We compared Arctic Wolf Managed Detection and Response and CrowdStrike Falcon Complete based on our user's reviews in several parameters.
The Arctic Wolf Managed Detection and Response system is praised for its comprehensive threat detection abilities, proactive approach to security, and expert guidance. On the other hand, CrowdStrike Falcon Complete is appreciated for its advanced threat detection capabilities, quick incident response times, and proactive protection against cyber threats. Key differences include Arctic Wolf's user-friendly interface and CrowdStrike's extensive visibility into network activities. CrowdStrike's efficient deployment process is highlighted, while Arctic Wolf's customer service and support receive high praise. Areas of improvement for Arctic Wolf involve better integration and customizable reporting options, while CrowdStrike users seek enhancements in system compatibility and scanning efficiency. Ultimately, both solutions provide positive returns on investment, improved security, and efficient incident response times for users.
Features: Arctic Wolf Managed Detection and Response is valued for its comprehensive threat detection, real-time monitoring, proactive security approach, and user-friendly interface. CrowdStrike Falcon Complete stands out for its advanced threat detection, extensive network visibility, and seamless integration with existing security tools.
Pricing and ROI: In terms of setup cost, users have provided feedback on their experience with Arctic Wolf Managed Detection and Response, while CrowdStrike Falcon Complete offers a fair pricing structure with reasonable setup costs. The licensing process for CrowdStrike is straightforward, ensuring ease of use for customers., Arctic Wolf Managed Detection and Response offers a positive ROI with successful outcomes, improved security, and reduced risks. Users value its effective and efficient service. CrowdStrike Falcon Complete also provides a highly positive ROI with significant returns and improved security. Users praise its effectiveness in preventing cyber threats and value its comprehensive monitoring and real-time alerts. Both solutions offer cost-effective ROI.
Room for Improvement: Arctic Wolf Managed Detection and Response users have mentioned the need for better integration with existing security tools, more customizable reporting options, and improvements in user interface and ease of use. They also expressed the desire for faster response times and proactive threat hunting capabilities. CrowdStrike Falcon Complete users have identified areas for improvement in system compatibility, response time, scanning efficiency, and visibility into threats. They highlighted the challenges with compatibility and the importance of faster response times. Users also emphasized the need for improved scanning efficiency and accuracy, as well as enhanced visibility into identified threats.
Deployment and customer support: The reviews for Arctic Wolf Managed Detection and Response highlight that the time required for deployment, setup, and implementation varied among users. Some reported spending three months on deployment and an additional week on setup, while others mentioned a week for both. In comparison, the reviews for CrowdStrike Falcon Complete emphasize the need to consider the context in which terms like deployment, setup, and implementation are used. For example, if a user mentioned spending three months on deployment and an additional week on setup, both timeframes should be taken into account. However, if a user mentioned needing a week for both deployment and setup, these terms likely refer to the same time period., The customer service of Arctic Wolf Managed Detection and Response is highly appreciated for prompt and efficient assistance, while CrowdStrike Falcon Complete's customer service is praised for being exceptionally helpful, responsive, and efficient.
The summary above is based on 56 interviews we conducted recently with Arctic Wolf Managed Detection and Response and CrowdStrike Falcon Complete users. To access the review's full transcripts, download our report.
"The speed at which their services are reactive is valuable. Nowadays, when a threat hits an endpoint, you've got minutes, not hours or days. Their average response time is about four minutes on an alert. For anything that needs to be sent to us, it's about fourteen minutes, which is pretty good. They're the third SOC that I've used in fifteen years. By far, they are the quickest ones to act. When you're looking at prevention, that's a key factor."
"The best part about Binary Defense MDR is that it runs on everything, and they keep an eye on things 24/7."
"The most valuable features are the SIEM and the ticketing function; the latter is very smooth and easy to read and understand. We don't have any issues looking at the ticketing information when we're trying to identify what's going on."
"The most valuable part of Binary Defense is its team of cybersecurity analysts. Their analysts filter out the noise and only forward the critical threats that require a response instead of false positives."
"With Binary Defense, we don't just get an alert, but also a detailed rundown of why they're alerting us on it. They tell us what was executed, or the username, script, or IP. That way, we're not wasting time investigating."
"Among the valuable features are the agent, continuous reporting, and dashboard. It has all the features we need and we haven't had to customize it, other than turning on certain features that we wanted."
"The biggest aspect for us is that they are able to conform to our environment and utilize our tools. That way, we still maintain ownership of all the data and access to the applications, and we never lose control of the ability to run the solution ourselves if we need to."
"The most valuable feature is reviewing tickets and the notes added by technicians."
"Having quarterly meetings with the team to review the last 90 days and determine what if any changes need to be made."
"Arctic Wolf is our eyes and ears 24/7 because we can't possibly watch all of our alerts. We may see all of these alerts, but our attention is distracted because we're working on other things."
"The tool's most valuable feature is its ease of implementation."
"What's valuable about Arctic Wolf AWN CyberSOC is the cost savings it provides for companies that no longer have to hire a bunch of security people and pay for a SIM."
"The product provides integrations with several different SaaS applications."
"They provide useful quarterly updates."
"The agents give pretty good visibility into what is happening at the endpoint."
"Arctic Wolf is laser-focused on providing top-notch customer service."
"It's not a signature-based solution, which is ideal for us."
"Its ease of use is valuable. Nothing is left to you."
"It is very easy to manage the licenses centrally because these are cloud licenses. There is no need for manual data reports."
"As an end-point solution, nothing beats it, to be honest."
"EDR and Next-Generation Antivirus (NGAV) are good features. The Spotlight feature is also good, and it also can detect patching-related vulnerabilities."
"The solution is quite flexible."
"The most valuable feature of this solution is the real-time visibility into what is happening in your endpoint."
"CrowdStrike side, Falcon is the Endpoint Detection, Overwatch is the service that sits behind it. From a human point of view looks at the anomalies that normal AI and machine learning couldn't catch. So it is the combination of the two that really works well."
"I don't find any downside to them, but if I have to put one, it would be consistent manpower or staffing. The only area where the solution can be improved is going to be with people. As they grow, they are struggling with the same thing that every other company is, which is getting talent and getting that talent to stay, but they've just revised their tiering system to go from a flat analyst and manager to a three-tier solution where it goes through two or three before it gets elevated. That seems to have worked out well, so if one level misses it, the next one picks it up, and it works out fine."
"It's sometimes difficult to know when to engage Binary Defense or TrustedSec, their sister company. TrustedSec is more focused on offensive security, as opposed to the defensive security that the MDR solution provides. It would be awesome if there were a better bridge between that relationship for when we need to get more proactive services or when we need to do a penetration test."
"We found that an earlier version of the agent had high memory usage and that was a bit concerning, but we raised the concern with their support team and they immediately replied that they had noticed the same thing and had a candidate fix already available... it totally fixed the issue."
"I would like to get more reports from Binary Defense about what they're blocking."
"Binary Defense MDR could be even better with additional features, like automatic scans and file quarantine."
"The most significant area for improvement is in support for non-English speakers; we're a global organization, so many of our users are not English speakers, which can make interacting with them a challenge. There's no Chinese language support, so we must rely on what we can do with the internet. We don't expect Binary Defense to build a language staff, but details can get lost in translation when we assume the whole world speaks English."
"If I were shopping for an MDR solution today, I would not only look for a company that has the ability to alert, detect, and remediate, but also the ability to integrate vulnerability management. That's a big thing that they're lacking today."
"It's hard to think of anything that they need to improve on, but just to point out something, I would like to see them provide advanced XDR."
"We need an easier way to audit and act on agents."
"More integrations with various security tools to improve data ingestion would be beneficial."
"I would like to see them build the ability to co-sell an EDR platform, manage an EDR or manage the actual response, potentially from the issues that are coming up from the security risks."
"Arctic Wolf Managed Detection and Response's analysis and remediation parts could be improved. It's not bad, but it needs improvement."
"I can't think of any specific features that they need to add at the moment. As long as they continue to develop new solutions to support different operating systems and technologies, we are satisfied with their service. We appreciate the effort they put into adding new features and functionality to their service and believe they are doing a great job in providing us with all the necessary tools and resources to stay secure."
"In the future, I would like to see a summary report."
"They focus on detecting administrator-level control compromises. Because they're focusing more on administrator-level compromise, they are less able to see if an individual user has been compromised. It is, admittedly, very difficult because they don't know what normal human behavior is. If a hacker compromises a human account and then acts just like the human, how are you ever going to notice, unless you have some inside knowledge of how the company works? For example, they overlook account lockouts on user accounts, whereas in our own alerting system, we do not. We review every account lockout, and if it is bad, we contact the person, whereas they think of that as noise because they're more focused on the administrator-level compromise."
"They could probably expand on their integration tools. They can integrate with more security tools."
"I prefer to put a pound into the prevention and an ounce into the cure, but CrowdStrike put more focus into the EDR. This works as a business model for them, as they get a lot of customers purchasing their MDR services, usually SMBs lacking the staff to leverage the EDR tool themselves adequately. We have many such customers. I would much rather see more refinement and investment into the prevention side of the equation, though CrowdStrike has a good engine. The solution is as effective as SentinelOne and Windows Defender for Endpoint; it's an excellent endpoint protection solution."
"Some dashboards can be very complex, but once you get to know them, it is very logical."
"The training provided could be better. There is a need to have more training to allow us to fine-tune our settings. Not that training is not comprehensive; they do provide training in hotels where we can go and see videos and other helpful information. However, they should be providing hands-on experience to the system administrators because this would be more useful. The training is normally for corporations and should be available for personal users as well."
"The downside that we see with CrowdStrike is that it is not part of a broader ecosystem. It is an endpoint product. They don't sell firewalls or a broader cybersecurity ecosystem. Some of the behavioral detections could be more robust. It does a good job of stopping common tools and techniques, but when it comes to using Windows utilities, such as PowerShell, etc, it doesn't stop them. These are some of the things where we have been able to get past it. An argument there can be that these are administrative tools, not malware, so maybe it is not its job to stop it, but we see some of the competitive products doing a very good job of detecting behaviors as opposed to malware."
"The solution should be lighter because it currently uses a lot of computing sources."
"Pricing is definitely a problem. It could be cheaper for licensing."
"It would be nice to have full-scale ESR reporting."
"It would be good if they fleshed it out a bit more, possibly with additional areas such as security awareness training. They could build that in. They're leveraging the same endpoint base that they have the security software on, but then they could offer a centralized portal or hub whereby someone like me could leverage it to track and put out security awareness training for people on all the common topics. I could have a centralized hub for everyone's results from that training and for the evidence that training occurred. It would be relatively straightforward, but it would add a lot for people in the compliance area. It would be a great expansion."
More Arctic Wolf Managed Detection and Response Pricing and Cost Advice →
Arctic Wolf Managed Detection and Response is ranked 2nd in Managed Detection and Response (MDR) with 17 reviews while CrowdStrike Falcon Complete is ranked 1st in Managed Detection and Response (MDR) with 75 reviews. Arctic Wolf Managed Detection and Response is rated 9.2, while CrowdStrike Falcon Complete is rated 8.6. The top reviewer of Arctic Wolf Managed Detection and Response writes "Very good support, excellent visibility, and useful security bulletins". On the other hand, the top reviewer of CrowdStrike Falcon Complete writes "Great next-generation antivirus with breach warranty and good intrusion protection". Arctic Wolf Managed Detection and Response is most compared with Red Canary, Huntress, Adlumin Security Operations Platform, Microsoft Defender Experts for Hunting and SentinelOne Vigilance, whereas CrowdStrike Falcon Complete is most compared with Blackpoint Cyber MDR, Secureworks Taegis ManagedXDR, Sophos MDR, Red Canary and Huntress. See our Arctic Wolf Managed Detection and Response vs. CrowdStrike Falcon Complete report.
See our list of best Managed Detection and Response (MDR) vendors.
We monitor all Managed Detection and Response (MDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.