IT Security Product Group Tests | SC Media

Group Tests

About Product Reviews

In our Group Test each month, we look at several products around a common theme based on a predetermined set of SC Labs standards (performance, ease of use, features, documentation, support, and value for money).  There are roughly 50 individual criteria in the general test process. These criteria were developed by the SC Lab in cooperation with the Center for Regional and National Security at Eastern Michigan University.

The diligence and commitment to excellence made by these staff and other members of our editorial team have made our Product Reviews one of the most well-read sections of our magazine and website. As a result, they remain the most objective, thorough and best in the industry. For more information click here.

Group Test

Acuity Risk Management STREAM Integrated Risk Manager 5.4

Verdict: The software solution is a highly configurable, scalable and framework agnostic offering real-time updates and actionable data for a complete picture of all the information required to understand cyberrisk status.

Quickview
AlgoSec Security Management Suite 2018.2 8.2

Verdict: The suite helps manage complex network security policies throughout the entire policy lifecycle from an application standpoint with zero-touch automation and orchestration capabilities.

Quickview
Allgress Insight Risk Management Suite (IRMS) 7

Verdict: Integrated risk management with a modular architecture means that organizations of all sizes can leverage this product.

Quickview
Balbix BreachControl SaaS 19.6x

Verdict: Balbix BreachControl is a cloud-hosted solution that leverages AI technology to help organizations predictively assess data breach risks.

Quickview
FireMon Security Manager 8.26

Verdict: With added functionality in mapping and discovery, analysts can leverage comprehensive rule analysis and automated workflows to take proactive action against risk.

Quickview
SAI Global SAI360 for Digital Risk 2019.2

Verdict: This is a flexible, scalable and affordable integrated suite of proven risk and compliance tools that assists with the management and assessment of risk and compliance obligations across an enterprise and beyond.

Quickview
Skybox Security Platform 10.0.200

Verdict: The platform gives complete visibility into risk by modeling the entire attack surface for insight into reducing risk and maintaining security posture through both automation and orchestration.

Quickview
Tripwire Enterprise 8.7

Verdict: Overall, Tripwire Enterprise helps an organization know what is happening in its environment to proactively guard against breaches through discovery, inventory and recorded change/log data of all critical assets.

Quickview
Tufin Technologies Tufin Orchestration Suite 19-2

Verdict: This product optimizes business agility and security with zero-touch automation that enables organizations to implement security changes in minutes, reducing the complexity of fragmented and hybrid network management and ensuring continuous compliance.

Quickview
Anomali Threat Platform

Verdict: Anomali Threat Platform is an integrated suite designed to enable organizations to identify serious threats, investigate adversaries, and respond efficiently and effectively.

Quickview
DomainTools Iris Investigation Platform 3.0

Verdict: DomainTools Iris Investigation Platform combines enterprise-grade domain intelligence and risk scoring with passive DNS.

Quickview
EclecticIQ Platform 2.4

Verdict: EclecticIQ Platform ingests both structured and unstructured threat intelligence data from different sources and pulls them into a single, collaborative, analyst workbench.

Quickview
Group-IB Threat Intelligence

Verdict: Using highly qualified experts and drawing on extensive research into financially motivated cybercriminals, Group-IB leverages its own infrastructure and proprietary external threat hunting system.

Quickview
LookingGlass scoutPRIME 2019.2.J.46

Verdict: This is a worthy option in the threat intelligence platform space, offering a lot of customizations and monitoring capabilities to comprehensively manage the risk third parties pose.

Quickview
Recorded Future Platform

Verdict: Recorded Future is a solid choice for adding efficiency to security teams with standout monitoring capabilities, the ability to search for any exposed AWS keys and the ability to build queries and set alerts to monitor 24/7/365 with priority capabilities.

Quickview
ThreatConnect 5.8

Verdict: ThreatConnect is designed to connect all elements of a security team in one central platform, for information gathering on threats, and to assist with the decision-making process.

Quickview
TruSTAR Enterprise Intelligence Management 3.9.12

Verdict: TruSTAR enriches information across ecosystems with open and closed source intelligence while simultaneously reducing the friction of sharing data.

Quickview
Acalvio Technologies ShadowPlex 3.3

Verdict: Acalvio Technology’s ShadowPlex aims to detect advanced attackers with precision and speed while addressing the limitations of hard-to-install, difficult-to-maintain solutions otherwise not suited for enterprise-scale environments for accurate, timely and cost-effective detection.

Quickview
Attivo Networks ThreatDefend Deception and Response Platform version 5.0

Verdict: This catch-all solution with third-party integrations, automated playbooks, endpoint forensics and extensive features deserves consideration.

Quickview
CounterCraft Cyber Deception Platform 2.3.0

Verdict: CounterCraft’s Cyber Deception Platform is a full spectrum deception solution that takes the design, deployment, and management of deception to the next level.

Quickview
Fidelis Cybersecurity Deception 9.2.1

Verdict: Fidelis’s goal is to catch attackers inside the network by luring them into decoys, sophisticated data-traps and Active Directory deception.

Quickview
Illusive Networks Deception Management System V3.1.105

Verdict: The Illusive Networks Deception Management System stops attacks by disrupting the human-decision making process behind lateral movement.

Quickview
PacketViper Deception360 version 5.0

Verdict: PacketViper is an active, agentless deception solution combining internal deception with active exterior facing artifacts. Action taken early in the kill chain detects, prevents and responds to threats automatically without the need for complex orchestrations.

Quickview
Smokescreen Technologies IllusionBLACK 3.7

Verdict: Smokescreen Technologies’ IllusionBLACK accurately and efficiently detects targeted threats in real time by creating decoys deployed in the network alongside legitimate assets. It provides decoys for the entire kill chain, yielding unparalleled coverage and maximizing the probability an attacker will engage with a decoy. It even identifies privilege escalation.

Quickview
TrapX Security DeceptionGrid 6.3

Verdict: TrapX Security’s DeceptionGrid rapidly detects, deceives and defeats attacks in real time while providing automated, accurate insight into malicious activity observed by other types of defense tools with almost zero false positives.

Quickview
Bitdefender GravityZone Ultra

Verdict: With more than 30 protection technologies, it is extremely effective in enabling enterprises to protect their assets and respond to threats using limited resources and technical skills.

Quickview
CrowdStrike Falcon 4.x

Verdict: An administrator or security analyst with little experience would be able to navigate this product and have confidence in understanding exactly what is happening.

Quickview
Cyber Defense Platform 19

Verdict: This solution basically has every tool needed to do a job effectively on a single page.

Quickview
ENDGAME Endgame

Verdict: The story boarding capability and advanced search features would allow even an intermediate-level support agent to thoroughly understand a threat to the network and follow it through to remediation.

Quickview
enSilo Endpoint Security Platform 3.1

Verdict: Innovative solution for IT departments with limited resources or less experienced professionals assisting with triaging incidents.

Quickview
Ericom Shield 19.04

Verdict: This product takes an innovative approach to fill a gap in an often overlooked, niche area.

Quickview
Kaspersky Endpoint Security for Business 11.1

Verdict: The product is ideal for small and medium-sized business looking for easy security management and the benefits of cloud service.

Quickview
McAfee MVISION Endpoint 1905

Verdict: It provides advanced protection and management of endpoint security technologies to protect against cyber adversaries leveraging a combination of techniques.

Quickview
SentinelOne SentinelOne 3.0

Verdict: Expansive integration makes adding this to an existing toolset a seamless process, and ensures an organization gets the most out of other products in its arsenal.

Quickview
BeyondTrust – Enterprise Vulnerability Management

Verdict: BeyondTrust works to proactively identify security exposures, analyze business impact, and plan and conduct remediation across network, web, cloud, and virtual infrastructures.

Quickview
Digital Defense Frontline – Vulnerability Manager 6.2

Verdict: This solution can manage vulnerability data across multiple scans by leveraging patented host correlation technology to track assets across scans and trend host information regardless of IP address changes.

Quickview
Kenna – Kenna Security Platform

Verdict: Kenna Security Platform is a scalable, cloud-based solution designed to deliver informed and accurate risk prioritization and performs network/device vulnerability assessments, management, and penetration testing.

Quickview
Tenable – Tenable.io

Verdict: This solution has been engineered to deliver comprehensive scanning, passive network monitoring, and true asset tracking to eliminate vulnerabilities and blind spots to help their organizations to see and do more.

Quickview
Tripwire – IP360 9.0.3

Verdict: Tripwire offers protocol, application, and vulnerability detection with low false positive rates for an accurate, efficient, and comprehensive understanding of your environment.

Quickview
SAINT – Security Suite 9.5

Verdict: SAINT uses data from an analytics perspective, leveraging asset management capabilities to give data business context for vulnerability prioritization purposes.

Quickview
Skybox Security – Security Suite, Vulnerability and Threat Management

Verdict: It helps build a comprehensive network model and understand the security landscape by seeing what is in place, where critical data resides, and potential paths attacks may take.

Quickview
Fortinet FortiGate 601E

Verdict: With scalable performance and ultra-low latency, it automates distributed enterprise operations.

Quickview
JASK ASOC

Verdict: Strong native cloud SIEM solution with very little setup time compared to your traditional on premises SIEM solutions.

Quickview
LogRhythm NextGen SIEM Platform

Verdict: The many features offered to assist in remediating attacks across the lifecycle simplify the daily duties for analysts of any expertise level.

Quickview
McAfee Enterprise Security Manager

Verdict: The hundreds of pre-built dashboards, partner integrations, and customizations make this a fitting solution for all.

Quickview
Netsurion EventTracker

Verdict: This is a highly intuitive, customizable solution that aims to make use of this effective security measure very straightforward.

Quickview
Secucloud Secuscaler

Verdict: The standout intuitiveness and affordability make this a solid buy for those looking for a basic solution that will function exactly as claimed.

Quickview
Sophos XG Firewall

Verdict: This has a robust reporting system with hundreds of pre-built, included reports that can be customized to make this a fantastic security solution for those looking to pull that information into reports.

Quickview
Splunk Enterprise Security

Verdict: Unique Use-Case Library and search functionality allows for quick, single-pane viewing of aggregate data for investigation, manual threat hunting, and complex statistical analyses.

Quickview

Group Tests