# Best Managed Detection and Response (MDR) Software *By [Lauren Worth](https://research.g2.com/insights/author/lauren-worth)* Managed detection and response (MDR) software provides security monitoring and mitigation solutions for businesses. MDR providers proactively monitor their customers’ networks, endpoints, and other IT resources for security incidents. Upon detection of threats, the MDR provider will investigate and resolve issues without requiring direct response from their client. Companies use MDR services to protect themselves against web-based threats without requiring the use of dedicated onsite security staff. MDR is conceptually related to both [incident response software](https://www.g2.com/categories/incident-response) and [endpoint detection and response software](https://www.g2.com/categories/endpoint-detection-response-edr). However, MDR software solves the same issues in the form of a managed service. They require less hands-on work for businesses and provide peace of mind without additional staffing and security solutions. To qualify for inclusion in the Managed Detection and Response (MDR) category, a product must: - Monitor client networks, endpoints, and the cloud for security incidents - Resolve threats on the client’s behalf - Provide these managed services without the need for client assistance ## Best Managed Detection and Response (MDR) Software At A Glance - **Leader:** [Sophos MDR](https://www.g2.com/products/sophos-mdr/reviews) - **Highest Performer:** [Blackpoint Cyber](https://www.g2.com/products/blackpoint-cyber/reviews) - **Easiest to Use:** [Huntress Managed EDR](https://www.g2.com/products/huntress-managed-edr/reviews) - **Top Trending:** [Huntress Managed ITDR](https://www.g2.com/products/huntress-managed-itdr/reviews) - **Best Free Software:** [Huntress Managed EDR](https://www.g2.com/products/huntress-managed-edr/reviews) --- **Sponsored** ### Deepwatch Deepwatch is the leader in Precision MDR powered by AI and humans. We amplify human expertise with AI insights to reduce the risks that matter most to your business. Unlike one-size-fits-all MDR, Deepwatch delivers protection that is comprehensive, custom, clear, and ceaseless—stopping threats before and after they emerge with tailored responses at every step. Deepwatch is tuned to each customer’s environment, trained on their priorities and the stack they’ve invested in to strengthen defenses and focus on what matters most. There are no black boxes—customers get clarity on every detection, decision, and data source, along with the name of the analyst behind it. Around-the-clock protection is delivered by security experts who act on real-time threats, powered by AI. Visit Deepwatch.com. Always Watching. Always Protecting. Deepwatch is: - Named to CRNs 2025 Security 100 List - Global INFOSEC Awards Winner 2024 - Splunk AMER Marketing Partner of the Year 2023 - CRN Tech Innovators Winner 2023 - Great Place to Work® Certified 2020-2025 - Forbes 2023-2024 Best Startup Employers - Equity Investments and Strategic Financing from Springcoast Capital Partners, Splunk Ventures and Vista Credit Partners: $180 million in 2023 - Goldman Sachs portfolio company: $53m Series B investment 2020 [Book a Demo](https://www.g2.com/external_clickthroughs/record?secure%5Bad_program%5D=ppc&secure%5Bad_slot%5D=category_product_list&secure%5Bcategory_id%5D=1797&secure%5Bdisplayable_resource_id%5D=1797&secure%5Bdisplayable_resource_type%5D=Category&secure%5Bmedium%5D=sponsored&secure%5Bplacement_reason%5D=page_category&secure%5Bplacement_resource_ids%5D%5B%5D=1797&secure%5Bprioritized%5D=false&secure%5Bproduct_id%5D=108062&secure%5Bresource_id%5D=1797&secure%5Bresource_type%5D=Category&secure%5Bsource_type%5D=category_page&secure%5Bsource_url%5D=https%3A%2F%2Fwww.g2.com%2Fcategories%2Fmanaged-detection-and-response-mdr&secure%5Btoken%5D=380a083e4809202df418d6a3a658eb59edcb5dcfa7c519906741ac4ada4f3d45&secure%5Burl%5D=https%3A%2F%2Fwww.deepwatch.com%2Fplatform%2Fg2&secure%5Burl_type%5D=book_demo) --- ## Top-Rated Products (Ranked by G2 Score) ### 1. [Sophos MDR](https://www.g2.com/products/sophos-mdr/reviews) Sophos Managed Detection and Response (MDR) is a fully managed service delivered by experts who detect and respond to cyberattacks targeting your computers, servers, networks, cloud workloads, email accounts, backups, and more. Our highly skilled security analysts stop advanced human-led attacks and take immediate action to neutralize threats before they can disrupt your business operations or compromise your sensitive data. **Average Rating:** 4.7/5.0 **Total Reviews:** 499 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.5/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.4/10 (Category avg: 9.0/10) - **Automated remediation:** 9.1/10 (Category avg: 8.6/10) - **Automated investigation:** 9.2/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Sophos](https://www.g2.com/sellers/sophos) - **Company Website:** https://www.sophos.com/ - **Year Founded:** 1985 - **HQ Location:** Oxfordshire - **Twitter:** @Sophos (36,719 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/5053/ (5,561 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** IT Manager, IT Director - **Top Industries:** Information Technology and Services, Manufacturing - **Company Size:** 63% Mid-Market, 21% Enterprise #### Pros & Cons **Pros:** - Threat Detection (22 reviews) - Continuous Monitoring (21 reviews) - Ease of Use (21 reviews) - Peace of Mind (13 reviews) - Response Time (13 reviews) **Cons:** - Expensive (8 reviews) - Communication Issues (7 reviews) - Limited Customization (7 reviews) - Integration Issues (6 reviews) - Poor Reporting (6 reviews) ### 2. [Acronis Cyber Protect Cloud](https://www.g2.com/products/acronis-cyber-protect-cloud/reviews) Acronis delivers the world’s most complete cyber resilience platform, combining backup, disaster recovery, cybersecurity, RMM, and business operations tools into a single, natively integrated solution. Built specifically for Managed Service Providers (MSPs) and IT teams, Acronis simplifies operations with one agent, one console, and one license model. Automation, AI-driven insights, and multi-tenant management ensure that fewer technicians can manage more clients at lower cost. With predictable pricing and transparent billing, Acronis enables partners and IT teams to scale efficiently, comply with regulations, and deliver unmatched resilience. No other vendor delivers this level of integration, efficiency, and MSP alignment. Acronis Cyber Protect Cloud unites backup and next-generation, AI-based anti-malware, antivirus, and endpoint protection management in one solution. Integration and automation provide unmatched ease for service providers — reducing complexity while increasing productivity and decreasing operating costs. Acronis Cyber Protect Cloud is the single service provider solution that combines backup, anti-malware (including anti-virus, anti-ransomware, and anti-cryptojacking) and security and management capabilities such as vulnerability assessments, patch management, URL filtering and more. Now, service providers can eliminate complexity and make security a centerpiece of their offerings while increasing SLAs, decreasing churn, and generating more recurring revenue. Get upgraded security with integrated AI-based defenses that protect clients from modern threats, make smarter use of resources so your team can focus on clients, and earn new recurring revenue and higher margins that strengthen your business. Enriched with next-gen, full-stack anti-malware protection and comprehensive yet simple management tools, built on top of our industry-leading backup and data recovery solution, Acronis Cyber Protect Cloud simplifies onboarding, daily operations, and reporting, and combats advanced attacks with new use cases enabled by integration. Acronis Cyber Protect Cloud makes it easy to deliver the modern cyber protection your clients seek. Acronis is majority-owned by EQT. **Average Rating:** 4.7/5.0 **Total Reviews:** 1,254 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 10.0/10 (Category avg: 9.0/10) - **Automated remediation:** 10.0/10 (Category avg: 8.6/10) - **Automated investigation:** 10.0/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Acronis](https://www.g2.com/sellers/acronis) - **Company Website:** https://www.acronis.com/ - **Year Founded:** 2003 - **HQ Location:** Schaffhausen - **Twitter:** @acronis (94,647 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/13179/ (1,917 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** Director, CEO - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 68% Small-Business, 28% Mid-Market #### Pros & Cons **Pros:** - Ease of Use (217 reviews) - Backup Solutions (213 reviews) - Backup Ease (169 reviews) - Protection (159 reviews) - Security (158 reviews) **Cons:** - Slow Performance (77 reviews) - Expensive (65 reviews) - Complexity (53 reviews) - Poor Customer Support (50 reviews) - Backup Issues (41 reviews) ### 3. [Huntress Managed EDR](https://www.g2.com/products/huntress-managed-edr/reviews) At Huntress, we believe that enterprise-grade endpoint security shouldn’t just be for big security teams with the most resources. When basic defenses don't cut it, Huntress Managed EDR levels the cybersecurity playing field with a solution for ALL businesses. Our comprehensive platform combines fully-owned technology with expert oversight, including 24/7 monitoring by a team of expert hunters specializing in wrecking hackers day in and day out. Our focus is on hitting hackers when and where it matters most, so we filter out the noise of false positives and only alert you on real threats. And if hackers breach your defenses, we isolate and eliminate those threats for you with speed and precision. With Huntress, you’re not just keeping pace—you’re leveling up to world-class endpoint security. Huntress gives organizations of all sizes a top EDR solution with the ease of use security teams actually need so they can sleep at night knowing they're protected. **Average Rating:** 4.9/5.0 **Total Reviews:** 866 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.6/10 (Category avg: 9.0/10) - **Automated remediation:** 9.3/10 (Category avg: 8.6/10) - **Automated investigation:** 9.5/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Huntress Labs](https://www.g2.com/sellers/huntress-labs) - **Company Website:** https://huntress.com - **Year Founded:** 2015 - **HQ Location:** Ellicott City, US - **Twitter:** @HuntressLabs (39,834 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/10172550/ (859 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** Owner, President - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 79% Small-Business, 17% Mid-Market #### Pros & Cons **Pros:** - Customer Support (158 reviews) - Ease of Use (125 reviews) - Threat Detection (92 reviews) - Protection (75 reviews) - Continuous Monitoring (70 reviews) **Cons:** - Improvements Needed (20 reviews) - Lack of Customization (17 reviews) - Poor Reporting (17 reviews) - Alert Issues (15 reviews) - Integration Issues (15 reviews) ### 4. [Arctic Wolf](https://www.g2.com/products/arctic-wolf/reviews) Arctic Wolf® is the market leader in security operations. Using the cloud-native Arctic Wolf® Platform, we help organizations end cyber risk by providing security operations as a concierge service. Arctic Wolf solutions include Arctic Wolf® Managed Detection and Response (MDR), Managed Risk, and Managed Security Awareness —each delivered by the industry’s original Concierge Security® Team. Highly-trained Concierge Security experts work as an extension of internal teams to provide 24x7 monitoring, detection, and response, as well as ongoing risk management to give organizations the protection, resilience and guidance they need to defend against cyber threats. Visit arcticwolf.com to get the latest industry resources and learn more about our solutions. **Average Rating:** 4.7/5.0 **Total Reviews:** 273 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.5/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.2/10 (Category avg: 9.0/10) - **Automated remediation:** 8.3/10 (Category avg: 8.6/10) - **Automated investigation:** 9.0/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Arctic Wolf Networks](https://www.g2.com/sellers/arctic-wolf-networks) - **Company Website:** https://www.arcticwolf.com - **Year Founded:** 2012 - **HQ Location:** Eden Prairie, MN - **Twitter:** @AWNetworks (4,461 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2760138/ (3,382 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** IT Manager, IT Director - **Top Industries:** Hospital & Health Care, Information Technology and Services - **Company Size:** 71% Mid-Market, 20% Enterprise #### Pros & Cons **Pros:** - Customer Support (58 reviews) - Threat Detection (47 reviews) - Cybersecurity (28 reviews) - Ease of Use (27 reviews) - Alerts (22 reviews) **Cons:** - Expensive (10 reviews) - False Positives (7 reviews) - Learning Curve (7 reviews) - Cybersecurity Risks (6 reviews) - Dashboard Issues (5 reviews) ### 5. [CrowdStrike Falcon Endpoint Protection Platform](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) Organizations today face a serious challenge: managing numerous security vendors and tools while confronting an ever-evolving threat landscape. Sophisticated adversaries are becoming smarter, faster, and more evasive, launching complex attacks that can strike in minutes or even seconds. Traditional security approaches struggle to keep pace, leaving businesses vulnerable. The CrowdStrike Falcon Platform addresses this by offering a unified, cloud-native solution. It consolidates previously siloed security solutions and incorporates third-party data into a single platform with one efficient and resource-conscious agent, leveraging advanced AI and real-time threat intelligence. This approach simplifies security operations, speeds analyst decision making, and enhances protection to stop the breach, allowing organizations to reduce risk with less complexity and lower costs. CrowdStrike's Falcon Platform includes: - Endpoint Security: Secure the endpoint, stop the breach - Identify Protection: Identity is the front line, defend it - Next-Gen SIEM: The future of SIEM, today - Data Protection: Real-time data protection from endpoint to cloud - Exposure Management: Understand risk to stop breaches - Charlotte AI: Powering the next evolution of the SOC **Average Rating:** 4.7/5.0 **Total Reviews:** 364 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.2/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.0/10 (Category avg: 9.0/10) - **Automated remediation:** 9.3/10 (Category avg: 8.6/10) - **Automated investigation:** 9.0/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [CrowdStrike](https://www.g2.com/sellers/crowdstrike) - **Company Website:** https://www.crowdstrike.com - **Year Founded:** 2011 - **HQ Location:** Sunnyvale, CA - **Twitter:** @CrowdStrike (110,002 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/2497653/ (11,258 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** Security Analyst, Cyber Security Analyst - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 46% Enterprise, 42% Mid-Market #### Pros & Cons **Pros:** - Features (112 reviews) - Threat Detection (102 reviews) - Ease of Use (97 reviews) - Security (96 reviews) - Detection (85 reviews) **Cons:** - Expensive (54 reviews) - Complexity (39 reviews) - Learning Curve (35 reviews) - Limited Features (31 reviews) - Pricing Issues (29 reviews) ### 6. [eSentire](https://www.g2.com/products/esentire/reviews) eSentire, Inc., the Authority in Managed Detection and Response (MDR), protects the critical data and applications of 2000+ organizations in 80+ countries, across 35 industries from known and unknown cyber threats by providing Continuous Threat Exposure Management, Managed Detection and Response and Incident Response services designed to build an organization’s cyber resilience & prevent business disruption. Founded in 2001, eSentire protects the world’s most targeted organizations with 65% of its global base recognized as critical infrastructure, vital to economic health and stability. By combining open XDR platform technology, 24/7 threat hunting, and proven security operations leadership, eSentire's award-winning MDR services and team of experts help organizations anticipate, withstand and recover from cyberattacks. For more information, visit www.esentire.com and follow @eSentire. **Average Rating:** 4.6/5.0 **Total Reviews:** 282 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.1/10 (Category avg: 9.0/10) - **Automated remediation:** 8.5/10 (Category avg: 8.6/10) - **Automated investigation:** 8.9/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [eSentire](https://www.g2.com/sellers/esentire) - **Company Website:** https://www.esentire.com - **Year Founded:** 2001 - **HQ Location:** Waterloo, Ontario - **Twitter:** @eSentire (6,444 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/150760/ (603 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** IT Manager, CTO - **Top Industries:** Financial Services, Legal Services - **Company Size:** 58% Mid-Market, 23% Enterprise #### Pros & Cons **Pros:** - Response Time (32 reviews) - Customer Support (26 reviews) - SOC Services (21 reviews) - Staff Expertise (21 reviews) - Continuous Monitoring (18 reviews) **Cons:** - Communication Issues (17 reviews) - Inefficient Alert System (9 reviews) - Expensive (8 reviews) - Portal Issues (8 reviews) - Poor Reporting (6 reviews) ### 7. [ESET PROTECT](https://www.g2.com/products/eset-protect/reviews) Stay one step ahead of known and emerging cyber threats with our AI-native, prevention-first approach. ESET combines the power of AI and human expertise to make protection easy and effective. Experience best-in-class protection thanks to our in-house global cyber threat intelligence, compiled and examined for over 30 years, which drives our extensive R&D network led by industry-acclaimed researchers. ESET PROTECT, our cloud-first XDR cybersecurity platform combines next-gen prevention, detection, and proactive threat hunting capabilities. ESET's highly customizable solutions include local support and have minimal impact on performance, identify and neutralize known and emerging threats before they can be executed, support business continuity, and reduce the cost of implementation and management. HOW YOUR ORGANIZATION WILL BENEFIT - Improved protection against ransomware and zero-day threats via cloud-based sandboxing technology. - Helps comply with data regulations thanks to full disk encryption capabilities on Windows and macOS. - Easily accessible ESET PROTECT console improves TCO of security management. - Single-pane-of-glass remote management for visibility of threats, users, and quarantined items. - Company endpoints and mobiles are protected via advanced multilayered technology, now with brute-force attack protection. **Average Rating:** 4.6/5.0 **Total Reviews:** 936 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 8.9/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.8/10 (Category avg: 9.0/10) - **Automated remediation:** 9.9/10 (Category avg: 8.6/10) - **Automated investigation:** 9.6/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [ESET](https://www.g2.com/sellers/eset) - **Company Website:** https://www.eset.com - **Year Founded:** 1992 - **HQ Location:** Bratislava, Slovak Republic - **Twitter:** @ESET (276,178 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/28967/ (1,944 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** IT Manager, Network Administrator - **Top Industries:** Information Technology and Services, Computer Software - **Company Size:** 47% Mid-Market, 47% Small-Business #### Pros & Cons **Pros:** - Ease of Use (92 reviews) - Protection (76 reviews) - Reliability (68 reviews) - Security (61 reviews) - Centralized Management (56 reviews) **Cons:** - Learning Curve (32 reviews) - Difficult Configuration (31 reviews) - Not User-Friendly (25 reviews) - Lack of Clarity (23 reviews) - Difficult Navigation (20 reviews) ### 8. [Red Canary](https://www.g2.com/products/red-canary/reviews) Red Canary provides managed detection and response (MDR), finding and stopping threats before business impact. You get a security operations platform and 24x7 service that proactively monitors for malicious and suspicious behaviors and responds to stop them from becoming serious security incidents. MDR services complement and enhance your SOC, operating as a trusted partner, offering the expertise, tools, and support needed to strengthen your overall security posture. The platform works using several key components: Your existing endpoint and cloud workload sensors/agents Alert collectors and integrations with your alert-generating security products Integrations with your cloud service providers, identity platforms, and SaaS applications Cloud-hosted collection, detection, and response platforms Our Cyber Incident Response Team (CIRT) Our Threat Hunting team The sensors already running on the endpoints and cloud workloads that make up your corporate and production environments collect detailed telemetry about what is happening in those systems. The telemetry and alerts from your cloud service provider, identity platforms, SaaS applications, and other security products are both sent to our cloud-hosted platform. This allows our CIRT to perform analysis of that data to identify and confirm suspicious activity and security incidents. The security orchestration and response capabilities can execute automations using playbooks on endpoints for response and remediation. Our unique combination of detection-as-code detection engineering, proactive threat hunting, and agentic AI uncovers critical threats deep within your environment before they cause harm. Our renowned in-house intelligence team provides tactical insights tailored to your unique environment, helping you understand the adversaries you face, their specific tactics, and how to stop them. Red Canary enables 10X faster response to threats, helping you slash your mean time to respond (MTTR) by detecting threats early, investigating with precision, and enabling rapid containment, both expert-led and automated. Red Canary helps get more value from your existing tech stack continuously analyzing data across identities, endpoint, and cloud. **Average Rating:** 4.7/5.0 **Total Reviews:** 127 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 8.7/10 (Category avg: 9.0/10) - **Automated remediation:** 8.8/10 (Category avg: 8.6/10) - **Automated investigation:** 8.8/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Red Canary](https://www.g2.com/sellers/red-canary) - **Company Website:** https://redcanary.com - **Year Founded:** 2013 - **HQ Location:** Denver, Colorado - **Twitter:** @redcanary (29,959 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/3621373 (386 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** Security Analyst, Security Engineer - **Top Industries:** Financial Services, Manufacturing - **Company Size:** 57% Enterprise, 38% Mid-Market #### Pros & Cons **Pros:** - Customer Support (40 reviews) - Threat Detection (26 reviews) - Reliability (20 reviews) - Alert Management (16 reviews) - Features (15 reviews) **Cons:** - Inefficient Alert System (13 reviews) - Communication Issues (7 reviews) - Expensive (6 reviews) - Difficult Navigation (4 reviews) - Integration Issues (4 reviews) ### 9. [ThreatDown](https://www.g2.com/products/threatdown/reviews) ThreatDown solutions simplify endpoint security by combining Malwarebytes’ award-winning detection and remediation with quick deployment in an easy user-interface – to protect people, devices, and data in minutes. The ThreatDown product line is enriched by Malwarebytes global threat intelligence, its patented remediation engine that removes every trace of malware to prevent reinfection, and its nearly two decades of experience detecting and remediating threats. With one agent and one console, ThreatDown solutions are purpose-built to simplify cybersecurity for organizations with limited IT resources. ThreatDown solutions bundle technology with services to streamline security and provide robust protection that’s efficient and cost-effective. With a channel-first mindset across the globe, we empower our partners to help resource-constrained IT organizations. ThreatDown Solutions: ThreatDown MDR (managed detection and response) combines Malwarebytes’ renowned detection, with AI-powered engines, and around-the-clock human intervention to streamline security and allow organizations to focus on business growth. ThreatDown MDR simply and effectively closes your security resources gap, reduces your risk of unknown threats, and increases your security efficiency exponentially. ThreatDown EDR (endpoint detection and response) is enriched by Malwarebytes global threat intelligence and its patented remediation engine that removes every trace of malware to prevent reinfection. It provides protection against a range of threats, including malware, ransomware, zero-day exploits, phishing, and other threats with a suite of tools to detect, investigate and contain even the stealthiest human-operated attacks that bypass prevention layers. Seven-day ransomware rollback ensures organizations can turn the clock back on attacks and restore systems. ThreatDown Security Advisor provides customers with a security score to illustrate their current level of protection, offers guidance on how to make improvements and enables them to take immediate action. ThreatDown Bundles: ThreatDown Core is a complete malware prevention solution with vulnerability assessment and application blocking. It features our award-winning prevention technologies, visibility to assess your risk for vulnerability exploits (one of the most common attack vectors), and the blocking of malicious and unwanted applications. ThreatDown Advanced includes award-winning technologies such as endpoint detection and response, ransomware rollback, patch management, and managed threat hunting to appreciably enhance endpoint security. ThreatDown Elite is purpose-built for organizations with small (to non-existent) security teams that lack the resources to address all security alerts. Beyond the Advanced bundle, Elite includes 24x7x365 expert-managed detection and response. ThreatDown Ultimate includes the technologies and human expertise you need for comprehensive protection wrapped up and delivered as a single, hassle-free solution. Ultimate also includes easy-to-use, website content filtering (DNS Filtering). For Partners Our multi-tenant ThreatDown OneView platform enables MSPs and IT admins to streamline operations with centralized management of customer endpoints, license subscriptions, reporting, and global policies. With products and services like Endpoint Detection and Response (EDR), Managed Detection and Response (MDR) and the rest of our technologies in our portfolio, partners can offer the right product or service to each customer, tailored to their specific needs. Find out more about our partner program at https://www.threatdown.com/partner-program. **Average Rating:** 4.6/5.0 **Total Reviews:** 1,040 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.2/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.2/10 (Category avg: 9.0/10) - **Automated remediation:** 9.1/10 (Category avg: 8.6/10) - **Automated investigation:** 9.1/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Malwarebytes](https://www.g2.com/sellers/malwarebytes) - **Company Website:** https://www.malwarebytes.com - **Year Founded:** 2008 - **HQ Location:** Santa Clara, CA - **Twitter:** @Malwarebytes (87,362 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/malwarebytes/ (613 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** IT Manager, Owner - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 48% Small-Business, 41% Mid-Market #### Pros & Cons **Pros:** - Ease of Use (99 reviews) - Features (68 reviews) - Security (59 reviews) - Threat Detection (56 reviews) - Customer Support (54 reviews) **Cons:** - Poor Customer Support (23 reviews) - Lack of Clarity (22 reviews) - Missing Features (20 reviews) - False Positives (18 reviews) - Communication Issues (16 reviews) ### 10. [Huntress Managed ITDR](https://www.g2.com/products/huntress-managed-itdr/reviews) Hackers aren’t wasting time breaking into your networks the hard way—they’re using infostealers to grab credentials, session cookies, and access tokens in seconds. Huntress Managed ITDR is designed for this always-evolving threat landscape. With a 3-minute mean time to respond (MTTR) and a low false positive rate, Huntress stops real threats before they wreck your business. Built to support organizations of ALL sizes, Huntress Managed ITDR closes blind spots across your workflows and shuts down avenues attackers rely on. Our enterprise-grade solution gives you continuous monitoring for identity-based threats, rapid detection of unauthorized access, location-based and VPN/tunnel/proxy anomalies, and fast response to suspicious activities like rogue applications, shadow workflows, and business email compromise (BEC) scams. By focusing on protecting user credentials and session tokens, Huntress keeps your organization's digital identities safe, even as attackers develop sneakier tactics. **Average Rating:** 4.8/5.0 **Total Reviews:** 82 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.8/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.5/10 (Category avg: 9.0/10) - **Automated remediation:** 9.6/10 (Category avg: 8.6/10) - **Automated investigation:** 9.6/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Huntress Labs](https://www.g2.com/sellers/huntress-labs) - **Company Website:** https://huntress.com - **Year Founded:** 2015 - **HQ Location:** Ellicott City, US - **Twitter:** @HuntressLabs (39,834 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/10172550/ (859 employees on LinkedIn®) **Reviewer Demographics:** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 79% Small-Business, 15% Mid-Market #### Pros & Cons **Pros:** - Continuous Monitoring (23 reviews) - Threat Detection (22 reviews) - Alert Management (12 reviews) - Easy Integrations (12 reviews) - Customer Support (11 reviews) **Cons:** - Inadequate Detection (5 reviews) - Inefficient Alert System (5 reviews) - Limited Control (4 reviews) - Portal Issues (4 reviews) - UX Improvement (4 reviews) ### 11. [Blackpoint Cyber](https://www.g2.com/products/blackpoint-cyber/reviews) Blackpoint Cyber is the forerunner in the managed detection and response space, leveraging our proprietary ecosystem to help our partners fight back and win against cyberthreats. We have served the community since 2014 and proudly continue to safeguard businesses around the world. We believe that no one should go alone into the unfair fight. At Blackpoint, our team strives to provide unified, 24/7 detection to help you take out your adversaries before they can even see us coming. **Average Rating:** 4.7/5.0 **Total Reviews:** 257 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.4/10 (Category avg: 9.0/10) - **Automated remediation:** 9.0/10 (Category avg: 8.6/10) - **Automated investigation:** 9.2/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Blackpoint Cyber](https://www.g2.com/sellers/blackpoint-cyber) - **Year Founded:** 2014 - **HQ Location:** Denver, Colorado, United States - **Twitter:** @blackpointus (1,524 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/9381059/ (195 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** President, Owner - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 82% Small-Business, 17% Mid-Market #### Pros & Cons **Pros:** - Customer Support (19 reviews) - Threat Detection (17 reviews) - Deployment Ease (14 reviews) - Setup Ease (13 reviews) - SOC Services (13 reviews) **Cons:** - Expensive (5 reviews) - Integration Issues (5 reviews) - Poor Reporting (5 reviews) - Portal Issues (5 reviews) - Difficult Navigation (3 reviews) ### 12. [Cynet](https://www.g2.com/products/cynet/reviews) Cynet is the unified, AI-powered cybersecurity platform that delivers robust and comprehensive protection for security teams while maximizing operational efficiency for managed service providers (MSPs). This platform consolidates a wide array of security capabilities into a single, user-friendly interface, ensuring that organizations can effectively safeguard their digital assets without the complexity often associated with multi-solution environments. Cynet’s platform simplifies security management by integrating various functionalities, such as endpoint protection, threat detection, and incident response, into one cohesive system. This integration not only streamlines operations but also allows organizations to allocate their resources more effectively, ultimately enhancing their overall security posture. One of the standout features of Cynet’s platform is its remarkable performance in the MITRE ATT&CK Evaluations. Cynet delivered 100% visibility and 100% analytic coverage without requiring any configuration changes three years in a row. This capability ensures that organizations can monitor their environments comprehensively and respond to threats with precision. The platform’s built-in analytics and reporting tools provide actionable insights, enabling users to make informed decisions about their cybersecurity strategies. Additionally, Cynet offers 24/7 expert support, which is crucial for organizations that may not have in-house cybersecurity expertise. This round-the-clock assistance ensures that users can quickly address any security incidents or concerns, minimizing potential downtime and damage. The combination of advanced technology and dedicated support positions Cynet as a valuable partner for SMEs and service providers looking to enhance their cybersecurity measures. In summary, Cynet’s unified, AI-powered cybersecurity platform stands out in the crowded cybersecurity market by offering a unified solution tailored to the needs of MSPs. Its comprehensive features, exceptional performance in industry evaluations, and continuous expert support make it a compelling choice for organizations seeking to bolster their cybersecurity defenses while maintaining operational efficiency. **Average Rating:** 4.7/5.0 **Total Reviews:** 208 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.5/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.3/10 (Category avg: 9.0/10) - **Automated remediation:** 9.4/10 (Category avg: 8.6/10) - **Automated investigation:** 9.3/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Cynet](https://www.g2.com/sellers/cynet) - **Company Website:** https://www.cynet.com/ - **Year Founded:** 2014 - **HQ Location:** Boston, MA - **LinkedIn® Page:** https://www.linkedin.com/company/cynet-security/ (329 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** SOC Analyst, Technical Engineer - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 58% Mid-Market, 30% Small-Business #### Pros & Cons **Pros:** - Ease of Use (48 reviews) - Features (36 reviews) - Threat Detection (34 reviews) - Customer Support (32 reviews) - Security (31 reviews) **Cons:** - Limited Customization (11 reviews) - Feature Limitations (10 reviews) - Lack of Customization (10 reviews) - Limited Features (10 reviews) - Missing Features (10 reviews) ### 13. [ThreatLocker Platform](https://www.g2.com/products/threatlocker-platform/reviews) ThreatLocker is a global leading Zero Trust Platform designed to empower organizations by providing them with the ability to control which applications are permitted to run on their networks. This suite of security tools is tailored for a wide range of users, including businesses, government agencies, and academic institutions, all of whom face the increasing threat of cybercrime. By enabling users to manage application execution, ThreatLocker aims to create a secure environment where organizations can operate without the looming fear of malware and other cyber threats. The ThreatLocker suite stands out in the cybersecurity landscape due to its focus on application whitelisting, a proactive approach that allows organizations to define and enforce policies on what software can be executed. This feature is particularly beneficial for organizations that require stringent security measures, as it minimizes the risk of unauthorized applications compromising sensitive data. The solution is designed for IT administrators who seek to enhance their network security posture while maintaining operational efficiency. One of the key features of ThreatLocker is its ability to provide real-time visibility and control over application behavior. This allows organizations to monitor application usage and detect any suspicious activities that may indicate a potential threat. Additionally, ThreatLocker offers customizable policies that can be tailored to meet the specific needs of different departments or user groups within an organization, ensuring that security measures align with operational requirements. Another significant benefit of ThreatLocker is its user-friendly interface, which simplifies the management of security policies. This accessibility enables IT teams to implement and adjust security measures without extensive training or expertise in cybersecurity. Furthermore, ThreatLocker is backed by a team of experienced cybersecurity professionals who continuously update and enhance the platform to address emerging threats and vulnerabilities. In essence, ThreatLocker provides organizations with the tools they need to take control of their cybersecurity strategy. By focusing on application control and offering robust monitoring capabilities, ThreatLocker helps organizations mitigate risks associated with cyber threats while fostering a secure environment for their operations. This innovative approach to cybersecurity empowers users to navigate their digital landscape confidently, free from the influence of cybercriminals. **Average Rating:** 4.8/5.0 **Total Reviews:** 472 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.7/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 8.8/10 (Category avg: 9.0/10) - **Automated remediation:** 8.3/10 (Category avg: 8.6/10) - **Automated investigation:** 8.2/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Threatlocker Inc](https://www.g2.com/sellers/threatlocker-inc) - **Company Website:** https://www.threatlocker.com - **Year Founded:** 2017 - **HQ Location:** Orlando, Florida, United States - **Twitter:** @ThreatLocker (2,733 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/65512111/ (686 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** President, CEO - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 54% Small-Business, 33% Mid-Market #### Pros & Cons **Pros:** - Customer Support (92 reviews) - Threat Detection (87 reviews) - Ease of Use (75 reviews) - Security (71 reviews) - Protection (69 reviews) **Cons:** - Learning Curve (44 reviews) - Difficult Learning Curve (30 reviews) - Difficult Configuration (16 reviews) - Difficult Navigation (14 reviews) - Training Required (13 reviews) ### 14. [Guardz](https://www.g2.com/products/guardz/reviews) Guardz is the unified cybersecurity platform purpose-built for MSPs. We consolidate the essential security controls, including identities, endpoints, email, awareness, and more, into one AI-native framework designed for operational efficiency. Our identity-centric approach connects the dots across vectors, reducing the gaps that siloed tools leave behind so MSPs can respond to user risk in real time. With 24/7 AI + human-led MDR, Guardz utilizes agentic AI to triage at machine speed while expert analysts validate, mitigate, and guide response, giving MSPs scalable protection without adding headcount. **Average Rating:** 4.6/5.0 **Total Reviews:** 107 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 8.9/10 (Category avg: 9.0/10) - **Automated remediation:** 8.8/10 (Category avg: 8.6/10) - **Automated investigation:** 8.4/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Guardz](https://www.g2.com/sellers/guardz) - **Company Website:** https://guardz.com/ - **Year Founded:** 2022 - **HQ Location:** Tel Aviv, IL - **Twitter:** @GuardzCyber (108 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/guardz/ (153 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** Owner, Manager - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 73% Small-Business, 21% Mid-Market #### Pros & Cons **Pros:** - Ease of Use (58 reviews) - Security (49 reviews) - Features (37 reviews) - Easy Setup (28 reviews) - Threat Detection (28 reviews) **Cons:** - Limited Features (13 reviews) - Integration Issues (8 reviews) - Lack of Features (8 reviews) - Limited Customization (8 reviews) - Insufficient Information (7 reviews) ### 15. [Secureworks Taegis MDR](https://www.g2.com/products/secureworks-taegis-mdr/reviews) Secureworks® Taegis™ MDR is an industry-leading solution that harnesses the power of AI with human expertise to deliver 24/7 threat monitoring, detection, investigation, and response capabilities. By integrating security telemetry from hundreds of sources, customers can maximize their current security investments and see more, detect better, and respond faster. Delivered on top of the open Taegis XDR platform, the solution provides comprehensive coverage across the entire attack surface - endpoints, network, cloud, email, identity, OT and business applications – and customers have access to the same console as Secureworks security experts, who they are able to reach within 90 seconds through live chat. **Average Rating:** 4.6/5.0 **Total Reviews:** 48 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.1/10 (Category avg: 9.0/10) - **Automated remediation:** 8.0/10 (Category avg: 8.6/10) - **Automated investigation:** 8.6/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Sophos](https://www.g2.com/sellers/sophos) - **Year Founded:** 1985 - **HQ Location:** Oxfordshire - **Twitter:** @Sophos (36,719 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/5053/ (5,561 employees on LinkedIn®) - **Ownership:** LSE:SOPH **Reviewer Demographics:** - **Top Industries:** Financial Services, Computer & Network Security - **Company Size:** 52% Mid-Market, 38% Enterprise #### Pros & Cons **Pros:** - Immediate Response (2 reviews) - 24/7 Availability (1 reviews) - Customer Support (1 reviews) - Dashboard Usability (1 reviews) - Easy Integrations (1 reviews) **Cons:** - Difficult Navigation (1 reviews) - Implementation Challenges (1 reviews) - Integration Issues (1 reviews) - Learning Curve (1 reviews) - Limited Features (1 reviews) ### 16. [Todyl Security Platform](https://www.g2.com/products/todyl-security-platform/reviews) Todyl empowers businesses of any size with a complete, end-to-end security program. The Todyl Security Platform converges SASE, SIEM, Endpoint Security, GRC, MXDR, and more into a cloud-native, single-agent platform purpose-built for MSPs, MSSPs, and Mid-Market IT professionals. Each module is designed to be deployed in a targeted, agile approach to meet any use case. When all modules are combined, our platform becomes a comprehensive security solution that is cloud-first, globally accessible, and features a highly intuitive interface. With Todyl, your security stack becomes one comprehensive, consolidated, and customizable platform, making security more intuitive and streamlined to combat modern threats. Our platform helps to eliminate the complexity, cost, and operational overhead traditional approaches to cybersecurity require, empowering teams with the capabilities they need to protect, detect, and respond to cyberattacks. **Average Rating:** 4.6/5.0 **Total Reviews:** 96 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.4/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.1/10 (Category avg: 9.0/10) - **Automated remediation:** 8.5/10 (Category avg: 8.6/10) - **Automated investigation:** 8.7/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Todyl](https://www.g2.com/sellers/todyl) - **Company Website:** https://www.todyl.com/ - **Year Founded:** 2015 - **HQ Location:** Denver, CO - **LinkedIn® Page:** https://www.linkedin.com/company/todylprotection (125 employees on LinkedIn®) **Reviewer Demographics:** - **Who Uses This:** President, Owner - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 73% Small-Business, 8% Mid-Market #### Pros & Cons **Pros:** - Ease of Use (64 reviews) - Customer Support (51 reviews) - Features (41 reviews) - Security (39 reviews) - Deployment Ease (35 reviews) **Cons:** - Improvements Needed (21 reviews) - Integration Issues (14 reviews) - Inadequate Reporting (12 reviews) - Limited Features (12 reviews) - Poor Reporting (12 reviews) ### 17. [Field Effect MDR](https://www.g2.com/products/field-effect-mdr/reviews) Field Effect MDR is a powerful managed detection and response (MDR) solution that delivers comprehensive cybersecurity protection for businesses of all sizes. Purpose-built by world-class security experts, Field Effect MDR combines continuous monitoring and vulnerability management, advanced threat detection, and rapid response in a single, easy-to-use platform. Field Effect MDR continuously monitors endpoints, networks, and cloud environments to identify suspicious activity before it becomes a serious incident. Backed by a fully staffed 24/7 Security Operations Center (SOC), every alert is investigated and validated by real analysts—eliminating noise, reducing false positives, and ensuring only actionable insights reach your team. With clear reporting, automated response capabilities, and expert human oversight, Field Effect MDR gives organizations the confidence to stay ahead of evolving cyber threats. Whether you manage IT internally or deliver security services to multiple clients, Field Effect MDR provides the visibility, intelligence, and response speed needed to protect critical data and maintain business continuity—all without the complexity of managing multiple tools or vendors. **Average Rating:** 4.8/5.0 **Total Reviews:** 41 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.2/10 (Category avg: 9.0/10) - **Automated remediation:** 7.6/10 (Category avg: 8.6/10) - **Automated investigation:** 9.1/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Field Effect](https://www.g2.com/sellers/field-effect) - **Company Website:** https://fieldeffect.com/ - **Year Founded:** 2016 - **HQ Location:** Ottawa - **Twitter:** @fieldeffectsoft (1,304 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/field-effect-software (148 employees on LinkedIn®) **Reviewer Demographics:** - **Top Industries:** Information Technology and Services, Computer & Network Security - **Company Size:** 50% Small-Business, 29% Mid-Market #### Pros & Cons **Pros:** - Customer Support (10 reviews) - Ease of Use (10 reviews) - Protection (7 reviews) - Threat Detection (7 reviews) - Alert Notifications (6 reviews) **Cons:** - Alert Issues (7 reviews) - Inefficient Alert System (5 reviews) - Communication Issues (4 reviews) - Insufficient Information (3 reviews) - Learning Curve (3 reviews) ### 18. [LevelBlue MTDR](https://www.g2.com/products/levelblue-mtdr/reviews) LevelBlue’s Managed Extended Detection and Response (MXDR) service delivers continuous, expert-driven protection across networks, endpoints, identities, cloud apps, and email. Backed by a 24/7 SOC, LevelBlue helps organizations rapidly realize value from existing technology investments while reducing cyber risk in complex hybrid environments. Our seasoned security engineers provide co-management for your XDR and SIEM, ensuring both are expertly managed and optimized to stay ahead of evolving threats. LevelBlue empowers your team with proprietary threat intelligence, flexible integration with existing technologies, and measurable outcomes—strengthening enterprise security and partnering with you to minimize cyber risk. Recent LevelBlue Acquisitions: - Alert Logic is a LevelBlue Co. - Trustwave is a LevelBlue Co. - Cybereason is a LevelBlue Co. **Average Rating:** 4.5/5.0 **Total Reviews:** 247 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.0/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 8.7/10 (Category avg: 9.0/10) - **Automated remediation:** 8.3/10 (Category avg: 8.6/10) - **Automated investigation:** 8.2/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [LevelBlue](https://www.g2.com/sellers/levelblue-49a2e3c1-ca90-4308-b899-08973f657bae) - **HQ Location:** Dallas, Texas, United States - **LinkedIn® Page:** https://www.linkedin.com/company/levelbluecyber/ (638 employees on LinkedIn®) **Reviewer Demographics:** - **Company Size:** 52% Mid-Market, 36% Enterprise ### 19. [ReliaQuest GreyMatter](https://www.g2.com/products/reliaquest-greymatter/reviews) ReliaQuest’s agentic AI security operations platform, GreyMatter, allows security teams to detect threats at the source, contain them in under 5 minutes, and eliminate Tier 1 and Tier 2 work for faster investigation and response. GreyMatter orchestrates 6 agentic AI personas with 200+ agent skills and 400+ AI tools to exponentially scale security operations and help organizations predict what's next. **Average Rating:** 4.6/5.0 **Total Reviews:** 12 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.2/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 8.6/10 (Category avg: 9.0/10) - **Automated remediation:** 7.9/10 (Category avg: 8.6/10) - **Automated investigation:** 8.3/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [ReliaQuest](https://www.g2.com/sellers/reliaquest) - **Company Website:** https://www.ReliaQuest.com - **Year Founded:** 2007 - **HQ Location:** Tampa, Florida, United States - **Twitter:** @ReliaQuest (2,548 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/reliaquest/ (1,145 employees on LinkedIn®) **Reviewer Demographics:** - **Company Size:** 33% Enterprise, 33% Mid-Market #### Pros & Cons **Pros:** - Features (8 reviews) - Centralized Management (7 reviews) - Customer Support (7 reviews) - Ease of Use (7 reviews) - Easy Integrations (6 reviews) **Cons:** - UX Improvement (3 reviews) - Complexity (2 reviews) - Inefficient Alert System (2 reviews) - Learning Curve (2 reviews) - Login Issues (2 reviews) ### 20. [Expel](https://www.g2.com/products/expel/reviews) Expel is the leading managed detection and response (MDR) provider trusted by some of the world’s most recognizable brands to expel their adversaries, minimize risk, and build security resilience. Expel’s 24x7x365 coverage spans the widest breadth of attack surfaces, including cloud, with 100% transparency. We combine world-class security practitioners and our AI-driven platform, Expel Workbench™, to ingest billions of events monthly and still achieve a 21-minute critical alert MTTR. Expel augments existing programs to help customers maximize their security investments and focus on building trust—with their customers, partners, and employees. Expel Managed Detection and Response delivers 24/7 decision support. We integrate with the tech you already have—across attack surfaces—to maximize your existing tech investments. Our platform automates analysis for your vendor alerts to filter out false positives. We’ll enrich the alerts that matter with context so we can resolve them with an average alert-to-fix of 21 minutes for critical alerts. Expel Threat Hunting provides peace of mind that your environment is secure and your defenses are optimized. Expel identifies attacks your automated detections missed, while providing insights that enable a stronger defensive strategy. You get clear guidance on how you can improve your defenses from a dedicated team of experts, without the strain on internal teams. Expel Vulnerability Prioritization accelerates your remediation process by letting you know exactly which vulnerabilities pose the greatest risk, with recommendations on next steps for immediate action. Expel Phishing takes complete ownership of your phishing inbox and provides remediation and guidance when threats enter via this critical attack vector. Unique data from your security technology helps Expel monitor and remove phishing emails from your inbox as well as protecting your entire environment from these attacks. **Average Rating:** 4.6/5.0 **Total Reviews:** 74 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.3/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 8.2/10 (Category avg: 9.0/10) - **Automated remediation:** 8.1/10 (Category avg: 8.6/10) - **Automated investigation:** 9.0/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Expel](https://www.g2.com/sellers/expel) - **Company Website:** https://www.expel.com - **Year Founded:** 2016 - **HQ Location:** Herndon, Virginia - **Twitter:** @ExpelSecurity (12,715 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/expel/ (487 employees on LinkedIn®) **Reviewer Demographics:** - **Top Industries:** Computer Software, Financial Services - **Company Size:** 51% Enterprise, 34% Mid-Market #### Pros & Cons **Pros:** - Ease of Use (9 reviews) - Security (6 reviews) - Customer Support (5 reviews) - Easy Integrations (5 reviews) - Reliability (5 reviews) **Cons:** - Communication Issues (4 reviews) - Limited Customization (4 reviews) - Inefficient Alert System (3 reviews) - Limited Integration (3 reviews) - Expensive (2 reviews) ### 21. [Deepwatch](https://www.g2.com/products/deepwatch/reviews) Deepwatch is the leader in Precision MDR powered by AI and humans. We amplify human expertise with AI insights to reduce the risks that matter most to your business. Unlike one-size-fits-all MDR, Deepwatch delivers protection that is comprehensive, custom, clear, and ceaseless—stopping threats before and after they emerge with tailored responses at every step. Deepwatch is tuned to each customer’s environment, trained on their priorities and the stack they’ve invested in to strengthen defenses and focus on what matters most. There are no black boxes—customers get clarity on every detection, decision, and data source, along with the name of the analyst behind it. Around-the-clock protection is delivered by security experts who act on real-time threats, powered by AI. Visit Deepwatch.com. Always Watching. Always Protecting. Deepwatch is: - Named to CRNs 2025 Security 100 List - Global INFOSEC Awards Winner 2024 - Splunk AMER Marketing Partner of the Year 2023 - CRN Tech Innovators Winner 2023 - Great Place to Work® Certified 2020-2025 - Forbes 2023-2024 Best Startup Employers - Equity Investments and Strategic Financing from Springcoast Capital Partners, Splunk Ventures and Vista Credit Partners: $180 million in 2023 - Goldman Sachs portfolio company: $53m Series B investment 2020 **Average Rating:** 4.5/5.0 **Total Reviews:** 17 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.2/10 (Category avg: 9.0/10) - **Automated remediation:** 8.1/10 (Category avg: 8.6/10) - **Automated investigation:** 9.5/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Deepwatch](https://www.g2.com/sellers/deepwatch) - **Company Website:** https://www.deepwatch.com/ - **Year Founded:** 2019 - **HQ Location:** Palo Alto, California, United States - **Twitter:** @deepwatch_sec (908 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/deepwatchsec (238 employees on LinkedIn®) **Reviewer Demographics:** - **Company Size:** 53% Enterprise, 47% Mid-Market #### Pros & Cons **Pros:** - Response Time (4 reviews) - Continuous Monitoring (3 reviews) - Implementation Ease (3 reviews) - Reliability (3 reviews) - Staff Expertise (3 reviews) **Cons:** - Communication Issues (3 reviews) - Limited Integration (3 reviews) - Slow Performance (2 reviews) - Deployment Issues (1 reviews) - Difficult Navigation (1 reviews) ### 22. [Cybereason Managed Detection and Response](https://www.g2.com/products/cybereason-managed-detection-and-response/reviews) Cybereason Managed Detection and Response (MDR) is a comprehensive, fully managed security solution that provides organizations with 24/7 proactive threat hunting, detection, and remediation services. Leveraging the Cybereason Defense Platform and a dedicated Security Operations Center (SOC), this service offers deep visibility into malicious operations (MalOps™) across all network endpoints, enabling rapid identification and neutralization of cyber threats. Key Features and Functionality: - Continuous Monitoring: Provides round-the-clock surveillance of network activities to detect and respond to threats in real-time. - Rapid Threat Detection and Response: Achieves industry-leading response times, detecting threats in under one minute, triaging within five minutes, and remediating in less than thirty minutes. - MalOp™ Severity Scoring: Utilizes a proprietary scoring system to prioritize threats based on severity, ensuring critical issues are addressed promptly. - Proactive Threat Hunting: Employs advanced techniques to identify and mitigate potential threats before they can cause harm. - Flexible Deployment: Offers scalable solutions suitable for organizations of all sizes, with deployment operational in hours, not days. Primary Value and Problem Solved: Cybereason MDR addresses the challenges organizations face in managing complex cybersecurity threats, especially those lacking extensive in-house security resources. By providing expert-driven, continuous monitoring and rapid response capabilities, it enhances an organization's security posture, reduces alert fatigue, and streamlines security operations. This service effectively mitigates the risk of breaches, allowing organizations to focus on their core business activities with confidence in their cybersecurity defenses. **Average Rating:** 4.6/5.0 **Total Reviews:** 11 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.8/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.5/10 (Category avg: 9.0/10) - **Automated remediation:** 8.6/10 (Category avg: 8.6/10) - **Automated investigation:** 8.3/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Cybereason](https://www.g2.com/sellers/cybereason) - **Year Founded:** 2012 - **HQ Location:** La Jolla, San Diego, US - **Twitter:** @cybereason (15,631 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/cybereason (557 employees on LinkedIn®) **Reviewer Demographics:** - **Company Size:** 55% Enterprise, 45% Mid-Market #### Pros & Cons **Pros:** - Endpoint Security (1 reviews) - Network Security (1 reviews) **Cons:** - False Positives (1 reviews) ### 23. [CyberMaxx](https://www.g2.com/products/cybermaxx/reviews) CyberMaxx is a modern MDR leader, combining advanced AI threat detection with seasoned human expertise to deliver faster, smarter, and more holistic response. Our solution helps organizations enhance their cybersecurity posture through proactive threat detection and rapid incident response. With a focus on delivering comprehensive security services, CyberMaxx is tailored to meet the needs of businesses seeking to safeguard their digital assets against an ever-evolving landscape of cyber threats. The target audience for CyberMaxx includes mid-sized businesses that require robust security measures but may lack the internal resources or expertise to effectively manage cybersecurity threats. Organizations in various regulated sectors, including finance, healthcare, and municipalities, can benefit from CyberMaxx's offerings, which are designed to provide peace of mind through continuous monitoring and expert intervention. The service is particularly valuable for companies that prioritize security but want to avoid the complexities of managing multiple vendors or investing in additional technologies. One of the standout features of CyberMaxx is its “Big R Response,” which ensures 24/7/365 threat detection backed by a team of seasoned experts. The Threat Response Team operates within the Security Operations Center (SOC) to investigate potential threats immediately, assessing the full scope of any compromise and working diligently with clients until remediation is achieved. This level of responsiveness is crucial for minimizing the impact of security incidents and ensuring business continuity. CyberMaxx also distinguishes itself through its tech-enabled approach, which integrates existing best-in-class technologies without requiring clients to commit to specific vendors or make additional investments. This flexibility allows organizations to leverage their current infrastructure while benefiting from CyberMaxx’s expertise. Furthermore, the dedicated account resources provided by CyberMaxx act as an extension of the client’s team, delivering the equivalent of 3-5 full-time technical experts. This ensures that clients receive personalized support and guidance tailored to their unique security needs. In addition to its core MDR services, CyberMaxx offers a suite of Offensive Services, including Penetration Testing, Risk & Compliance Assessments, and Security Awareness Training. These services are designed to strengthen defenses against evolving threats, reinforcing the belief that proactive offense is essential for effective defense. With over 24 years of experience and a client base of more than 800 global customers, CyberMaxx brings unmatched security expertise and a commitment to partnership, making it a valuable ally in the fight against cyber threats. **Average Rating:** 4.8/5.0 **Total Reviews:** 31 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.6/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.7/10 (Category avg: 9.0/10) - **Automated remediation:** 9.6/10 (Category avg: 8.6/10) - **Automated investigation:** 9.4/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [CyberMaxx](https://www.g2.com/sellers/cybermaxx) - **Company Website:** https://cybermaxx.com/ - **Year Founded:** 2003 - **HQ Location:** New York City, NY - **LinkedIn® Page:** https://linkedin.com/company/cybermaxx/ (233 employees on LinkedIn®) **Reviewer Demographics:** - **Top Industries:** Hospital & Health Care - **Company Size:** 48% Enterprise, 29% Mid-Market #### Pros & Cons **Pros:** - SOC Services (4 reviews) - Alert Management (2 reviews) - Continuous Monitoring (2 reviews) - Customer Support (2 reviews) - Immediate Response (2 reviews) **Cons:** - Communication Issues (2 reviews) - Inefficient Alert System (2 reviews) ### 24. [Kaspersky Managed Detection and Response](https://www.g2.com/products/kaspersky-managed-detection-and-response/reviews) Kaspersky Managed Detection and Response is an expert-led service offering round-the clock monitoring, detection, investigation and a rapid response to sophisticated cyberattacks — augmenting existing security controls with human-led detection and global threat intelligence. The service immediately strengthens IT and OT security posture, regardless of your organization’s size or industry. Kaspersky Managed Detection and Response provides customers with a lack of IT security expertise a turnkey solution for customers with limited in-house IT and OT security expertise, and gives experienced teams the flexibility to delegate 24/7 monitoring, incident detection and alert triage to Kaspersky experts. Kaspersky MDR capabilities can be characterized in 3 pillars: Continuous protection against advanced threats from day one. Kaspersky MDR activates in minutes with no additional infrastructure required, using our SOC analysts and threat intelligence to deliver multi-layered detection across multiple domains. Informed by billions of telemetry signals, it enables proactive threat hunting, root-cause investigation, and full, rapid remediation — protecting against known and zero-day threats from day one. Security operations led by experts, enhanced by intelligence. With Kaspersky MDR, your security operations are managed by global experts with deep frontline experience and industry-leading certifications. Their work is amplified by market-leading Threat Intelligence and AI mechanisms embedded in the service, helping enrich every alert, accelerate detection and reduce Mean Time to Respond (MTTR). Operational efficiency and cost predictability. • Kaspersky MDR eliminates the complexity and cost of building an in‑house SOC from scratch — a process that can drain your budget and delay meaningful security improvements for months or even years. • If you already have your own SOC, the service takes on the burden of 24/7 monitoring, alert triage and incident classification, freeing your analysts to focus on higher-value, strategic work. **Average Rating:** 4.1/5.0 **Total Reviews:** 13 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 6.9/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 10.0/10 (Category avg: 9.0/10) - **Automated remediation:** 10.0/10 (Category avg: 8.6/10) - **Automated investigation:** 10.0/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [Kaspersky](https://www.g2.com/sellers/kaspersky-bce2dc7f-2586-4e87-96da-114de2c40584) - **Year Founded:** 1997 - **HQ Location:** Moscow - **Twitter:** @kasperskylabind (1,293 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/kaspersky/ (4,494 employees on LinkedIn®) - **Phone:** 1-866-328-5700 **Reviewer Demographics:** - **Company Size:** 71% Mid-Market, 21% Enterprise ### 25. [UnderDefense MAXI](https://www.g2.com/products/underdefense-maxi/reviews) Security and Compliance Automation Platform for complete business protection 24/7. - Monitor and prevent threats 24/7 - Detect, respond, and remediate - Comply with ISO 27001 and SOC 2 - Integrate you security stack Why UnderDefense is your vendor of choice? 👉🏼 Seamless integration with your current security stack Don’t waste money and time on redevelopment or purchasing new security tools imposed on you by service providers. Benefit from a product-agnostic approach and the fastest time to value. Choose security tech, and we will make it work better for your business 24/7. 👉🏼 24/7 protection and proactive threat hunting Our SOC never sleeps. We hunt for threats around the clock and notify you about necessary security measures proactively. Use enriched threat tickets and detailed incident timelines to know the what and when of an attack and intuit the where and why of what may happen next. 👉🏼 Reduction of alert fatigue and employee burnout Save your team’s time wasted on false alerts and low risks. Reduce alert noise by 80% through professional software fine-tuning performed by our experts. Enable your internal security resources to focus on proactive security measures and complex problems that only people can solve. We make cybersecurity simple, affordable, and consistent. Try UnderDefense MAXI for free today. **Average Rating:** 4.8/5.0 **Total Reviews:** 26 **User Satisfaction Scores:** - **Has the product been a good partner in doing business?:** 9.8/10 (Category avg: 9.4/10) - **Proactive threat hunting:** 9.8/10 (Category avg: 9.0/10) - **Automated remediation:** 9.8/10 (Category avg: 8.6/10) - **Automated investigation:** 10.0/10 (Category avg: 8.8/10) **Seller Details:** - **Seller:** [UnderDefense](https://www.g2.com/sellers/underdefense) - **Year Founded:** 2017 - **HQ Location:** New York, NY - **Twitter:** @underdefense (155 Twitter followers) - **LinkedIn® Page:** https://www.linkedin.com/company/underdefense-llc (134 employees on LinkedIn®) **Reviewer Demographics:** - **Top Industries:** Information Technology and Services, Marketing and Advertising - **Company Size:** 65% Mid-Market, 23% Small-Business #### Pros & Cons **Pros:** - Visibility (3 reviews) - Customer Support (2 reviews) - Cybersecurity (2 reviews) - Information Accuracy (2 reviews) - Issue Resolution (2 reviews) **Cons:** - Lack of Automation (1 reviews) - Limited Control (1 reviews) - Limited Integration (1 reviews) - Setup Difficulty (1 reviews) ## Parent Category [System Security Software](https://www.g2.com/categories/system-security) ## Related Categories - [Incident Response Software](https://www.g2.com/categories/incident-response) - [Endpoint Detection & Response (EDR) Software](https://www.g2.com/categories/endpoint-detection-response-edr) - [Extended Detection and Response (XDR) Platforms](https://www.g2.com/categories/extended-detection-and-response-xdr-platforms) --- ## Buyer Guide ### What You Should Know About Managed Detection and Response (MDR) Software ### What is the best MDR software for financial services firms? Based on expert G2 reviews, these are some of the top Managed Detection and Response (MDR) software for financial services firms: - [Sophos](https://www.g2.com/products/sophos-mdr/reviews) - [Arctic Wolf](https://www.g2.com/products/arctic-wolf/reviews) - [Alert Logic](https://www.g2.com/products/alert-logic-mdr/reviews) - [CrowdStrike](https://www.g2.com/products/crowdstrike-falcon-endpoint-protection-platform/reviews) - [SentinelOne](https://www.g2.com/products/sentinelone-vigilance-respond/reviews) These services offer 24/7 monitoring, threat hunting, cloud security, endpoint detection and response (EDR), and incident response solutions to protect financial service firms and institutions, to fit the company's needs and protect it against cyberattacks. ### Which MDR solutions are best for startups? For startup companies looking for the best MDR solutions, there are several good options recommended by G2 users: - [Red Canary](https://www.g2.com/products/red-canary/reviews): Focuses on offering constant support with a user-friendly interface. - [Defendify](https://www.g2.com/products/defendify-all-in-one-cybersecurity-solution/reviews): An all-in-one platform that focuses on simplified cybersecurity solutions for small businesses with limited security resources. - [Cynet](https://www.g2.com/products/cynet-all-in-one-cybersecurity-platform/reviews): An all-in-one cybersecurity platform designed to be scalable and adaptable for growing businesses. - [Huntress](https://www.g2.com/products/huntress-managed-edr/reviews): Specializes in protecting small to mid-sized businesses by offering ongoing support, 24/7 monitoring, and threat hunting capabilities. - [Blumira](https://www.g2.com/products/blumira-automated-detection-response/reviews): Praised for its focus on SMBs, and offers automated detection and response services.