Pros y Contras de CYREBRO

We have been using Cyrebro for approximately 3 months. In that time, we have been alerted to 3 incidents of malicious activity. Our customer success rep has been fantastic, and support quickly responds to any issues we have encountered. Implementation was easy, and reacting to incidents was seamless once set up. We have been able to integrate monitoring into several products we use and have not found many that do not support it. I sleep better at night knowing we have 24/7 monitoring in place. Reseña recopilada por y alojada en G2.com.

The only downside, which is not unique to Cyrebro, is that it takes some time to tweak the monitoring to minimize the false positives. I would rather have a false positive and have to tweak than have something missed entirely. Reseña recopilada por y alojada en G2.com.

The Cyrebro platform is intuitive and easy to use, you have complete information close to you Reseña recopilada por y alojada en G2.com.

Cyrebro has several flaws that can be worked on internally to improve them. From my personal experience and taking into account that I am located in Colombia, the response times for Cyrebro support are slow, sometimes we require a short log from a team and it takes a long time to give us that information. I understand that the platform has been in the process of migrating to GCP in order to improve these response times.

Things to improve:

Technical support: the client often requests to have X or Y information which only Cyrebro has, when requested, the delivery times are very slow, making us look like the bad guys and damaging our reputation with the client

Log platform: it would be good if we as clients could have access to the logs so we can perform the searches and not depend too much on technical support.

Support: The SOC service is 24/7 but the technical support is not. Sometimes we have had incidents with the client and we have requested support from Cyrebro but they tell us that they do not have staff to work on the case, since for example in Colombia if we have an incident on Saturday Cyrebro cannot because the technical staff is in Israel and they do not work on Saturday, so it leaves us without that factory support.

In summary, the Cyrebro platform is good, practical, interesting, but the technical support has a lot to improve. Reseña recopilada por y alojada en G2.com.

Es una solución cloud que simplifica en gran envergadura las funciones de un SOC, ya que permite tener especialistas N1, N2, y N3 sin necesidad de contratar un staff completo de personas capacitadas, a su vez, su gran adaptación con otras soluciones permite que se puedan conectar mediantes API los aplicativos que posea el cliente sin mayor dificultad. Además ya posee un playbook definido y creado por especialistas de cyrebro con mas de 1.000 reglas bases establecidas que se aplican al ecosistema de cliente una vez implementado. Su equipo de especialistas esta muy bien capacitado y frente a dudas el soporte responde a la brevedad y si se necesita mayo urgencia es posible realizar una call para revisar el caso en concreto tanto en español como en ingles. Tambien mencionar que gracias a su integración con IA y ML permite de forma automatizada la correlación de eventos y el orden de la información. Reseña recopilada por y alojada en G2.com.

Dentro de lo menos optimó se encuentra el reporte o informe que entrega la herramienta sobre la actividad presentada en un determinado tiempo, a su vez, el filtro de información y visualización de eventos se debe realizar a traves de consultas a traves de la plataforma o al equipo de soporte en su ticketera, ya que no siempre viene dentro de la investigación la información total correspondiente al evento a revisar, provocando que tome más tiempo el analisis de una investigación. Reseña recopilada por y alojada en G2.com.

The GUI is very simple and intuitive, and alerts are accurate and usefull Reseña recopilada por y alojada en G2.com.

We integrate AWS accounts to receive GuardDuty alerts. However, when we encounter issues, resolving them is not simple, even though Cyrebro and Adexus support are always available to help. Reseña recopilada por y alojada en G2.com.

la forense es rápida y precisa, las alertas son informativas Reseña recopilada por y alojada en G2.com.

mucho falso positivo, el despliegue es lento debido a la sobrecarga del colector, los EPS son mayores de lo esperado Reseña recopilada por y alojada en G2.com.

After a few learning curves and what felt like spamming from some of our devices doing actual scans, it is very helpful to quickly rule out a known scan or service vs a rouge event that does need further investigations. Reseña recopilada por y alojada en G2.com.

What can feel like constant spamming when an known device/server/service is doing a port scan. But that would be something we might want to filter out in the future. Reseña recopilada por y alojada en G2.com.

1. Principalmente utilizo Byrebro para mis clientes que están usando plataformas como Sharepoint, AWS, 1Password y Office 365. Cyrebro ayuda a mantener las piezas esenciales de datos, incluyendo las credenciales de inicio de sesión, las variables de entorno y los informes, seguros y protegidos, y prohíbe que cualquier entidad no autorizada acceda a ellos.

2. Yo, junto con mi cliente, lo usamos a diario. Reseña recopilada por y alojada en G2.com.

1. Definitivamente hubo una curva de aprendizaje cuando primero pensamos en integrar y depender de Cyrebro para la seguridad de los activos, pero después de unas semanas, todos en el equipo comenzaron a tener una idea de ello y a hacer su vida un poco más relajada.

2. No es del gusto de todos, uno debe tener experiencia previa como experto en DevOps será quien pueda ayudarte a integrar cosas y asegurar el acceso. Reseña recopilada por y alojada en G2.com.

The UI is very intuitive and reactive, and they are allways available to answer questions. Reseña recopilada por y alojada en G2.com.

The fact we don't have access to the logs, also they remove the chat. Reseña recopilada por y alojada en G2.com.

Platform has built-in communication channels with Cyrebro staff and emphasizes communication between the customer and Cyrebro

EDIT 2024-07-03: After recent platform changes, I would also like to add how easy it is to add, edit and remove log sources now to the platform. Reseña recopilada por y alojada en G2.com.

No direct access to underlying SIEM system, although you can request specific queries to be run by Cyrebro staff.

EDIT 2024-07-03: After backend platform changes, CYREBRO has advised they will be introducing the ability to query stored logs directly. Looking forward to this change! Reseña recopilada por y alojada en G2.com.

- receive the notification for only the alerts that need my attention

- on each alert, there are all the technical information that caused the raising of the alert

- if needed, the support team helps to analyze the alert

- I can connect several types of object to Cyrebro Reseña recopilada por y alojada en G2.com.

-the implementation of a DLC takes time

- in the dashboard, there is no visibility of the usage of the number of licenses Reseña recopilada por y alojada en G2.com.