I'm part of a three-person IT team managing a mid-sized company, and our ESET EDR license is due for renewal. We're considering sticking with ESET or switching to Arctic Wolf Aurora for their MDR and EDR services. We're currently handling all alert triage and responses internally without a dedicated SOC, which makes after-hours monitoring quite challenging. Our main goals are to enhance our security posture while keeping costs manageable and minimizing operational burdens. We're looking for insights on a few points: 1) How beneficial is 24/7 SOC support like what Aurora offers for a small team? 2) What are the day-to-day differences between using just ESET vs. Aurora? 3) Any feedback on dealing with alert fatigue, false positives, and remediation experiences? Would love to hear your honest experiences and lessons if you've faced a similar decision!
5 Answers
CrowdStrike is another strong choice. We use Falcon Complete and it really simplifies our EDR needs. It's been a lifesaver for us on a small team!
We've been with Arctic Wolf for over a year and just renewed. Having their 24/7 SOC support is great since I'm the only security person at my organization. They do help customize alert settings, but the dashboard could use some improvement.
Huntress or BlackPoint might give you better value while also adding SOC services. For the price and features, they're solid options to consider.
If you're looking for alternatives, consider using Microsoft Defender or Defender for Endpoint based on your 365 license. You could save some budget and invest in Huntress for endpoint security and ITDR services instead.
I had a bad experience with Arctic Wolf. They didn't alert for internal scans, which made me feel uneasy. We switched to Rapid7 for their IDR and VM services, and they provide better interaction and regular assessments.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures