ConnectWise SIEM Reviews

I do not have experience with ConnectWise SIEM for RMM, as I mostly work on Wazuh, and I have a team that handles ConnectWise SIEM. I'm linking with them, serving as the bridge.

I am solely working with the SIEM product.

I cannot describe some of the use cases for the SIEM due to confidentiality purposes, but we have endpoint services that we need to make sure to identify the culprit. We need to remove simple issues such as malware downloads, ensuring no brute forces or malicious activities occur.

The integration capabilities of ConnectWise SIEM are off the shelf, making it easy to buy and use; you just unpack it and use it. Wazuh, however, is good but not as easy.

I find automation to be one of the best and most valuable features of the product.

Machine learning is incorporated into the solution, though AI is a broader term that I wouldn't apply here. I haven't personally explored AI yet, but I will investigate it. Machine learning functions more as automation in my experience, as there's no training involved yet. I want to conduct R&D on another project with Wazuh to determine how to capture usage, for example, tracking user logins and time spent. This is where I need to implement machine learning. Additionally, the extraction of GeoIP adds complexity.

The solution is effectively reducing incident response times in operations.

I haven't utilized the advanced threat intelligence capabilities with ConnectWise SIEM. Advanced threat intelligence is an option, but I haven't explored this feature yet.

The advanced threat intelligence capabilities are not functional and pre-built in, which is something I've noticed.

ConnectWise SIEM is primarily focused on notifications and is limited in that aspect, while Wazuh can automate the elimination process. I see Wazuh as a good option, but SaaS services require significant integration and development effort.

I have been dealing with ConnectWise SIEM for an extended period, and I have downloaded all components.

Their support has been decent, equaling that of Wazuh as they're both in the group chat now.

Neutral

There aren't other products competing in that aspect; Wazuh is more complex but offers a vision I'm pursuing, hence my preference for it over ConnectWise SIEM.

The review can be made anonymous if just my name and not the company name is used.

I would assess the real-time visibility for my organization as somewhat real-time, but it's not fully real-time.

The reporting functionality is excellent and customizable.

ConnectWise SIEM performs effectively for compliance management efforts.

The proactive monitoring and automated alerting systems with ConnectWise SIEM are good because we keep track of the logs and events taking place. However, it's somewhat direct and not overly real-time.

On a scale of 1 to 10, I would rate ConnectWise SIEM a 6 due to its limitations and costs, compared to Wazuh which I would rate an 8.

ConnectWise Fortify is primarily cloud-based, and we use it to protect Microsoft, AWS, and Google. We use Fortisight to protect our channels and some of our customers.

One valuable feature of ConnectWise Fortify is the ability to add other teams and receive notifications when customers make changes or remove multi-factor authentication in Microsoft or SAP environments.

For instance, once we were connecting different parts in China, and we had to reserve resources for the blue source of the login of task no v. ConnectWise Fortify successfully mitigated the issue and monitored any suspicious activity in the Microsoft environment.

Despite the inconvenience, the Microsoft environment is still active and susceptible to cyber threats. We do a lot of research and utilize ConnectWise Fortify to restart and restore the system. It's essential to have a solution like ConnectWise Fortify to protect against cyber threats.

Currently, the virtual process is working fine, as it is able to detect Webex when intentional messages are sent. However, there is still room for improvement in this area. We could find a new way to detect unusual activity more efficiently. Additionally, incorporating artificial intelligence is also a helpful addition.

I have been using this solution for two years.

I would rate the stability a ten out of ten.

The scalability of ConnectWise Fortify is a ten out of ten. The solution is highly scalable and can easily handle growth and increasing demands.

ConnectWise Fortify is a cloud solution that requires deployment on a public cloud. You will need to install a special user inside the cloud to monitor everything that changes and report on it within Microsoft. To do this, you can set up a SaaS and have it send the data to a central station. This would be much easier than having somebody who has nothing to do with development sifting through the vast amount of data generated by the developers on a daily basis. So, to answer your question, it is a public cloud solution.

It took a couple of days to complete the deployment as we had to set up a special user and ensure compliance with stock regulations. However, it's a quick process that can be done within half a day to a couple of days, depending on the people involved.

The pricing is good. I would say it's at a reasonable price point.

My advice would be to ensure that they have a user in place and to prioritize cloud protection. I faced some engineering challenges because anyone can enter the cloud, and when changes happen, nobody realizes it. But with every person inside the cloud, it is noticed and resolved quickly. So, it's important to have cloud protection in place.

I think ConnectWise Fortify could work on covering more areas, like phishing messages, which have become more complicated to detect. However, it works well with Microsoft Defender inside the cloud, and we are satisfied with the product.

Overall, I would rate the product a ten out of ten.

We are using the solution for remote monitoring and management(RMM). We started with the manage portion of the solution, it is quite complex as well. We see that is geared more for big structured companies. Our company is smaller and less complicated than the ones we have worked within the past. We have had to adapt it to our needs. At the moment we started working on the automate portion of the solution and we are using it to control our customers' content. We hope we will be able to use the manage portion also very soon.

We have found the solution has great functionality and it is easy to use. We have many older systems that this solution has been able to integrate well with them and have been operating well.

The manage portion of the solution is complicated and should be simplified by having different versions to meet the needs of different size companies.

I have been using the solution for one month.

I have not used the solution intensively enough to fully know how stable it is, but currently, it has been stable for us.

We have not had an issue with the stability of the solution.

The technical support has been very good for us. When we had issues they were responsive.

The initial setup was complicated, it took approximately two weeks. However, the manage portion of the solution is taking a lot of time to configure, we are still working on it.

The solution is expensive. They should break up the solution into different parts because there are parts of the solution that not everyone is going to use but have to pay for it.

I rate ConnectWise Fortify a ten out of ten.