you can buy it as a physical appliance or solution as a service on the cloud. I tried the on-premises solution to detect any threat over our network.

We are primarily using the solution for network monitoring as well as cybersecurity.

I use it for my business. Within our organization, there are around 500 people using this solution. We want to continue using Darktrace but it's very expensive.

I'm currently heading cybersecurity for 1,500 entities. Some of them have deployed Vectra, and some of them have deployed Darktrace. Darktrace has been in the UK market for a while, whereas Vectra is a not-so-old player in the UK market. We are using the latest version of Darktrace but not their latest offering. They are now also providing email security over the Darktrace platform, but we have not been utilizing that. We have been utilizing their network detection and response and some part of automated incident response (IR) capability. We have a hybrid infrastructure. Some centers are deployed in the cloud, and some centers are deployed on-prem. The management platform is currently on-prem, but the plan is to move it to SaaS.

We have Antigena on the email, and we also use the network monitoring capabilities. We are using the latest version of the Antigena Email and AI analytics platform.

Darktrace is deployed on our LAN, inside the network. No site, no internet, it's just for monitoring the LAN, local access network. It helps us to find a lot of threats inside the network. We are very happy with the solution. You don't need to have a lot of analysts with Darktrace who are making or following the incident. This solution helps you to send the notification and avoid threats.

Our primary use case of this solution is for visibility. We try to get the global view of our network from an audit perspective on any given day, and figure out how that will impact our business. I'm a project coordinator and we are customers of Darktrace.

We mostly use it for investigating cases. It is deployed on-premises. We have some new projects for this year to extend Darktrace to the cloud.

We are using it for proof of concept purposes. We are using it to monitor all traffic on our network, and it is analyzing the traffic. We have 5,000 users. We are using the latest version.

We are using this solution for both the detection and elimination of attacks.

We deployed Darktrace for one of the biggest telecommunications companies in Latin America. It is deployed on-premise, but it is more like a service because we don't care about the appliances. Even though it works with appliances, it is more related to the services to the connections that the solution can handle. Because of that, it is on-premise, but it also has a component with sensors that works for remote instances, almost like a cloud solution. Some of the clients, especially in the security area, think that this appliance will replace a firewall or a prevention system solution, but it doesn't replace them. It actually complements them because the firewall decides to allow or deny a connection, and a prevention system is designed to avoid any type of risks to the connection or intrusion on the network. Darktrace allows you to find the unknown threats inside the network and identify them by using some artificial intelligence. It can do all the tracking inside or outside the network. It is connected directly to the core switch, and in the first stage, it probably takes about a month to learn the behavior of the network and the users. With that, it starts to know what type of information is correct inside the network, and what type of information probably would be a risky connection or risky data moving from one site to another. It then starts doing the alerting. After the first stage or the learning stage is complete, we can find the size of the network. The second stage is the use of a different model inside the solution called Antigena. It works like the antibodies inside our body. Once it detects something that is wrong inside the network, it not only does the alerting but also takes the decision to block that type of connection in order to avoid any information leak or any possible risky connection. If somebody is doing some data mining, it disables connection to the engine that is doing the data mining.

We are a system integrator and we pose solutions, including this one, to our clients. It is mainly used to reinforce response capabilities with respect to network security.

The primary use case for Darktrace is for tracking intruders and alerting for network threats.

I am working with Darktrace in concert with F5, Tufin, and SAP security products.

Darktrace makes up part of our security solution and it is able to operate without intervention from IT staff.

I'm a customer data security manager and we are looking at replacing our current solution, McAfee, with something like Darktrace or CrowdStrike which will provide the same visibility with the endpoint protection aspect.

Generally, we use Darktrace for behavioral analytics. We use it in the inner-network and the outside network for malicious connectivity. Darktrace gives us support with networks. We follow all the notifications and sometimes we block malicious IPs from the firewall.

Primarily we use the solution to spot problems that cannot be found by other solutions.

Our primary use case of this solution is for endpoint data and we've had good results with Darktrace.

We use it to deploy to enterprise customers to provide them with a complete, reliable and intelligent threat detection and response system.

Our primary use case of this solution is to monitor lateral traffic.

* Security * Network visibility * Breach detection in a VMware environment of about 25 VMs.