What tools would you recommend for managing Vulnerabilities and Exposures in an environment utilizing CrowdStrike and M356 Defender? We are also looking for tools that would work with a SOAR and possibly a ticketing system.

Security & GRC Security Strategy & Roadmap

585 views1 Upvote3 Comments

Sort by:

CISO in Software9 months ago

Seemplicity is a good choice in this space for many orgs https://seemplicity.io/

CTO9 months ago

We use Rapid7's IDR (detection & response) & IVM (vulnerability management) in conjunction with Crowdstrike for endpoint protection (we do not run M365 Defender as well). We also use Rapid7 for orchestration (SOAR) to automatically deal with a range of security event types. Been very happy with the outcome, which we utilise through a partnership with a local SOC. We also recently transitioned to M365 E5, so are currently assessing how Microsoft's security features may add to our overall posture, but I don't see this replacing what we have. Also a big fan of Wiz, which provides similar vulnerability management capabilities for our cloud assets. Hope this helps

VP of Information Security in IT Services9 months ago

Using 2 XDR vendors in the same environment?
Sounds like a common use case for SGNL but can't be certain.

Content you might like

Which platform is your most trusted source for security peer reviews when you evaluate solutions?

Gartner Peer Insights39%

G2 Crowd29%

TrustRadius16%

CB Insights8%

Capterra5%

Other1%

View Results

Our organization is subject to data retention requirements over very long periods (50 years or more). Do your organizations face similar constraints? If so, what long-term retention strategy have you implemented for these regulated data, and what technologies or solutions do you use to ensure their durability and compliance?

Has your cyber insurance premium changed since last year?

Increased by a lot8%

Increased somewhat22%

Increased by a little29%

No change since last year22%

Decreased by a little14%

Decreased somewhat4%

Decreased by a lot

View Results

As a new-to-role CISO, I am wondering how do you make RACI look better than it looks `on-paper` in your company? What I am specifically looking for is, ways of fostering real collaboration and reaching to consensus between oldies and newcomers in their roles.

Why do you think there are so few mature AI-driven autonomous pentesting solutions on the market, and why does this topic seem to generate more hype than in-depth technical discussion?

What tools would you recommend for managing Vulnerabilities and Exposures in an environment utilizing CrowdStrike and M356 Defender? We are also looking for tools that would work with a SOAR and possibly a ticketing system.

Sort by:

Content you might like

Which platform is your most trusted source for security peer reviews when you evaluate solutions?

Has your cyber insurance premium changed since last year?

As a new-to-role CISO, I am wondering how do you make RACI look better than it looks `on-paper` in your company? What I am specifically looking for is, ways of fostering real collaboration and reaching to consensus between oldies and newcomers in their roles.

Why do you think there are so few mature AI-driven autonomous pentesting solutions on the market, and why does this topic seem to generate more hype than in-depth technical discussion?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

Impact & Perceptions of A Privacy-First Digital Era

Challenges & Tools For A Privacy-First Internet Age

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go