# Best Security Orchestration, Automation, and Response (SOAR) Software - Page 2

*By [Brandon Summers-Miller](https://research.g2.com/insights/author/brandon-summers-miller)*


Security orchestration, automation, and response (SOAR) software products are tools used to help integrate security technologies and automate incident-related tasks. These tools integrate with a company’s existing security solutions to help users build and automate workflows, simplifying the incident response process and reducing the amount of human intervention necessary to handle security incidents. Companies use these tools to create a centralized system complete with visibility into a company’s security software and operational processes. These tools also reduce the time it takes to respond to incidents, as well as the potential for human error in remediating security threats and vulnerabilities.

SOAR platforms combine aspects of [vulnerability management](https://www.g2.com/categories/vulnerability-management), [incident response](https://www.g2.com/categories/incident-response), and [security information and event management (SIEM)](https://www.g2.com/categories/security-information-and-event-management-siem) solutions. SOAR products are designed to provide some of each tool’s respective functionality or integrate with third-party tools. Once integrated, processes can be designed to identify incidents and automate remediation tasks.

To qualify for inclusion in the Security Orchestration, Automation, and Response (SOAR) category, a product must:

- Integrate security information and incident response tools
- Allow security professionals to build response workflows
- Automate incident management and response tasks within workflows
- Provide formalized incident, workflow, and performance reports






## G2 Grid® for Security Orchestration, Automation, and Response (SOAR) Software
![G2 Grid® for Security Orchestration, Automation, and Response (SOAR) Software plotting products by satisfaction and market presence](https://www.g2.com/categories/security-orchestration-automation-and-response-soar/grids.png?focus%5B%5D=98376&focus%5B%5D=120746&focus%5B%5D=139264&focus%5B%5D=164907&focus%5B%5D=55254&focus%5B%5D=122123&focus%5B%5D=58203&focus%5B%5D=30500)
Highlighted products: Tines, n8n, KnowBe4 PhishER/PhishER Plus, Torq AI SOC Platform, ServiceNow Security Operations, Microsoft Sentinel, Check Point Infinity Platform, and Google Security Operations.
Underlying data: [Grid® JSON](https://www.g2.com/categories/security-orchestration-automation-and-response-soar/grids.json?focus%5B%5D=tines&amp;focus%5B%5D=n8n&amp;focus%5B%5D=knowbe4-phisher-phisher-plus&amp;focus%5B%5D=torq-ai-soc-platform&amp;focus%5B%5D=servicenow-security-operations&amp;focus%5B%5D=microsoft-sentinel&amp;focus%5B%5D=check-point-infinity-platform&amp;focus%5B%5D=google-security-operations)


## How Many Security Orchestration, Automation, and Response (SOAR) Software Products Does G2 Track?
**Total Products under this Category:** 80

### Category Stats (Jul 2026)
- **Average Rating**: 4.53/5 The average rating of products in this category, based on all submitted ratings
- **Top Trending Product**: Forescout Platform (+0.74%) - Among all products in this category, Forescout Platform recorded the largest rating increase compared to last month
*Last updated: July 18, 2026*


## How Does G2 Rank Security Orchestration, Automation, and Response (SOAR) Software Products?

**Why You Can Trust G2's Software Rankings:**

- 30 Analysts and Data Experts
- 3,400+ Authentic Reviews
- 80+ Products
- Unbiased Rankings

G2's software rankings are built on verified user reviews, rigorous moderation, and a consistent research methodology maintained by a team of analysts and data experts. Each product is measured using the same transparent criteria, with no paid placement or vendor influence. While reviews reflect real user experiences, which can be subjective, they offer valuable insight into how software performs in the hands of professionals. Together, these inputs power the G2 Score, a standardized way to compare tools within every category.


## Which Security Orchestration, Automation, and Response (SOAR) Software Is Best for Your Use Case?

- **Leader:** [Tines](https://www.g2.com/products/tines/reviews)
- **Highest Performer:** [Barracuda Incident Response](https://www.g2.com/products/barracuda-incident-response/reviews)
- **Easiest to Use:** [Torq AI SOC Platform](https://www.g2.com/products/torq-ai-soc-platform/reviews)
- **Top Trending:** [n8n](https://www.g2.com/products/n8n/reviews)
- **Best Free Software:** [Tines](https://www.g2.com/products/tines/reviews)


---

**Sponsored**

### Intezer

Intezer automates the entire alert triage process, like an extension of your team handling Tier 1 SOC tasks for every alert at machine-speed. Intezer monitors incoming incidents from endpoint, reported phishing pipelines, or SIEM tools, then autonomously collects evidence, investigates, makes triage decisions, and escalates only the serious threats to your team for human intervention. Power your SOC with artificial intelligence that makes sure every alert is deeply analyzed (including every single artifact like files, URLs, endpoint memory, etc.), detecting malicious code in memory and other evasive threats. Fast set up and integrations with your SOC team&#39;s workflows (EDR, SOAR, SIEM, etc.) means Intezer&#39;s AI can immediately start filtering out false positives, giving you detailed analysis about every threat, and speeding up your incident response time. With Intezer: • Reduce Tier 1 escalation, sending only 4% of alerts on average to your team for immediate action. • Identify up to 97% of false positive alerts without taking any time from your analysts. • Reduce average triage time to 5 minutes or less, while giving your analysts deep context about every alert to prioritize critical treats and respond faster.



[Visit website](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=ppc&amp;secure%5Bad_slot%5D=category_product_list&amp;secure%5Bcategory_id%5D=2178&amp;secure%5Bchosen_at%5D=2026-07-19T10%3A23%3A59Z&amp;secure%5Bdisplayable_resource_id%5D=1011413&amp;secure%5Bdisplayable_resource_type%5D=Category&amp;secure%5Bmedium%5D=sponsored&amp;secure%5Bplacement_reason%5D=neighbor_category&amp;secure%5Bplacement_resource_ids%5D%5B%5D=1011413&amp;secure%5Bprioritized%5D=false&amp;secure%5Bproduct_id%5D=128448&amp;secure%5Bresource_id%5D=2178&amp;secure%5Bresource_type%5D=Category&amp;secure%5Bsource_type%5D=category_page&amp;secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fsecurity-orchestration-automation-and-response-soar%3Fpage%3D2&amp;secure%5Btoken%5D=1a6deab5395aa37a5be8df0660da738980bbfa3a4a711a9ed82a68f26cb549bf&amp;secure%5Burl%5D=https%3A%2F%2Fintezer.com%2Fforensic-ai-soc-lp%2F%3Futm_source%3DG2%26utm_medium%3Dppc%26utm_campaign%3Dg2paid&amp;secure%5Burl_type%5D=custom_url)

---

## What Are the Top-Rated Security Orchestration, Automation, and Response (SOAR) Software Products in 2026?
### 1. [D3 Security](https://www.g2.com/products/d3-security/reviews)
D3 stands at the forefront of AI-powered security, providing real-time, autonomous SOC solutions that help organizations stay ahead of cyber threats. By merging autonomous investigation and triage with AI-guided remediation, D3 is delivering AI-powered, human-led cyber security solutions. Morpheus is D3 Security’s fully autonomous SOC solution that triages, investigates, and responds to every alert, 24/7. Morpheus covers 100% of your alerts — no exceptions — so your team never has to choose between chasing false positives or risking a breach. It triages 95% of alerts in under two minutes, integrating seamlessly with any SIEM, XDR, or security stack. Unlike traditional SOAR platforms, Morpheus doesn’t need endless playbook tuning; it can build response workflows on the fly, specific to your security stack. The result? Zero alert fatigue, fewer missed threats, and a dramatic boost in SOC efficiency, powered by a data privacy-friendly and SecOps-focused AI model.


**Average Rating:** 4.2/5.0
**Total Reviews:** 64
**How Do G2 Users Rate D3 Security?**

- **Automated Remediation:** 8.3/10 (Category avg: 8.6/10)
- **Quality of Support:** 9.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.2/10 (Category avg: 8.5/10)
- **Workflow Automation:** 6.7/10 (Category avg: 8.8/10)

**Who Is the Company Behind D3 Security?**

- **Seller:** [D3 Security Management Systems](https://www.g2.com/sellers/d3-security-management-systems)
- **Year Founded:** 2012
- **HQ Location:** Vancouver, British Columbia
- **Twitter:** @D3Security (1,118 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/342986/ (162 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services, Computer Software
- **Company Size:** 49% Enterprise, 41% Mid-Market



#### What Are Recent G2 Reviews of D3 Security?

**"[The best security operation platform](https://www.g2.com/survey_responses/d3-security-review-3110773)"**

**Rating:** 5.0/5.0 stars
*— George K.*

[Read full review](https://www.g2.com/survey_responses/d3-security-review-3110773)

---

**"[Next Generation SOAR Platform](https://www.g2.com/survey_responses/d3-security-review-7793810)"**

**Rating:** 4.5/5.0 stars
*— Kristian T.*

[Read full review](https://www.g2.com/survey_responses/d3-security-review-7793810)

---



### 2. [IBM Cloud Pak for Security](https://www.g2.com/products/ibm-cloud-pak-for-security/reviews)
IBM Cloud Pak for Security is a platform that helps you uncover hidden threats, make more informed risk-based decisions and prioritize your team’s time


**Average Rating:** 4.4/5.0
**Total Reviews:** 9
**How Do G2 Users Rate IBM Cloud Pak for Security?**

- **Automated Remediation:** 8.9/10 (Category avg: 8.6/10)
- **Quality of Support:** 9.2/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.9/10 (Category avg: 8.5/10)
- **Workflow Automation:** 8.9/10 (Category avg: 8.8/10)

**Who Is the Company Behind IBM Cloud Pak for Security?**

- **Seller:** [IBM](https://www.g2.com/sellers/ibm)
- **Year Founded:** 1911
- **HQ Location:** Armonk, New York, United States
- **Twitter:** @IBMSecurity (74,660 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/1009/ (328,202 employees on LinkedIn®)
- **Ownership:** SWX:IBM

**Who Uses This Product?**
- **Company Size:** 40% Enterprise, 30% Mid-Market



#### What Are Recent G2 Reviews of IBM Cloud Pak for Security?

**"[IBM Cloud Pak Review](https://www.g2.com/survey_responses/ibm-cloud-pak-for-security-review-9765692)"**

**Rating:** 4.5/5.0 stars
*— Nitin G.*

[Read full review](https://www.g2.com/survey_responses/ibm-cloud-pak-for-security-review-9765692)

---

**"[Flexible cloud pak](https://www.g2.com/survey_responses/ibm-cloud-pak-for-security-review-9755853)"**

**Rating:** 5.0/5.0 stars
*— Anilkumar R.*

[Read full review](https://www.g2.com/survey_responses/ibm-cloud-pak-for-security-review-9755853)

---


#### What Are G2 Users Discussing About IBM Cloud Pak for Security?

- [What are the 6 current cloud Paks offered by IBM?](https://www.g2.com/discussions/ibm-cloud-pak-for-security-what-are-the-6-current-cloud-paks-offered-by-ibm)
- [What are the features of IBM cloud?](https://www.g2.com/discussions/ibm-cloud-pak-for-security-what-are-the-features-of-ibm-cloud)
- [What is IBM Cloud Pak Security?](https://www.g2.com/discussions/what-is-ibm-cloud-pak-security)

### 3. [Microsoft Security Copilot](https://www.g2.com/products/microsoft-security-copilot/reviews)
Empower your defenders to detect hidden patterns, harden defenses, and respond to incidents faster with generative AI


**Average Rating:** 4.3/5.0
**Total Reviews:** 12
**How Do G2 Users Rate Microsoft Security Copilot?**

- **Quality of Support:** 8.5/10 (Category avg: 9.0/10)
- **Ease of Admin:** 7.8/10 (Category avg: 8.5/10)

**Who Is the Company Behind Microsoft Security Copilot?**

- **Seller:** [Microsoft](https://www.g2.com/sellers/microsoft)
- **Year Founded:** 1975
- **HQ Location:** Redmond, Washington
- **Twitter:** @microsoft (13,091,739 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/microsoft/ (231,632 employees on LinkedIn®)
- **Ownership:** MSFT

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services
- **Company Size:** 75% Enterprise, 17% Mid-Market


#### What Are Microsoft Security Copilot's Pros and Cons?

**Pros:**

- Ease of Use (7 reviews)
- Security (5 reviews)
- Security Protection (5 reviews)
- Threat Detection (5 reviews)
- Automation (4 reviews)

**Cons:**

- Complexity (3 reviews)
- Expensive (3 reviews)
- Difficult Learning Curve (2 reviews)
- False Positives (2 reviews)
- Access Control (1 reviews)


### What Do G2 Reviewers Say About Microsoft Security Copilot?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **ease of use** of Microsoft Security Copilot, thanks to its seamless integration and intuitive interface.
- Users value the **AI integration** in Microsoft Security Copilot for its enhanced threat detection and faster incident response.
- Users appreciate the **AI-driven threat detection** of Microsoft Security Copilot, enhancing security team&#39;s efficiency in identifying risks.
- Users value the **AI-driven threat detection** of Microsoft Security Copilot, significantly enhancing their security operations efficiency.
- Users value the **automation capabilities** of Microsoft Security Copilot, enhancing incident response and simplifying security management.

**Cons:**

- Users find Microsoft Security Copilot&#39;s **complexity** challenging, especially for inexperienced team members adapting to AI-based solutions.
- Users feel the product is **expensive** , suggesting a need for more cost-effective options for broader accessibility.
- Users find the **difficult learning curve** of Microsoft Security Copilot challenging, particularly for inexperienced team members.
- Users find that **false positives** often lead to wasted time and necessitate additional verification, complicating their workflow.
- Users criticize the **limited access** to Microsoft Security Copilot, impacting its usability for all users.

#### What Are Recent G2 Reviews of Microsoft Security Copilot?

**"[A Critical Analysis of AI in Cybersecurity](https://www.g2.com/survey_responses/microsoft-security-copilot-review-9887878)"**

**Rating:** 4.5/5.0 stars
*— Abhishek N.*

[Read full review](https://www.g2.com/survey_responses/microsoft-security-copilot-review-9887878)

---

**"[Co-pilot :A Dictionary of Guidance](https://www.g2.com/survey_responses/microsoft-security-copilot-review-9999338)"**

**Rating:** 5.0/5.0 stars
*— Viswanadh Gupta T.*

[Read full review](https://www.g2.com/survey_responses/microsoft-security-copilot-review-9999338)

---



### 4. [NetWitness Platform](https://www.g2.com/products/netwitness-platform/reviews)
NetWitness is a comprehensive threat detection, investigation and response platform that combines visibility, analytics, insight, and automation into a single solution. It collects and analyzes data across all capture points (logs, packets, netflow, endpoint and IoT) and computing platforms (physical, virtual and cloud), enriching data with threat intelligence and business context.


**Average Rating:** 3.9/5.0
**Total Reviews:** 23
**How Do G2 Users Rate NetWitness Platform?**

- **Automated Remediation:** 9.2/10 (Category avg: 8.6/10)
- **Quality of Support:** 7.6/10 (Category avg: 9.0/10)
- **Ease of Admin:** 7.4/10 (Category avg: 8.5/10)
- **Workflow Automation:** 9.2/10 (Category avg: 8.8/10)

**Who Is the Company Behind NetWitness Platform?**

- **Seller:** [NetWitness](https://www.g2.com/sellers/netwitness)
- **Year Founded:** 1997
- **HQ Location:** Bedford, MA
- **Twitter:** @Netwitness (1,621 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/netwitness-platform/ (194 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 54% Enterprise, 33% Mid-Market


#### What Are NetWitness Platform's Pros and Cons?

**Pros:**

- Centralized Management (1 reviews)
- Cybersecurity (1 reviews)
- Features (1 reviews)
- Investigation (1 reviews)
- Management Console (1 reviews)

**Cons:**

- Complex Implementation (2 reviews)
- Complexity (2 reviews)
- Complex Setup (2 reviews)
- Deployment Difficulties (2 reviews)
- Expertise Required (2 reviews)


### What Do G2 Reviewers Say About NetWitness Platform?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **centralized management** of NetWitness Platform for its comprehensive threat hunting capabilities across various data sources.
- Users appreciate the **converged capabilities** of NetWitness Platform, which streamline threat hunting and reduce tool sprawl.
- Users appreciate the **packet capture and replay capabilities** of NetWitness Platform, essential for thorough forensic investigations.
- Users appreciate the **ability to capture full network packets** , enhancing their deep forensic investigation capabilities.
- Users value the **centralized view** offered by the Management Console, enhancing efficiency in threat hunting across diverse environments.

**Cons:**

- Users find the **complex implementation** of NetWitness Platform challenging, needing significant technical expertise for deployment and upgrades.
- Users find the **initial deployment and upgrades complicated** , often necessitating significant technical expertise and leading to instability.
- Users find the **initial setup complex** , often needing extensive technical expertise, and face challenges during upgrades.
- Users find the **deployment difficulties** of NetWitness Platform challenging, needing extensive expertise and facing upgrade instability.
- Users find the **expertise required** for initial deployment and upgrades complicates their experience with NetWitness Platform.

#### What Are Recent G2 Reviews of NetWitness Platform?

**"[All-in-One Security Console for Centralized Threat Hunting](https://www.g2.com/survey_responses/netwitness-platform-review-12381089)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Information Services*

[Read full review](https://www.g2.com/survey_responses/netwitness-platform-review-12381089)

---

**"[A Powerhouse in Endpoint, Network, and SIEM Integration.](https://www.g2.com/survey_responses/netwitness-platform-review-11524038)"**

**Rating:** 4.0/5.0 stars
*— pushpendra Y.*

[Read full review](https://www.g2.com/survey_responses/netwitness-platform-review-11524038)

---


#### What Are G2 Users Discussing About NetWitness Platform?

- [What is one of the biggest differentiators for RSA NetWitness platform?](https://www.g2.com/discussions/what-is-one-of-the-biggest-differentiators-for-rsa-netwitness-platform)
- [What types of data can the RSA NetWitness platform capture and process?](https://www.g2.com/discussions/what-types-of-data-can-the-rsa-netwitness-platform-capture-and-process)
- [What is NetWitness used for?](https://www.g2.com/discussions/what-is-netwitness-used-for) - 1 comment
- [What does RSA NetWitness do?](https://www.g2.com/discussions/what-does-rsa-netwitness-do)

### 5. [Exaforce](https://www.g2.com/products/exaforce/reviews)
At Exaforce, we are on a mission to 10x the productivity and efficacy of security and operations (SOC) teams using our transformative multi-model AI engine. Our Agentic SOC Platform combines AI agents (“Exabots”) with advanced data exploration to deliver real-time insights, proactive detection and response, in-depth investigations, and automated workflows. Backed by Khosla Ventures, Mayfield, Thomvest Ventures, Touring Capital, and others, Exaforce helps SOC teams respond to threats and breaches faster, with higher precision, greater consistency, and at lower total costs—redefining how SOC teams function.


**Average Rating:** 4.9/5.0
**Total Reviews:** 7
**How Do G2 Users Rate Exaforce?**

- **Automated Remediation:** 10.0/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 10.0/10 (Category avg: 8.5/10)
- **Workflow Automation:** 10.0/10 (Category avg: 8.8/10)

**Who Is the Company Behind Exaforce?**

- **Seller:** [Exaforce](https://www.g2.com/sellers/exaforce)
- **Company Website:** https://www.exaforce.com
- **Year Founded:** 2023
- **HQ Location:** San Jose, CA
- **Twitter:** @exaforceAI (134 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/exaforce (60 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 57% Mid-Market, 29% Enterprise


#### What Are Exaforce's Pros and Cons?

**Pros:**

- Security (3 reviews)
- Support (3 reviews)
- Alerting System (2 reviews)
- Customer Support (2 reviews)
- Ease of Use (2 reviews)

**Cons:**

- Query Issues (1 reviews)
- Slow Performance (1 reviews)
- System Limitations (1 reviews)


### What Do G2 Reviewers Say About Exaforce?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **enhanced security operations** of Exaforce, combining AI and human review for effective incident management.
- Users commend Exaforce&#39;s **fantastic customer support** , appreciating their responsiveness and assistance with feature requests.
- Users value the **effective alerting system** of Exaforce, enhancing focus and streamlining investigation processes significantly.
- Users praise Exaforce for its **fantastic customer support** , which greatly enhances troubleshooting and feature request processes.
- Users value the **ease of use** of Exaforce, significantly enhancing their workflow efficiency and focus on critical findings.

**Cons:**

- Users experience **query issues** with Exaforce, including slow loading times and failures with complex datasets.
- Users experience **slow performance** with Exaforce, especially when loading complex queries and large datasets.
- Users often experience **slow interface loading** and issues with large datasets affecting usability and performance.

#### What Are Recent G2 Reviews of Exaforce?

**"[Exaforce Cuts Security Alert Noise and Speeds Up Remediation](https://www.g2.com/survey_responses/exaforce-review-12644503)"**

**Rating:** 5.0/5.0 stars
*— Monde H.*

[Read full review](https://www.g2.com/survey_responses/exaforce-review-12644503)

---

**"[Collaborative, AI-Powered Security Operations](https://www.g2.com/survey_responses/exaforce-review-12407665)"**

**Rating:** 5.0/5.0 stars
*— Patrick M.*

[Read full review](https://www.g2.com/survey_responses/exaforce-review-12407665)

---



### 6. [Trellix Helix](https://www.g2.com/products/trellix-helix/reviews)
Trellix Helix integrates your security tools and augments them with next-generation security information and event management (SIEM), orchestration, and threat intelligence capabilities to capture the untapped potential of security investments.


**Average Rating:** 4.3/5.0
**Total Reviews:** 11
**How Do G2 Users Rate Trellix Helix?**

- **Automated Remediation:** 8.3/10 (Category avg: 8.6/10)
- **Quality of Support:** 8.5/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.9/10 (Category avg: 8.5/10)
- **Workflow Automation:** 8.3/10 (Category avg: 8.8/10)

**Who Is the Company Behind Trellix Helix?**

- **Seller:** [Skyhigh Security](https://www.g2.com/sellers/skyhigh-security-2026-07-02)
- **Year Founded:** 2004
- **HQ Location:** Plano, TX
- **Twitter:** @Trellix (241,168 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/skyhighsecurity/posts/?feedView=all (751 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 64% Enterprise, 18% Mid-Market


#### What Are Trellix Helix's Pros and Cons?

**Pros:**

- Artificial Intelligence (1 reviews)
- Automated Response (1 reviews)
- Automation (1 reviews)
- Cloud Services (1 reviews)
- Cybersecurity (1 reviews)



### What Do G2 Reviewers Say About Trellix Helix?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **real-time threat detection** capabilities of Trellix Helix, enhancing their security operations with AI-driven insights.
- Users appreciate the **automated response capabilities** of Trellix Helix, enhancing efficiency and threat management seamlessly.
- Users value the **automation capabilities** of Trellix Helix, enhancing real-time response and simplifying threat management.
- Users value the **flexible and scalable architecture** of Trellix Helix, facilitating seamless integration and ease of implementation.
- Users value the **real-time threat detection** and seamless integration capabilities of Trellix Helix for enhanced cybersecurity.


#### What Are Recent G2 Reviews of Trellix Helix?

**"[Fireeye Helix &quot;New Generation SIEM&quot;](https://www.g2.com/survey_responses/trellix-helix-review-9347343)"**

**Rating:** 4.5/5.0 stars
*— Rahul R.*

[Read full review](https://www.g2.com/survey_responses/trellix-helix-review-9347343)

---

**"[An effective Unified SOC !!!](https://www.g2.com/survey_responses/trellix-helix-review-10283899)"**

**Rating:** 5.0/5.0 stars
*— Ankit  A.*

[Read full review](https://www.g2.com/survey_responses/trellix-helix-review-10283899)

---



### 7. [DNIF HYPERCLOUD](https://www.g2.com/products/dnif-hypercloud/reviews)
DNIF HYPERCLOUD is a cloud native platform that brings the functionality of SIEM, UEBA and SOAR into a single continuous workflow to solve cybersecurity challenges at scale. DNIF HYPERCLOUD is the flagship SaaS platform from NETMONASTERY that delivers key detection functionality using big data analytics and machine learning. NETMONASTERY aims to deliver a platform that helps customers in ingesting machine data and automatically identify anomalies in these data streams using machine learning and outlier detection algorithms. The objective is to make it easy for untrained engineers and analysts to use the platform and extract benefit reliably and efficiently.


**Average Rating:** 4.2/5.0
**Total Reviews:** 10
**How Do G2 Users Rate DNIF HYPERCLOUD?**

- **Automated Remediation:** 10.0/10 (Category avg: 8.6/10)
- **Quality of Support:** 8.9/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.9/10 (Category avg: 8.5/10)
- **Workflow Automation:** 10.0/10 (Category avg: 8.8/10)

**Who Is the Company Behind DNIF HYPERCLOUD?**

- **Seller:** [DNIF](https://www.g2.com/sellers/dnif)
- **Year Founded:** 2002
- **HQ Location:** Mountain View, California
- **LinkedIn® Page:** https://www.linkedin.com/company/dnif/ (59 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 45% Mid-Market, 36% Enterprise



#### What Are Recent G2 Reviews of DNIF HYPERCLOUD?

**"[Excellent security system](https://www.g2.com/survey_responses/dnif-hypercloud-review-6936355)"**

**Rating:** 5.0/5.0 stars
*— Yairlyn F.*

[Read full review](https://www.g2.com/survey_responses/dnif-hypercloud-review-6936355)

---

**"[Intuitive Cyber Threats Detection Platform.](https://www.g2.com/survey_responses/dnif-hypercloud-review-7014258)"**

**Rating:** 4.5/5.0 stars
*— Veronica D.*

[Read full review](https://www.g2.com/survey_responses/dnif-hypercloud-review-7014258)

---



### 8. [Fixure](https://www.g2.com/products/fixure/reviews)
Security tools don’t fail because they miss things. They fail because none of them can explain what to do next. Fixure is the missing intelligence layer above the security stack. We don’t scan, alert, or prioritize findings. We build a system-level model of reality that reconciles conflicting tool opinions and reasons about consequences before action is taken. In a world of thousands of “critical” issues, Fixure explains which decisions actually matter. Not by severity. Not by volume. By understanding impact, blast radius, and outcomes across the entire system. That’s why Fixure isn’t another security platform—it’s the layer that finally makes security decisions make sense.


**Average Rating:** 5.0/5.0
**Total Reviews:** 6

**Who Is the Company Behind Fixure?**

- **Seller:** [Fixure](https://www.g2.com/sellers/fixure)
- **Year Founded:** 2025
- **HQ Location:** N/A
- **LinkedIn® Page:** https://www.linkedin.com/company/fixure/ (1 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 67% Mid-Market, 33% Small-Business



#### What Are Recent G2 Reviews of Fixure?

**"[Pioneering Security Solution That Cuts Through Noise](https://www.g2.com/survey_responses/fixure-review-12601855)"**

**Rating:** 5.0/5.0 stars
*— Jessica S.*

[Read full review](https://www.g2.com/survey_responses/fixure-review-12601855)

---

**"[Comprehensive Security with Excellent Reporting](https://www.g2.com/survey_responses/fixure-review-12706950)"**

**Rating:** 5.0/5.0 stars
*— Alexis R.*

[Read full review](https://www.g2.com/survey_responses/fixure-review-12706950)

---



### 9. [Securonix Security Operations and Analytics Platform](https://www.g2.com/products/securonix-security-operations-and-analytics-platform/reviews)
Securonix is working to radically transform all areas of data security with actionable security intelligence.


**Average Rating:** 4.0/5.0
**Total Reviews:** 14
**How Do G2 Users Rate Securonix Security Operations and Analytics Platform?**

- **Automated Remediation:** 8.3/10 (Category avg: 8.6/10)
- **Quality of Support:** 8.3/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.3/10 (Category avg: 8.5/10)
- **Workflow Automation:** 9.2/10 (Category avg: 8.8/10)

**Who Is the Company Behind Securonix Security Operations and Analytics Platform?**

- **Seller:** [Securonix](https://www.g2.com/sellers/securonix)
- **Year Founded:** 2008
- **HQ Location:** Addison, US
- **Twitter:** @Securonix (4,275 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/759889 (667 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Information Technology and Services
- **Company Size:** 50% Enterprise, 36% Small-Business


#### What Are Securonix Security Operations and Analytics Platform's Pros and Cons?

**Pros:**

- Alerting (1 reviews)
- Alerting System (1 reviews)
- Alert Notifications (1 reviews)
- Alerts (1 reviews)
- Analysis (1 reviews)

**Cons:**

- Complex Setup (1 reviews)
- Information Deficiency (1 reviews)
- Insufficient Detail (1 reviews)
- Integration Issues (1 reviews)
- Limited Features (1 reviews)


### What Do G2 Reviewers Say About Securonix Security Operations and Analytics Platform?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **efficient alert correlation** of Securonix, making analysis straightforward and minimizing false positives.
- Users value the **automatic correlation of alerts** in Securonix, enhancing analysis and minimizing false positives.
- Users value the **automatically correlated alerts** which enhance analysis and minimize false positives effectively.
- Users value the **pre-correlated alerts** , which enhance analysis, minimize false positives, and simplify alert management.
- Users appreciate the **ease of alert analysis** with Securonix, highlighting its effective correlation and reduced false positives.

**Cons:**

- Users find the **complex setup** of Securonix challenging, especially with difficult integration and troubleshooting errors.
- Users struggle with **information deficiency** in Securonix, finding analysis and troubleshooting challenging.
- Users find the **insufficient detail** in Securonix limits their analysis and complicates troubleshooting integration errors.
- Users face **integration challenges** with Securonix, complicating analysis and troubleshooting processes significantly.
- Users find the **limited features** of Securonix hindered their analysis and troubleshooting capabilities.

#### What Are Recent G2 Reviews of Securonix Security Operations and Analytics Platform?

**"[Modern SIEM Tool with good features and Support](https://www.g2.com/survey_responses/securonix-security-operations-and-analytics-platform-review-9514109)"**

**Rating:** 5.0/5.0 stars
*— Pritam M.*

[Read full review](https://www.g2.com/survey_responses/securonix-security-operations-and-analytics-platform-review-9514109)

---

**"[Correlated Alerts Made Easy, with Fewer False Positives](https://www.g2.com/survey_responses/securonix-security-operations-and-analytics-platform-review-12366950)"**

**Rating:** 5.0/5.0 stars
*— Saikumar M.*

[Read full review](https://www.g2.com/survey_responses/securonix-security-operations-and-analytics-platform-review-12366950)

---


#### What Are G2 Users Discussing About Securonix Security Operations and Analytics Platform?

- [What is Securonix Security Operations and Analytics Platform used for?](https://www.g2.com/discussions/what-is-securonix-security-operations-and-analytics-platform-used-for) - 1 comment, 1 upvote

### 10. [InsightConnect](https://www.g2.com/products/insightconnect/reviews)
Orchestration and automation to accelerate your teams and tools


**Average Rating:** 4.0/5.0
**Total Reviews:** 5
**How Do G2 Users Rate InsightConnect?**

- **Automated Remediation:** 3.3/10 (Category avg: 8.6/10)
- **Quality of Support:** 3.9/10 (Category avg: 9.0/10)
- **Ease of Admin:** 2.5/10 (Category avg: 8.5/10)
- **Workflow Automation:** 7.5/10 (Category avg: 8.8/10)

**Who Is the Company Behind InsightConnect?**

- **Seller:** [Rapid7](https://www.g2.com/sellers/rapid7)
- **Year Founded:** 2000
- **HQ Location:** Boston, MA
- **Twitter:** @rapid7 (124,405 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/39624/ (3,274 employees on LinkedIn®)
- **Ownership:** NASDAQ:RPD

**Who Uses This Product?**
- **Company Size:** 80% Enterprise, 20% Mid-Market



#### What Are Recent G2 Reviews of InsightConnect?

**"[Great Fit for a Large Organization](https://www.g2.com/survey_responses/insightconnect-review-6544504)"**

**Rating:** 4.5/5.0 stars
*— Robert M.*

[Read full review](https://www.g2.com/survey_responses/insightconnect-review-6544504)

---

**"[Automation at its best !! Simple And Powerful Automation Platform.](https://www.g2.com/survey_responses/insightconnect-review-6734537)"**

**Rating:** 4.5/5.0 stars
*— Aditya M.*

[Read full review](https://www.g2.com/survey_responses/insightconnect-review-6734537)

---


#### What Are G2 Users Discussing About InsightConnect?

- [What is InsightConnect used for?](https://www.g2.com/discussions/what-is-insightconnect-used-for)

### 11. [ReliaQuest GreyMatter](https://www.g2.com/products/reliaquest-greymatter/reviews)
ReliaQuest’s agentic AI security operations platform, GreyMatter, allows security teams to detect threats at the source, contain them in under 5 minutes, and eliminate Tier 1 and Tier 2 work for faster investigation and response. GreyMatter orchestrates 6 agentic AI personas with 200+ agent skills and 400+ AI tools to exponentially scale security operations and help organizations predict what&#39;s next.


**Average Rating:** 4.5/5.0
**Total Reviews:** 13
**How Do G2 Users Rate ReliaQuest GreyMatter?**

- **Automated Remediation:** 6.7/10 (Category avg: 8.6/10)
- **Quality of Support:** 8.9/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.8/10 (Category avg: 8.5/10)
- **Workflow Automation:** 6.7/10 (Category avg: 8.8/10)

**Who Is the Company Behind ReliaQuest GreyMatter?**

- **Seller:** [ReliaQuest](https://www.g2.com/sellers/reliaquest)
- **Company Website:** https://www.ReliaQuest.com
- **Year Founded:** 2007
- **HQ Location:** Tampa, Florida, United States
- **Twitter:** @ReliaQuest (2,577 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/reliaquest/ (1,066 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 38% Mid-Market, 31% Enterprise


#### What Are ReliaQuest GreyMatter's Pros and Cons?

**Pros:**

- Features (8 reviews)
- Centralized Management (7 reviews)
- Customer Support (7 reviews)
- Ease of Use (7 reviews)
- Easy Integrations (6 reviews)

**Cons:**

- UX Improvement (3 reviews)
- Complexity (2 reviews)
- Inefficient Alert System (2 reviews)
- Learning Curve (2 reviews)
- Login Issues (2 reviews)


### What Do G2 Reviewers Say About ReliaQuest GreyMatter?
*AI-generated summary from verified user reviews*

**Pros:**

- Users applaud the **exceptional visibility** and seamless integration of ReliaQuest GreyMatter across diverse security environments.
- Users value the **centralized management** offered by ReliaQuest GreyMatter, streamlining security operations across multiple systems effectively.
- Users commend the **exceptional customer support** of ReliaQuest GreyMatter, enhancing their overall experience and satisfaction.
- Users find ReliaQuest GreyMatter&#39;s **ease of use** invaluable for streamlining security operations and facilitating quick investigations.
- Users value the **seamless integrations** of ReliaQuest GreyMatter, enhancing security operations through unified workflows and capabilities.

**Cons:**

- Users experience **slow report loading and clunky UI** on ReliaQuest GreyMatter, noting a need for enhancements, especially on Android.
- Users find the **complexity of configurations** time-consuming, often requiring additional effort to fine-tune automated rules.
- Users experience **inefficient alerts** with delays and duplicates, complicating workflows and requiring additional adjustments to automation rules.
- Users experience a **challenging learning curve** with advanced automation workflows, though support helps alleviate difficulties eventually.
- Users find the **login issues** with the ReliaQuest GreyMatter app clunky, hindering a smooth sign-in experience.

#### What Are Recent G2 Reviews of ReliaQuest GreyMatter?

**"[Effective Automation for MSSP with GreyMatter](https://www.g2.com/survey_responses/reliaquest-greymatter-review-12596289)"**

**Rating:** 4.5/5.0 stars
*— Pedro G.*

[Read full review](https://www.g2.com/survey_responses/reliaquest-greymatter-review-12596289)

---

**"[Saves Time with Seamless Integrations](https://www.g2.com/survey_responses/reliaquest-greymatter-review-11947996)"**

**Rating:** 4.5/5.0 stars
*— Ben B.*

[Read full review](https://www.g2.com/survey_responses/reliaquest-greymatter-review-11947996)

---



### 12. [FortiSOAR](https://www.g2.com/products/fortisoar/reviews)
FortiSOAR is a comprehensive Security Orchestration, Automation, and Response (SOAR platform designed to enhance the efficiency and effectiveness of security operations centers (SOCs. By centralizing incident management and automating routine analyst tasks, FortiSOAR enables IT and operational technology (OT security teams to swiftly detect, investigate, and respond to cyber threats. The platform integrates seamlessly with a wide array of security tools, offering extensive pre-built playbooks and flexible deployment options to meet diverse organizational needs. Key Features and Functionality: - Centralized Incident Management: Unifies alert triage, enrichment, investigation, collaboration, and response actions across IT and OT environments. - Extensive Integrations: Supports over 500 multi-vendor integrations and provides more than 800 pre-built playbooks to enhance operational efficiency. - AI-Driven Security Operations: Incorporates FortiAI and a machine learning-based recommendation engine to guide and automate analyst activities, including playbook creation and incident prioritization. - Built-In Threat Intelligence: Leverages FortiGuard Labs&#39; global intelligence and public sources to enrich investigations and inform proactive security measures. - No/Low-Code Playbook Creation: Offers a patented design experience with visual drag-and-drop and rapid development modes for efficient playbook creation. - Flexible Deployment Options: Available as SaaS, on-premises, public cloud hosting, or through trusted Managed Security Service Providers (MSSPs, ensuring adaptability to various organizational requirements. Primary Value and Problem Solved: FortiSOAR addresses the challenges faced by security teams overwhelmed with numerous tools, excessive alerts, and manual, repetitive processes that hinder response times. By centralizing, standardizing, and automating security operations, FortiSOAR enforces best practices and allows analysts to focus on critical tasks, thereby improving overall security posture and operational efficiency. Its AI-driven capabilities and extensive integrations enable organizations to respond to threats more rapidly and effectively, reducing mean time to response (MTTR and enhancing productivity.


**Average Rating:** 4.9/5.0
**Total Reviews:** 4
**How Do G2 Users Rate FortiSOAR?**

- **Automated Remediation:** 10.0/10 (Category avg: 8.6/10)
- **Quality of Support:** 8.9/10 (Category avg: 9.0/10)
- **Ease of Admin:** 7.5/10 (Category avg: 8.5/10)
- **Workflow Automation:** 10.0/10 (Category avg: 8.8/10)

**Who Is the Company Behind FortiSOAR?**

- **Seller:** [Fortinet](https://www.g2.com/sellers/fortinet)
- **Year Founded:** 2000
- **HQ Location:** Sunnyvale, CA
- **Twitter:** @Fortinet (151,422 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/6460/ (16,279 employees on LinkedIn®)
- **Ownership:** NASDAQ: FTNT

**Who Uses This Product?**
- **Company Size:** 75% Mid-Market, 25% Small-Business


#### What Are FortiSOAR's Pros and Cons?

**Pros:**

- Integrations (1 reviews)
- Security (1 reviews)

**Cons:**

- Complex Coding (1 reviews)


### What Do G2 Reviewers Say About FortiSOAR?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **seamless integrations** of FortiSOAR, which enhance their cyber security efforts effectively.
- Users benefit from the **enhanced security** capabilities of FortiSOAR, effectively preventing cyber attacks and integrating with SIEM.

**Cons:**

- Users find the **complex coding** in FortiSOAR challenging, impacting their overall usability and experience.

#### What Are Recent G2 Reviews of FortiSOAR?

**"[ForiSOAR Review](https://www.g2.com/survey_responses/fortisoar-review-9841178)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Computer &amp; Network Security*

[Read full review](https://www.g2.com/survey_responses/fortisoar-review-9841178)

---

**"[Modular Soar Solution](https://www.g2.com/survey_responses/fortisoar-review-8199362)"**

**Rating:** 4.5/5.0 stars
*— Esat Yasar C.*

[Read full review](https://www.g2.com/survey_responses/fortisoar-review-8199362)

---


#### What Are G2 Users Discussing About FortiSOAR?

- [What is FortiSOAR used for?](https://www.g2.com/discussions/what-is-fortisoar-used-for)

### 13. [ORNA](https://www.g2.com/products/orna-orna/reviews)
ORNA is an end-to-end incident response automation platform for lean teams in midsize businesses that helps streamline or automate detection, response, and even prevention of cyberattacks on the organization&#39;s assets, all in a single tool with live 24/7 specialist support. The platform monitors cloud, on-premises, and hybrid assets (such as servers, network devices, workstations, IoT devices, and more) the organization is looking to protect around the clock, but also brings together overarching cyber incident response across all business functions, such as legal, HR, communications, and others; as well as automates evidence collection, communications, vulnerability management, and more.


**Average Rating:** 4.7/5.0
**Total Reviews:** 7
**How Do G2 Users Rate ORNA?**

- **Automated Remediation:** 6.7/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 10.0/10 (Category avg: 8.5/10)
- **Workflow Automation:** 6.7/10 (Category avg: 8.8/10)

**Who Is the Company Behind ORNA?**

- **Seller:** [ORNA](https://www.g2.com/sellers/orna)
- **Year Founded:** 2021
- **HQ Location:** Toronto, CA
- **LinkedIn® Page:** https://www.linkedin.com/company/orna-inc/ (42 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 71% Small-Business, 14% Mid-Market


#### What Are ORNA's Pros and Cons?

**Pros:**

- Automation Ease (1 reviews)
- Customer Support (1 reviews)
- Detection Accuracy (1 reviews)
- Ease of Use (1 reviews)
- Email Security (1 reviews)



### What Do G2 Reviewers Say About ORNA?
*AI-generated summary from verified user reviews*

**Pros:**

- Users highlight the **ease of automation** in ORNA, enhancing efficiency through streamlined incident response processes.
- Users value the **helpful customer support** from ORNA, ensuring efficient solutions and responsive feedback.
- Users commend ORNA for its **high detection accuracy** , ensuring effective monitoring and incident management across platforms.
- Users highlight the **ease of use** in ORNA for tagging and managing devices efficiently.
- Users commend the **helpful support team** and appreciate their openness to feedback and suggestions.


#### What Are Recent G2 Reviews of ORNA?

**"[ORNA Cyber Incident Response Platform](https://www.g2.com/survey_responses/orna-review-10406528)"**

**Rating:** 4.5/5.0 stars
*— Robert M.*

[Read full review](https://www.g2.com/survey_responses/orna-review-10406528)

---

**"[User interface is Perfect](https://www.g2.com/survey_responses/orna-review-10827471)"**

**Rating:** 4.5/5.0 stars
*— Laia G.*

[Read full review](https://www.g2.com/survey_responses/orna-review-10827471)

---



### 14. [autobotAI](https://www.g2.com/products/autobotai/reviews)
autobotAI is a agentic security automation platform that streamlines and secures Security and IT operations. Leveraging generative AI, it automates workflows across multi-cloud environments, integrating seamlessly with security and observability tools, and enhancing operational efficiency with no-code, low-code, and full-code flexibility.


**Average Rating:** 5.0/5.0
**Total Reviews:** 3
**How Do G2 Users Rate autobotAI?**

- **Automated Remediation:** 10.0/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Workflow Automation:** 9.2/10 (Category avg: 8.8/10)

**Who Is the Company Behind autobotAI?**

- **Seller:** [FusionGate](https://www.g2.com/sellers/fusiongate)
- **Year Founded:** 2018
- **HQ Location:** Bengaluru South, IN
- **LinkedIn® Page:** https://www.linkedin.com/company/shunyeka (12 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 67% Small-Business, 33% Mid-Market


#### What Are autobotAI's Pros and Cons?

**Pros:**

- Automation (2 reviews)
- Automation Ease (1 reviews)
- Customer Support (1 reviews)
- Integrations (1 reviews)
- Integration Support (1 reviews)

**Cons:**

- Limitations (1 reviews)
- Slow Performance (1 reviews)


### What Do G2 Reviewers Say About autobotAI?
*AI-generated summary from verified user reviews*

**Pros:**

- Users love the **no-code automation** capabilities of autobotAI, significantly streamlining tasks and enhancing efficiency in ITOps.
- Users appreciate the **automation ease** offered by autobotAI, making workflow creation intuitive and efficient.
- Users praise the **excellent customer support** of autobotAI, noting their technical expertise and helpfulness in resolving issues.
- Users appreciate the **extensive integrations** of autobotAI, facilitating seamless automation across diverse platforms and tools.
- Users appreciate the **integration support** of autobotAI, streamlining automation and enhancing ITOps workflows effectively.

**Cons:**

- Users feel the **insight feature lacks filter options** , which limits its effectiveness in monitoring compliance posture.
- Users note **slow performance** with NoCode node, but anticipate improvements in the next software release.

#### What Are Recent G2 Reviews of autobotAI?

**"[Automated vulnerability Patching with Generative AI](https://www.g2.com/survey_responses/autobotai-review-11101484)"**

**Rating:** 5.0/5.0 stars
*— Anmol J.*

[Read full review](https://www.g2.com/survey_responses/autobotai-review-11101484)

---

**"[Agentic Workflows and MCP, it&#39;s a robust platform for automating DevOps, CloudOps, and SecOps](https://www.g2.com/survey_responses/autobotai-review-11101411)"**

**Rating:** 5.0/5.0 stars
*— Satish S.*

[Read full review](https://www.g2.com/survey_responses/autobotai-review-11101411)

---



### 15. [DTonomy](https://www.g2.com/products/dtonomy/reviews)
DTonomy’s AI Assisted Incident Response (AIR) platform manages alerts from multiple security tools and infrastructure and automates manual time-consuming and repetitive tasks. AIR is powered by DTonomy’s adaptive learning engine which continuously learns and provides contextual insights that are not easily discoverable. The platform uses the insights to make relevant recommendations and automated workflows to guide security teams through steps and procedures. DTonomy’s AIR platform resolves incidents up to 10 times quick which leads to decreased downtime and reduced alert fatigue for staff.


**Average Rating:** 5.0/5.0
**Total Reviews:** 3
**How Do G2 Users Rate DTonomy?**

- **Automated Remediation:** 9.4/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 6.7/10 (Category avg: 8.5/10)
- **Workflow Automation:** 9.4/10 (Category avg: 8.8/10)

**Who Is the Company Behind DTonomy?**

- **Seller:** [DTonomy](https://www.g2.com/sellers/dtonomy)
- **Year Founded:** 2018
- **HQ Location:** Cambridge, US
- **Twitter:** @Peter_DTonomy (328 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/dtonomy/ (2 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 67% Enterprise, 33% Small-Business



#### What Are Recent G2 Reviews of DTonomy?

**"[A more efficent approach to SOAR](https://www.g2.com/survey_responses/dtonomy-review-9101067)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Legal Services*

[Read full review](https://www.g2.com/survey_responses/dtonomy-review-9101067)

---

**"[Flexible automation environment that keeps getting better](https://www.g2.com/survey_responses/dtonomy-review-4381414)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Higher Education*

[Read full review](https://www.g2.com/survey_responses/dtonomy-review-4381414)

---


#### What Are G2 Users Discussing About DTonomy?

- [What is DTonomy used for?](https://www.g2.com/discussions/what-is-dtonomy-used-for)

### 16. [NOVA](https://www.g2.com/products/nmt-security-nova/reviews)
NOVA AI is NMT Security&#39;s all-in-one cybersecurity platform. Based on what&#39;s described across the website: What it does: 1. Unifies 6 security functions into one dashboard: EASM (attack surface monitoring), TPRM (vendor risk), GRC (compliance automation), VAPT (pen testing), vCISO (expert advisory), and 24/7 SOC (monitoring) 2. Powered by the DRIM AI engine - which quantifies every cyber risk in financial terms (dollar impact) 3. Auto-discovers assets and begins scanning with zero-config connectors 4. Ingests data from 80+ existing security tools and correlates it into unified intelligence Who it&#39;s for: 1. SMBs, NBFCs, fintechs, SaaS startups, and regulated entities 2. Companies that would otherwise need 5+ separate security tools Key differentiators: 1. Replaces multiple point solutions (EASM + TPRM + GRC + VAPT + vCISO + SOC) 2. Risk quantification in financial terms (not just severity scores) 3. SOC 2 Type II certified, ISO 27001 compliant 4. Live in under 5 minutes 5. Supports 12+ compliance frameworks (RBI, SEBI, SOC 2, ISO 27001, DPDP, GDPR, HIPAA, PCI DSS, NIST CSF)


**Average Rating:** 4.8/5.0
**Total Reviews:** 3
**How Do G2 Users Rate NOVA?**

- **Automated Remediation:** 6.7/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 9.4/10 (Category avg: 8.5/10)
- **Workflow Automation:** 8.3/10 (Category avg: 8.8/10)

**Who Is the Company Behind NOVA?**

- **Seller:** [NMT Security](https://www.g2.com/sellers/nmt-security)
- **HQ Location:** N/A
- **LinkedIn® Page:** https://www.linkedin.com/company/No-Linkedin-Presence-Added-Intentionally-By-DataOps (1 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 67% Small-Business, 33% Enterprise


#### What Are NOVA's Pros and Cons?

**Pros:**

- Features (1 reviews)
- Real-time Monitoring (1 reviews)
- Security (1 reviews)



### What Do G2 Reviewers Say About NOVA?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **unique combination of compliance support and real-time security insights** , enhancing brand protection and reassurance.
- Users value the **real-time monitoring** of NOVA, finding it reassuring for security and compliance insights.
- Users value the **real-time security insights** and compliance support provided by NOVA, enhancing their overall security posture.


#### What Are Recent G2 Reviews of NOVA?

**"[AI CISO &amp; On-the-Go Compliance—A True Game Changer](https://www.g2.com/survey_responses/nova-review-12457571)"**

**Rating:** 5.0/5.0 stars
*— Charandeep  M.*

[Read full review](https://www.g2.com/survey_responses/nova-review-12457571)

---

**"[Outstanding ISO 27001 Guidance—Certified in Under a Month at a Fair Price](https://www.g2.com/survey_responses/nova-review-12474670)"**

**Rating:** 4.5/5.0 stars
*— Linto T.*

[Read full review](https://www.g2.com/survey_responses/nova-review-12474670)

---



### 17. [Security Orchestration, Automation &amp; Response](https://www.g2.com/products/security-orchestration-automation-response/reviews)
A universal, security orchestration gateway for executing on-demand or event-triggered tasks across deployment environments at machine speeds.


**Average Rating:** 4.3/5.0
**Total Reviews:** 2
**How Do G2 Users Rate Security Orchestration, Automation &amp; Response?**

- **Automated Remediation:** 10.0/10 (Category avg: 8.6/10)
- **Quality of Support:** 8.3/10 (Category avg: 9.0/10)
- **Workflow Automation:** 8.3/10 (Category avg: 8.8/10)

**Who Is the Company Behind Security Orchestration, Automation &amp; Response?**

- **Seller:** [Cyware](https://www.g2.com/sellers/cyware)
- **Year Founded:** 2016
- **HQ Location:** Jersey City, New Jersey, United States
- **Twitter:** @CywareCo (4,468 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/cyware/ (253 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 100% Enterprise



#### What Are Recent G2 Reviews of Security Orchestration, Automation &amp; Response?

**"[As SOAR used for both SIEM and CTIX](https://www.g2.com/survey_responses/security-orchestration-automation-response-review-8912000)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Banking*

[Read full review](https://www.g2.com/survey_responses/security-orchestration-automation-response-review-8912000)

---



### 18. [Devo](https://www.g2.com/products/devo/reviews)
Devo unlocks the full value of machine data for the world’s most instrumented enterprises by putting more data to work now. With Devo, IT executives finally realize the transformational promise of machine data to drive breakthrough projects that move the entire business forward. Born for today’s fully instrumented world, the Devo platform is purpose-built for both the sheer volume of data generated today, and the crushing demands of automation and the millions of algorithms that need to consume machine data. Our unique No-Compromise Architecture frees IT from the painful constraints of existing enterprise log management (ELM) systems, ingesting petabytes daily with blistering speed with no re-architecting required, even as data volumes explode. All machine data is unified, hot, and ready to use across multiple teams and use cases, from the moment of ingestion, for as long as you want to retain it – no limits. Only Devo combines real-time streams with historical data for fully contextual analytics, delivering 10x faster response times for tens of thousands of simultaneous queries. Devo powers the world’s most instrumented enterprises – Telefonica, Caixa Bank, Panda Security and 1000+ more worldwide – all realizing game-changing economics and compounding value from their machine data. Visit www.devo.com to learn more.


**Average Rating:** 4.3/5.0
**Total Reviews:** 5
**How Do G2 Users Rate Devo?**

- **Quality of Support:** 8.3/10 (Category avg: 9.0/10)

**Who Is the Company Behind Devo?**

- **Seller:** [Devo](https://www.g2.com/sellers/devo)
- **Year Founded:** 2011
- **HQ Location:** Boston, Massachusetts, United States
- **Twitter:** @devo_Inc (6,147 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/devoinc/ (614 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 40% Mid-Market, 40% Small-Business



#### What Are Recent G2 Reviews of Devo?

**"[This is a great log management application, thats very helpfull for me  in this busy world,](https://www.g2.com/survey_responses/devo-review-5403587)"**

**Rating:** 4.0/5.0 stars
*— Bibin A.*

[Read full review](https://www.g2.com/survey_responses/devo-review-5403587)

---

**"[Devo review](https://www.g2.com/survey_responses/devo-review-6576255)"**

**Rating:** 5.0/5.0 stars
*— SAJID S.*

[Read full review](https://www.g2.com/survey_responses/devo-review-6576255)

---


#### What Are G2 Users Discussing About Devo?

- [What is Devo used for?](https://www.g2.com/discussions/what-is-devo-used-for)

### 19. [Evolve Security Automation](https://www.g2.com/products/evolve-security-automation/reviews)
Evolve Security Automation is a modern approach to maximize your security budgets to achieve on-demand security capabilities with flexible pay-as-you-go pricing models. Automate your penetration testing and incident response, monitor for compromised accounts across thousands of security breaches, and orchestrate security infrastructure with automated cyber threat intelligence integration.


**Average Rating:** 5.0/5.0
**Total Reviews:** 1
**How Do G2 Users Rate Evolve Security Automation?**

- **Automated Remediation:** 8.3/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 10.0/10 (Category avg: 8.5/10)
- **Workflow Automation:** 8.3/10 (Category avg: 8.8/10)

**Who Is the Company Behind Evolve Security Automation?**

- **Seller:** [Threat Intelligence](https://www.g2.com/sellers/threat-intelligence)
- **HQ Location:** Sydney, AU
- **LinkedIn® Page:** https://www.linkedin.com/company/threat-intelligence-pty-ltd/ (23 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 100% Mid-Market



#### What Are Recent G2 Reviews of Evolve Security Automation?

**"[Evolve Secure service](https://www.g2.com/survey_responses/evolve-security-automation-review-8724617)"**

**Rating:** 5.0/5.0 stars
*— Vishnu S.*

[Read full review](https://www.g2.com/survey_responses/evolve-security-automation-review-8724617)

---



### 20. [Forescout Platform](https://www.g2.com/products/forescout-platform/reviews)
As AI-driven vulnerability and exploitation accelerate attack velocity to machine speed, Forescout is a foundational cyber defense layer that allows organizations to segment and isolate compromised systems, block lateral movement, and automate response across IT, OT, IoT, and IoMT environments. The Forescout Vistaro™ platform, powered by agentic AI and enhanced with Vedere Labs threat intelligence, delivers a Universal Zero Trust Network Access (UZTNA) architecture that integrates seamlessly with 180+ security and IT products. With Forescout Vistaro, organizations get comprehensive inventory and classification of both managed and unmanaged assets, continuous exposure management, and real-time protection including dynamic network segmentation and automated threat response.


**Average Rating:** 4.5/5.0
**Total Reviews:** 16
**How Do G2 Users Rate Forescout Platform?**

- **Quality of Support:** 8.2/10 (Category avg: 9.0/10)
- **Ease of Admin:** 8.1/10 (Category avg: 8.5/10)

**Who Is the Company Behind Forescout Platform?**

- **Seller:** [Forescout Technologies](https://www.g2.com/sellers/forescout-technologies)
- **Year Founded:** 2000
- **HQ Location:** San Jose, CA
- **Twitter:** @ForeScout (23,057 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/forescout-technologies (1,328 employees on LinkedIn®)

**Who Uses This Product?**
- **Top Industries:** Computer &amp; Network Security
- **Company Size:** 53% Enterprise, 29% Mid-Market


#### What Are Forescout Platform's Pros and Cons?

**Pros:**

- Security (4 reviews)
- Internet Security (3 reviews)
- IP Addressing (3 reviews)
- Monitoring (3 reviews)
- Customization (2 reviews)

**Cons:**

- Complex Implementation (2 reviews)
- Dependency Issues (2 reviews)
- Integration Issues (2 reviews)
- Performance Issues (2 reviews)
- Poor Customer Support (2 reviews)


### What Do G2 Reviewers Say About Forescout Platform?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **comprehensive security features** of Forescout Platform, effectively protecting sensitive information and resources.
- Users value the **instant discovery and classification** of endpoints, enhancing network security and resource access.
- Users appreciate the **instant discovery and classification** of IP-based endpoints, enhancing network visibility and security management.
- Users value the **instant discovery and comprehensive visibility** provided by Forescout, enhancing endpoint management across diverse environments.
- Users benefit from the **customization options** in Forescout, enhancing flexibility and control over network security policies.

**Cons:**

- Users find the **implementation complex** , facing challenges with integration and inadequate support during the process.
- Users face significant **dependency issues** with Forescout Platform, affecting implementation and integration processes across the system.
- Users face significant **integration issues** with Forescout Platform, complicating implementation and increasing dependency on various systems.
- Users experience significant **performance issues** with Forescout Platform, including slow TAC support and complex implementation processes.
- Users are frustrated by the **poor customer support** from TAC, leading to slow problem resolution and dissatisfaction.

#### What Are Recent G2 Reviews of Forescout Platform?

**"[Complete Device Visibility with Powerful Automation and Integrations](https://www.g2.com/survey_responses/forescout-platform-review-10795997)"**

**Rating:** 4.5/5.0 stars
*— Sumit B.*

[Read full review](https://www.g2.com/survey_responses/forescout-platform-review-10795997)

---

**"[Flexible Platform That Simplifies Monitoring and Integration with your actual tools](https://www.g2.com/survey_responses/forescout-platform-review-12806544)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Information Technology and Services*

[Read full review](https://www.g2.com/survey_responses/forescout-platform-review-12806544)

---


#### What Are G2 Users Discussing About Forescout Platform?

- [What is Forescout Platform used for?](https://www.g2.com/discussions/what-is-forescout-platform-used-for)

### 21. [IBM Cloud Pack for Security](https://www.g2.com/products/ibm-cloud-pack-for-security/reviews)
IBM Cloud Pak for Security is a comprehensive, containerized software platform designed to help organizations integrate their existing security tools, providing deeper insights into threats across hybrid and multicloud environments. Built on Red Hat OpenShift, it enables security teams to detect, investigate, and respond to threats efficiently without the need to move data from its original location. Key Features and Functionality: - Federated Search: Conducts unified searches across diverse data sources, offering a comprehensive view of security environments without relocating data. - Threat Intelligence: Delivers actionable insights by integrating multiple threat intelligence feeds, aiding in the identification and prioritization of potential threats. - Orchestration and Automation: Automates response workflows and orchestrates actions across various security tools, enhancing the efficiency of incident management. - Data Security: Provides visibility into data activity and compliance across hybrid cloud environments, facilitating effective data protection strategies. - Risk Management: Aggregates and contextualizes risk insights from multiple vectors, presenting them in a unified dashboard to prioritize and remediate security risks. Primary Value and Problem Solved: IBM Cloud Pak for Security addresses the complexity of managing disparate security tools and data sources in hybrid and multicloud environments. By providing a unified platform that integrates existing security infrastructure, it enables organizations to uncover hidden threats, make informed risk-based decisions, and respond to incidents more swiftly. This approach not only enhances security posture but also reduces the time and cost associated with data movement and manual processes, allowing security teams to focus on strategic initiatives.


**Average Rating:** 4.0/5.0
**Total Reviews:** 1
**How Do G2 Users Rate IBM Cloud Pack for Security?**

- **Automated Remediation:** 6.7/10 (Category avg: 8.6/10)
- **Quality of Support:** 5.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 5.0/10 (Category avg: 8.5/10)
- **Workflow Automation:** 6.7/10 (Category avg: 8.8/10)

**Who Is the Company Behind IBM Cloud Pack for Security?**

- **Seller:** [IBM](https://www.g2.com/sellers/ibm)
- **Year Founded:** 1911
- **HQ Location:** Armonk, New York, United States
- **Twitter:** @IBMSecurity (74,660 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/1009/ (328,202 employees on LinkedIn®)
- **Ownership:** SWX:IBM

**Who Uses This Product?**
- **Company Size:** 100% Enterprise



#### What Are Recent G2 Reviews of IBM Cloud Pack for Security?

**"[IBM cloud Pack](https://www.g2.com/survey_responses/ibm-cloud-pack-for-security-review-9640363)"**

**Rating:** 4.0/5.0 stars
*— Siddharth S.*

[Read full review](https://www.g2.com/survey_responses/ibm-cloud-pack-for-security-review-9640363)

---


#### What Are G2 Users Discussing About IBM Cloud Pack for Security?

- [What is IBM Cloud Pack for Security used for?](https://www.g2.com/discussions/what-is-ibm-cloud-pack-for-security-used-for)

### 22. [Radiant](https://www.g2.com/products/radiant-security-radiant/reviews)
Radiant Security delivers a centralized AI SOC platform that unifies agentic AI triage, integrated response, and log management in a single solution. The platform provides 100% alert triage coverage across all security cases, escalating only real threats and applying analyst-level reasoning with full transparency. SOC teams maintain influence over the AI through guardrails, policies, and exclusions. Response is accelerated with 1-click action plans that can be executed manually or automated for the future. With unlimited log ingestion, real-time search, and affordable retention, Radiant eliminates the complexity and cost barriers of traditional SIEMs. With Radiant, security teams cut through alert noise, respond faster to real threats, scale without adding headcount, and significantly reduce SIEM costs.


**Average Rating:** 5.0/5.0
**Total Reviews:** 2
**How Do G2 Users Rate Radiant?**

- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)

**Who Is the Company Behind Radiant?**

- **Seller:** [Radiant Security](https://www.g2.com/sellers/radiant-security)
- **Year Founded:** 2021
- **HQ Location:** Milpitas, California, United States
- **LinkedIn® Page:** https://www.linkedin.com/company/radiantsecurity-ai (71 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 50% Mid-Market, 50% Small-Business


#### What Are Radiant's Pros and Cons?

**Pros:**

- Alerting System (2 reviews)
- Detection Accuracy (2 reviews)
- Support (2 reviews)
- Artificial Intelligence (1 reviews)
- Automated Response (1 reviews)

**Cons:**

- Insufficient Information (1 reviews)
- Limitations (1 reviews)
- Navigation Issues (1 reviews)
- Not Intuitive (1 reviews)
- Poor Interface Design (1 reviews)


### What Do G2 Reviewers Say About Radiant?
*AI-generated summary from verified user reviews*

**Pros:**

- Users value the **transparency and efficiency** of Radiant&#39;s alerting system, enhancing incident management with clear reasoning.
- Users commend Radiant for its **exceptional detection accuracy** , drastically reducing false positives and enhancing alert management efficiency.
- Users praise Radiant&#39;s **transparent AI triage engine** , enhancing alert handling and significantly reducing false positives.
- Users value the **transparency and efficiency** of Radiant&#39;s AI triage engine for handling alerts effectively.
- Users appreciate the **automated response capability** of Radiant, efficiently triaging alerts and reducing false positives significantly.

**Cons:**

- Users note **insufficient information** regarding case management capabilities, indicating room for improvement in the platform.
- Users note some **limitations in case management capabilities** , suggesting room for improvements in Radiant’s features.
- Users find that **navigation issues** arise with a less intuitive UI and more steps needed for custom queries.
- Users find the **navigation non-intuitive** , with excessive steps needed for investigation views and custom queries.
- Users find the **poor interface design** hinders usability, making navigation and query building more complex than it should be.

#### What Are Recent G2 Reviews of Radiant?

**"[Noisy alerts are no longer a problem for our SOC](https://www.g2.com/survey_responses/radiant-review-12217506)"**

**Rating:** 5.0/5.0 stars
*— Felipe D.*

[Read full review](https://www.g2.com/survey_responses/radiant-review-12217506)

---

**"[AI SOC automation exactly where we needed it](https://www.g2.com/survey_responses/radiant-review-11697116)"**

**Rating:** 5.0/5.0 stars
*— Verified User in Computer Software*

[Read full review](https://www.g2.com/survey_responses/radiant-review-11697116)

---



### 23. [RiskIQ Illuminate](https://www.g2.com/products/riskiq-illuminate/reviews)
RiskIQ is the digital threat management, providing the most comprehensive discovery, intelligence and mitigation of threats associated with an organization’s digital presence


**Average Rating:** 5.0/5.0
**Total Reviews:** 1
**How Do G2 Users Rate RiskIQ Illuminate?**

- **Automated Remediation:** 8.3/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Ease of Admin:** 6.7/10 (Category avg: 8.5/10)
- **Workflow Automation:** 5.0/10 (Category avg: 8.8/10)

**Who Is the Company Behind RiskIQ Illuminate?**

- **Seller:** [RiskIQ](https://www.g2.com/sellers/riskiq)
- **Year Founded:** 2009
- **HQ Location:** San Francisco, US
- **Twitter:** @RiskIQ (10,963 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/riskiq_2 (33 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 100% Enterprise



#### What Are Recent G2 Reviews of RiskIQ Illuminate?

**"[Good product](https://www.g2.com/survey_responses/riskiq-illuminate-review-8721574)"**

**Rating:** 5.0/5.0 stars
*— Yamini S.*

[Read full review](https://www.g2.com/survey_responses/riskiq-illuminate-review-8721574)

---



### 24. [Splunk Security Essentials](https://www.g2.com/products/splunk-security-essentials/reviews)
Splunk Security Essentials (SSE) provides customers with prescriptive security detections, analytic stories, and data onboarding recommendations to guide any organization through their security maturity journey. SSE enables customers to operationalize industry frameworks like MITRE ATT&amp;CK and Cyber Kill Chain to further enrich and provide context to their security detections.


**Average Rating:** 5.0/5.0
**Total Reviews:** 1

**Who Is the Company Behind Splunk Security Essentials?**

- **Seller:** [Cisco](https://www.g2.com/sellers/cisco)
- **Year Founded:** 1984
- **HQ Location:** San Jose, CA
- **Twitter:** @Cisco (720,366 Twitter followers)
- **LinkedIn® Page:** https://www.linkedin.com/company/cisco/ (95,545 employees on LinkedIn®)
- **Ownership:** NASDAQ:CSCO

**Who Uses This Product?**
- **Company Size:** 100% Enterprise



#### What Are Recent G2 Reviews of Splunk Security Essentials?

**"[Best SIEM tool](https://www.g2.com/survey_responses/splunk-security-essentials-review-7235425)"**

**Rating:** 5.0/5.0 stars
*— Aman P.*

[Read full review](https://www.g2.com/survey_responses/splunk-security-essentials-review-7235425)

---



### 25. [StegoSOC](https://www.g2.com/products/stegosoc/reviews)
cloud-based threat detection and management


**Average Rating:** 5.0/5.0
**Total Reviews:** 1
**How Do G2 Users Rate StegoSOC?**

- **Automated Remediation:** 10.0/10 (Category avg: 8.6/10)
- **Quality of Support:** 10.0/10 (Category avg: 9.0/10)
- **Workflow Automation:** 10.0/10 (Category avg: 8.8/10)

**Who Is the Company Behind StegoSOC?**

- **Seller:** [StegoSOC](https://www.g2.com/sellers/stegosoc)
- **Year Founded:** 2016
- **HQ Location:** Durham, US
- **LinkedIn® Page:** https://www.linkedin.com/company/13353911 (2 employees on LinkedIn®)

**Who Uses This Product?**
- **Company Size:** 100% Small-Business


#### What Are StegoSOC's Pros and Cons?

**Pros:**

- Detection Accuracy (1 reviews)
- Ease of Use (1 reviews)
- Features (1 reviews)
- Reliability (1 reviews)
- Reporting Ease (1 reviews)



### What Do G2 Reviewers Say About StegoSOC?
*AI-generated summary from verified user reviews*

**Pros:**

- Users appreciate the **high detection accuracy** of StegoSOC, finding it invaluable for uncovering hidden data effectively.
- Users appreciate the **intuitive interface** of StegoSOC, making navigation and data detection effortlessly straightforward.
- Users value the **intuitive interface and robust algorithms** of StegoSOC, which enhance its effectiveness in digital forensics.
- Users praise the **reliability** of StegoSOC for its effective detection of hidden data and robust reporting features.
- Users value the **comprehensive reporting features** of StegoSOC, enhancing their digital investigation efficiency and effectiveness.


#### What Are Recent G2 Reviews of StegoSOC?

**"[good software](https://www.g2.com/survey_responses/stegosoc-review-10318073)"**

**Rating:** 5.0/5.0 stars
*— Alka K.*

[Read full review](https://www.g2.com/survey_responses/stegosoc-review-10318073)

---




## What Is Security Orchestration, Automation, and Response (SOAR) Software?

[System Security Software](https://www.g2.com/categories/system-security)

## What Software Categories Are Similar to Security Orchestration, Automation, and Response (SOAR) Software?

- [Security Information and Event Management (SIEM) Software](https://www.g2.com/categories/security-information-and-event-management-siem)
- [Incident Response Software](https://www.g2.com/categories/incident-response)
- [AI SOC Agents](https://www.g2.com/categories/ai-soc-agents)


---

## How Do You Choose the Right Security Orchestration, Automation, and Response (SOAR) Software?

### What You Should Know About Security, Orchestration, Automation, and Response (SOAR) Software

### What is Security, Orchestration, Automation, and Response (SOAR) Software?

Security orchestration, automation, and response (SOAR) software helps coordinate, execute, and automate tasks between various IT workers and tools. SOAR tools allow organizations to respond quickly to cybersecurity attacks and observe, understand, and prevent future incidents.

SOAR software gives organizations a comprehensive view of their existing security systems while centralizing the security data. By automating security responses and reducing manual tasks, SOAR helps to generate a faster and more accurate response to security attacks. It also helps better coordinate and route incident response to the most appropriate IT worker in real time.

**What Does SOAR Stand For?**

SOAR stands for security orchestration, automation, and response. SOAR software significantly contributes to identifying potential future security threats.

### What are the Common Features of Security, Orchestration, Automation, and Response (SOAR) Software?

Usually, a SOAR software offering operates under three primary software capabilities:

**Threat and vulnerability management:** Threat and vulnerability management examines key assets and prioritizes efforts to reduce risk. Working with other security teams, threat and vulnerability management helps prevent attacks by threat actors.

**Security incident response:** Security incident response addresses and manages the aftermath of a security breach, cyberattack, computer incident, or security incident. Security incident response is to handle the aftermath of a security breach in a way that limits damage, reduces recovery time, and reduces cost.

**Security operations automation:** Security operations automation is the technology that enables the automation and orchestration of security tasks. This can include both administrative duties and incident detection and response.

### What are the Benefits of Security, Orchestration, Automation, and Response (SOAR) Software?

The benefits of using a SOAR tool are that it lessens the impact of security incidents and reduces the risk of legal liability. SOAR software helps companies’ security teams by enabling them to:

**Maintain a central view:** One of the benefits of SOAR software is that it gives security staff a central view and enables control of existing security systems while centralizing data collection to improve a company&#39;s security posture, operational efficiency, and productivity.&amp;nbsp;

**Automate manual tasks:** As with most software today, users are looking for help in terms of automation. SOAR software helps to manage and automate all aspects of a security incident lifecycle. This removes manual tasks, gives security staff more time to be productive, and allows them to focus on more mission-critical security tasks that do not require manual tasks.

**Define incident and response procedures:** SOAR software helps security systems define incident and response procedures. This helps to route security incidents to the correct security staff. SOAR can also prioritize and standardize the security response processes in a consistent, transparent, and documented way.&amp;nbsp;

**Optimize incident response** : Because SOAR software helps security staff define incident and response procedures, incident response is more accurate. This accuracy enables security systems and staff to have improved responses where they may have to contain, eradicate, or recover crucial data.&amp;nbsp;

**Identify and assign incident severity levels:** SOAR software helps to identify and assign incident severity levels. Severity levels in cybersecurity measure how severely a security incident impacts various parts of the organization. SOAR software automatically identifies and assigns severity levels, enabling the right security system and staff to respond appropriately. This means both can respond immediately to security incidents that may negatively affect an organization, such as networks, software, employee or customer data, etc.

**Support collaboration and unstructured investigations:** SOAR software supports collaboration and unstructured investigations in real time, helping route each security incident to the security system and security staff best suited to respond. Collaboration with other IT teams for tasks such as remediation or other departments such as legal is possible.&amp;nbsp;

**Streamline operations:** By using SOAR software, organizations can streamline security operations for threat and vulnerability management, security incident response, and security operations automation. SOAR software connects these security elements while integrating disparate security systems. SOAR software’s playbooks allow users to orchestrate, streamline and automate tasks. Playbooks also codify the process workflows that streamline the SOAR software functions.

### Who Uses Security, Orchestration, Automation, and Response (SOAR) Software?

**IT and cybersecurity staff:** They use SOAR software to handle security alerts such as phishing, which includes looking for threat feed data from endpoints, failed user logins, logins from unusual locations, malicious VPN access attempts, and so on. It&#39;s also used to hunt for threats and respond to incidents from attached files for malware analysis, cloud-aware incident response, and automate data enrichment. Cybersecurity staff who assign incident severity and check other products for vulnerability scores also use SOAR platforms.

### Challenges with Security, Orchestration, Automation, and Response (SOAR) software

There are a number of challenges with SOAR software that IT teams can encounter.

**Skill gaps:** While there is the misconception that SOAR software could replace security staff, the tool is meant to augment security teams, allowing them to work efficiently and effectively but not replacing them. However, there still may be a skills gap as the security team must be able to create detailed workflows of their processes.

**Effective deployment:** Another challenge of SOAR software is that it must be deployed to the enterprise but also connected to the other applications and technologies, which can be very complicated. An organization must also have staff with enough skills to deploy and maintain the platform. The applications and technologies used by the enterprise must also be able to support or be integrated into the SOAR software. One of SOAR software’s greatest strengths is to connect and orchestrate other technologies; however, if each technology is unable to be integrated, it hampers the benefits of deploying SOAR software.

### How to Buy Security, Orchestration, Automation, and Response Software

#### Requirements Gathering (RFI/RFP) for Security, Orchestration, Automation, and Response (SOAR) Software

If an organization is just starting out and looking to purchase SOAR software, g2.com can help select the best one.

Most business pain points might be related to all of the manual work that must be completed. If the company is large and has a lot of networks, data, or devices in its organization, they may need to shop for a SOAR software that can grow with its organization. Users should think about the pain points in security to help create a checklist of criteria. Additionally, the buyer must determine the number of employees who will need to use the SOAR software and if they currently have the skills to administer it.&amp;nbsp;

Taking a holistic overview of the business and identifying pain points can help the team springboard into creating a checklist of criteria. The checklist serves as a detailed guide that includes both necessary and nice-to-have features, including budget, features, number of users, integrations, security staff skills, cloud or on-premises solutions, and more.

Depending on the scope of the deployment, it might be helpful to produce an RFI, a one-page list with a few bullet points describing what is needed from SOAR software.

#### Compare Security, Orchestration, Automation, and Response (SOAR) Software

**Create a long list**

Vendor evaluations are an essential part of the software buying process from meeting the business functionality needs to implementation. For ease of comparison, after all demos are complete, it helps to prepare a consistent list of questions regarding specific needs and concerns to ask each vendor.

**Create a short list**

From the long list of vendors, it is helpful to narrow down the list of vendors and come up with a shorter list of contenders, preferably no more than three to five. With this list in hand, businesses can produce a matrix to compare the features and pricing of the various solutions.

**Conduct demos**

To ensure the comparison is comprehensive, the user should demo each solution on the shortlist with the same use cases. This will allow the business to evaluate like for like and see how each vendor stacks up against the competition.&amp;nbsp;

#### Selection of Security, Orchestration, Automation, and Response (SOAR) Software

**Choose a selection team**

Before getting started, creating a winning team that will work together throughout the entire process, from identifying pain points to implementation, is crucial. The software selection team should consist of organization members with the right interest, skills, and time to participate in this process. A good starting point is to aim for three to five people who fill roles such as the main decision maker, project manager, process owner, system owner, or staffing subject matter expert, as well as a technical lead, head administrator, or security administrator. In smaller companies, the vendor selection team may be smaller, with fewer participants multitasking and taking on more responsibilities.

**Compare notes**

The selection team should compare notes and facts and figures which they noted during the process, such as costs, security capabilities, and alert and incident response times.

**Negotiation**

Just because something is written on a company’s pricing page does not mean it&#39;s final. It is crucial to open up a conversation regarding pricing and licensing. For example, the vendor may be willing to give a discount for multi-year contracts or for recommending the product to others.

**Final decision**

After this stage, and before going all in, it is recommended to roll out a test run or pilot program to test adoption with a small sample size of users. If the tool is well used and well received, the buyer can be confident that the selection was correct. If not, it might be time to go back to the drawing board.

### What does Security, Orchestration, Automation, and Response (SOAR) Software cost?

SOAR is considered a long-term investment. This means there must be a careful evaluation of vendors, and the software should be tailored to each organization&#39;s specific requirements. Once a SOAR solution is purchased, deployed, and integrated into an organization’s security system, the cost could be high, which is why the evaluation stage of selecting SOAR software is so crucial. The notion of rip-and-replace cost can be high. The SOAR vendor chosen should continue to provide support for the SOAR solution with flexibility and open integration.

#### Return on Investment (ROI)

Organizations decide to purchase SOAR software with some type of return on investment (ROI). As they want to recoup the money spent on the software, it is critical to understand the costs that will be saved in terms of efficiency.

SOAR software saves security staff costs by eliminating manual tasks. For example, SOAR software automatically investigates the scenario of email phishing attacks which is very common, so this task can be very repetitive and consumes security staff time if it is done manually. A large enterprise used actual data from its SOAR software deployment and compared it to the cost of handling email phishing investigations automatically using SOAR software versus handling them manually. The enterprise found that the reduction in staff time required to handle phishing emails equated to savings of over $680,000 per year.

### Security, Orchestration, Automation, and Response (SOAR) Software Trends

**Enterprises:** Due to the requirements to maintain such large-scale IT and network infrastructure, organizations such as large enterprises tend to be more interested in purchasing SOAR software. Having such large networks and more complex IT makes such organizations more vulnerable to security threats which is another drive to purchase SOAR software. Also, larger organizations have more employees with more devices, which increases threats if they are accessing workplace applications on these devices.

**Retail and e-commerce:** These industries have increased interest in SOAR software due to the vulnerabilities in PoS)transactions and online purchases. It is the processing of these monetary transactions which creates a security risk, especially there personal and financial information of customers. Adopting technologies such as location-based marketing for these types of purchases also makes the retail industry more vulnerable to security threats.




