Radware Cloud WAF Service Reviews

Our use case for Radware Cloud WAF Service is as a web application firewall. It is a security device or service that monitors, filters, and blocks the traffic between a web application and the Internet to protect it from cyber attacks.

Radware Cloud WAF Service is a ten out of ten for blocking unknown threats and attacks. I am very satisfied. My impressions of the automated analytics for looking at events is ten out of ten.

The automated analytics technique is basically on the next level. It uses artificial intelligence and machine learning to analyze traffic, detecting anomalies, and automating the response to cyber threats in real time. Its proactive threat protection reduces false positive alerts and enhances mitigations.

We use the API discovery feature for API protection, which includes bot mitigation, API protection, and distributed denial of service DDoS protection. The API discovery feature helps us reduce overhead costs by providing a capability to automatically identify and inventory the APIs exposed by the protected web application. API discovery includes endpoint and schema learning, identification of shadow and zombie APIs, behavior analysis, and integration with API security.

We use CDN services offered by Radware Cloud WAF Service together with Akamai for our control delivery network, which connects end users from the nearest location to optimize user experience.

Radware Cloud WAF Service integrations provide a comprehensive view of our web application security by centralizing web logs into the SIEM platform for advanced detection, analysis, and incident response. It allows for correction of WAF events with other data security tools, automating workflows, and improving threat hunting. Integrated SIEM and setting up dashboards and correction rules within the SIEM gives us actionable insights.

The implementation has saved us over 90% of time. For zero-day attacks, it is effective because it uses real-time threat intelligence and machine learning. It applies adaptive behavior analysis to detect anomalies in traffic patterns and generates dynamic security policies. While signature-based detection is used for known threats, Radware's solution also implements positive security models.

The combination of negative and behavioral based positive security models involves broad detection. These combinations allow for policies, thereby avoiding false positives and false negatives. There are supervised and good networks, unsupervised cluster detection, and adaptive learning for action.

The source blocking feature blocks real-time automated cybersecurity threats from malicious IP addresses by correcting security events across multiple protection models. It automatically blocks them from accessing any protected application for a configurable duration.

We use Radware Bot Manager, which provides three-layered protection: preemptive protection that blocks malicious IP addresses and identities, behavioral risk detection with employment scene analyzer to distinguish between human and bot traffic, and options to stop or challenge bots.

Radware Bot Manager has helped in our compliance efforts with a ten out of ten rating. It provides website secure connection and automates protection against threats such as account takeover, credential stuffing, brute force attacks, and payment abuse or spam.

The real-time BLA detection and mitigation affects our threat management positively. Deep tech inspection involves analyzing network traffic flows, and Radware Cloud WAF Service scores ten out of ten. It inspects the actual content of packets to identify, classify, and act upon data and applications in real time.

We use web DDoS protection, specifically the L7 HTTP, which helps us with its AI-powered and behavior-based algorithms to generate signatures in real time and rapidly detect and mitigate L7 DDoS attacks without harm to the organization.

The best features of Radware Cloud WAF Service, which we use on a daily basis, include natural self-cooling properties. Radware offers us advanced and automated features such as continuous traffic learning, adaptive AI-driven policies, and automatic app mapping and API security protection. It also prevents us from zero-day threats, including OWASP Top Ten. 

It is robust and protects our organization from vulnerabilities, including zero-day exploits, bot attacks, and DDoS attacks. Additionally, it offers behavior analysis and provides hybrid deployment flexibility for both on-premises and cloud environments. These are the key benefits of Radware.

Radware Cloud WAF Service has reduced our false positives to over 90%.

In terms of areas for improvement, the price is somewhat high. More use of tools such as AI and ML is needed. AI-powered DDoS defense tools and behavior DDoS protections are in place. They should also improve visibility, control, and user interface. The dashboard needs improvement as some users find it complex.

I have been using Radware Cloud WAF Service for more than two to three years.

I would rate the stability of Radware Cloud WAF Service as good.

For scalability, I would rate it a ten out of ten.

There are 20 to 30 users in my organization working with the solution.

I would rate Radware's support for Cloud WAF Service as top notch.

The deployment of Radware Cloud WAF Service was easy. It took about a month.

The solution does not require any maintenance.

We have seen more than 10% return on investment.

Radware Cloud WAF Service was purchased through a partner. 

In comparison with other WAF software, Radware Cloud WAF Service is at the top level. It provides the best outcome and next-gen detection. I would definitely recommend Radware Cloud WAF Service to other users because as an organization, we use it daily, and the tools provide the best outcome to secure and monitor organization traffic.

I would overall rate Radware Cloud WAF Service a ten out of ten.

We have both infrastructure protection and web application protection. Infrastructure protection is against network-level denial of service attacks, and we use the application protection for our web application firewall, which provides layer seven security.

Being a cloud service, it removes the maintenance tasks for system uptime and the maintenance of on-prem appliances. It gives security analysts much more time for SOC work in analyzing alerts and threats. With on-premises solutions, there is a lot of maintenance involved to ensure that everything is functioning properly. Much time is dedicated to maintaining on-premises products. In contrast, as a cloud product, we don't have to worry about issues related to high availability or managing multiple instances of security solutions. Maintenance tasks such as operating system upgrades and other related issues are handled for us. This allows us to focus our efforts on SOC analysis work without the burden of these maintenance responsibilities.

It helps reduce the number of false positives and also addresses sophisticated attacks that may not be detected by our traditional systems on-premises.

Alerts help us quickly narrow down the issue, allowing us to spend less time on analysis and more time addressing active threats as they occur. Automation plays a significant role in this process.

Bot Manager has been quite positive. I find it to be more than just your traditional method of examining signatures or even looking at user agent headers. It goes beyond that; it analyzes the behavioral patterns of requests. Bots have become more advanced, often trying to imitate human behavior as closely as possible. With this bot protection, certain traffic gets blocked and flagged as bot traffic. However, when I review the requests from a human perspective, it can be challenging to identify what was actually bot traffic. Fortunately, the system provides a description of why a particular request was blocked and flagged as bot traffic. Bot traffic is a lot compared to normal human traffic, about 50% more. That alone frees up a lot of compute for our applications. The performance of the applications is significantly better because the bot's traffic is effectively filtered in the cloud. Only clean traffic reaches the applications, ensuring optimal performance.

The detection for bad bots and layer seven anomaly detection is ingrained within the logic. First of all, it examines normal signatures and user agents. Additionally, there is a significant reliance on AI-driven signatures that it looks out for. It also incorporates threat intelligence, which may include insights from various sources. Another important aspect is IP reputation, which is gathered from other clients with whom these bots have interacted. Overall, I think this solution is very effective; it has worked well for us and is actually blocking the traffic as advertised.

We rely heavily on Web DDoS protection, with about ninety percent of our services being application-based. Therefore, ensuring their security is very important to us. Radware provides the security we need and guarantees that the traffic reaching our web applications and servers is clean. This gives us peace of mind. While we monitor our systems closely, knowing that Radware Cloud WAF Service has our back is essential. Overall, it plays a crucial role in our business continuity as a security solution.

As compared to the traditional WAF that had on-prem systems, Radware Cloud WAF Service has many functionalities, such as AI-driven functionalities. It has features such as API security that protect against advanced attacks, including business logic attacks. It comes with additional functionalities such as bot protection and AI-driven threat signatures, along with threat intelligence, making it much more than the traditional WAF that we have on-prem. This is a key advantage I've seen since we onboarded it.

The dashboard of Radware Cloud WAF Service has room for improvement. While it works effectively, it can feel complex and might need some initial guidance, but once users become familiar with it, the operation becomes smooth.

We have been using Radware Cloud WAF Service since the beginning of this year. It has not yet been a full year.

I would rate the stability of Radware Cloud WAF Service a nine out of ten. While the functionality is a 10 out of 10, occasional internet connectivity issues cause temporary access problems.

The scalability of Radware Cloud WAF Service rates as a perfect ten out of ten, as we haven't encountered any scaling issues.

In the security team, four of us work with this solution. We have about 4,000 employees.

Technical support from Radware rates as a nine out of ten, as their support is very good.

Positive

Radware Cloud WAF Service is the first cloud WAF solution we have used. We were using only an on-premises physical appliance.

As compared to our on-premises solution, Radware Cloud WAF Service offers better protection and can even provide significantly better security. In baseline protection, it matches our on-premises solution but has additional functionalities, including AI-driven signatures. This upgrade brings many more security features that we didn't have before. Overall, I would rate it much higher.

Radware Cloud WAF Service works well. There are many instances that we could not flag bot traffic using our traditional on-premises WAF. We use them concurrently. We compare the clean rate of what passes through the cloud instance with what passes through our on-premises instance. It has freed up many of the compute resources we have on-premises. Thus, much of the malicious traffic is stripped away at the cloud level before the clean traffic reaches our on-premises sites.

The deployment of the Radware Cloud WAF Service was quite easy and took about two to three days, thanks to the helpful and responsive support team from Radware.

Apart from fine-tuning the security policies, much of the maintenance work is effectively handled in the background by the Radware team. As a result, there is very little to no maintenance required on our end.

We were supported by Radware's onboarding team. They prepared our dashboard.

The Radware Cloud WAF Service saves us a significant amount of time, estimating around 30% to 40%.

With our on-prem solution, we spent a lot of time on maintenance tasks, OS updates, and ensuring appliances ran smoothly, but with Cloud WAF, all that is managed by the cloud team, allowing us to focus on alert analysis.

For false positives, you need to properly tune the detection rules. In the beginning, it operates in a learning mode, which Radware refers to as "reporting mode." This mode simply reports on what is happening but doesn’t actively block any threats. When you transition to active protection, it’s crucial to take care when defining your threat signatures. If you don't, there can be some false positives. However, with excellent support from the onboarding team, we were able to resolve those issues very quickly, and after that, everything went smoothly. In the initial stages, it can be a bit tricky. There are some false positives, but they can be adjusted and fine-tuned. Once in a while, a false positive occurs, but we now have the knowledge on how to mitigate that.

A lot of applications are currently hosted on-premises. With a Cloud WAF, you need to redirect traffic to the cloud instance, and then the traffic is routed back. Initially, our main challenge was addressing internal threats, specifically insider threats. These applications are accessible both within our environment and to external users. However, since we began using cloud protection, it has primarily catered to external source traffic, leaving internal source traffic unprotected. Fortunately, Radware quickly developed a secure pathway functionality that can also redirect internal traffic to be inspected in the cloud. This feature is something we haven't implemented yet, but it is definitely on our agenda for implementation very soon.

The application protection from Radware Cloud WAF Service has API security, which protects the APIs we define against the different OWASP Top 10 API security threats.

I would rate the Radware Cloud WAF Service as a nine out of ten. Overall, it is a very effective solution that meets our expectations and blocks traffic as advertised.

Our use cases for Radware Cloud WAF Service include all of our applications, such as online banking applications, as I work for a bank. It works effectively. Our payment systems also operate through this service, and we have a few applications running over the web.

Radware Cloud WAF Service works very well for blocking unknown threats and attacks. We haven't seen any issues with that. Whenever we experienced any threat, we got accurate blocking. We haven't had any issues.

Automated analytics for looking at events are good. We have no issues with it. It gives us precise and accurate information. It helps us a lot. We're able to allowlist and check port managers and all of that.

Radware Cloud WAF Service has helped us reduce false positives by 100%. It's accurate and has significantly aided our efforts. Radware Cloud WAF Service has improved our efficiency by about 95%.

From the networking perspective, Radware Cloud WAF Service integrates very effectively with our systems and applications. However, other business units in the company find it somewhat difficult to adapt to Radware's methodology. For our networking team, we are fully utilizing it without issues, and we're looking to move everything to Radware Cloud WAF Service for our online banking, connecting backend devices to Radware Cloud WAF Service instead of F5 for load balancing. This is a big project involving eight countries, not just South Africa, and as network professionals, we truly enjoy working with Radware Cloud WAF Service.

Radware Cloud WAF Service has handled zero-day attacks effectively. It has been very helpful and has prevented numerous issues. The last time we were attacked as a bank was around 2017, before COVID, resulting in only about five minutes of downtime. Since then, smaller attacks have been mitigated by both Radware Cloud WAF Service and the Radware DPX boxes on-premises.

Radware's combination of negative and behavior-based positive security models is very important for our security strategy because threats come from various sources and can spoof our network. Our firewall system isn't strong enough to detect or block these threats, but with Radware, we feel completely safe and secure, allowing us to remain calm in the face of potential attacks.

We are using the automated source blocking feature of Radware Cloud WAF Service, and it's superb. We have been using it for less than six months, and so far, we haven't regretted the decision. The proactive and holistic approach of Radware Cloud WAF Service has been very effective in protecting our applications. After moving to Radware Cloud WAF Service, we got to know about hidden attacks that we couldn't identify before. In the past, we could not identify the problem. There've been certain failures or issues that we suspected to be related to the backend of the app or F5, but they were not. They were attacks that were hiding behind the radar.

We use the Radware Bot Manager and have had a positive experience with it. We can block bad bots effectively, and since we started using it about two years ago, we haven't encountered any problems. Bot Manager helps with our compliance efforts, but I haven't had much contact with them—most discussions happen with my colleague Paul, who has worked with Radware since day one.

The real-time BLA detection and mitigation from Radware Cloud WAF Service hasn't negatively impacted us. We've had minimal downtime, about five to seven minutes, but since then, we have experienced everything operating smoothly. 

Web DDoS protection is good. Our layer 7 protection is working very well. In the past, we couldn't do anything about it. We were getting so many attacks. We haven't had any issues since we started using it.

The features I find most valuable about Radware Cloud WAF Service are primarily rate-limiting, geo-blocking, web DDoS protection, and some other basic features.

When it comes to support, I would suggest having a dedicated number for our clients for better identification in case of issues, as the varying numbers make it easy to miss important calls. 

Additionally, alert messages for DDoS attacks or other things take time to reach us, causing delays in our response.

I see potential in adding threat intelligence, and I don't have issues with the responsiveness or user-friendliness of the Radware console. It's definitely user-friendly for me.

We have been using it for the past five to six years.

I have noticed occasional lag in the mornings, but it's not an everyday occurrence. Logging out and back in usually resolves it.

Scalability with Radware Cloud WAF Service is 100%. Everything works perfectly in that regard.

I have contacted technical support, and they're very quick and responsive. There may be a pronunciation barrier for some of my colleagues, but overall, the support is satisfactory. I would rate the support from Radware a nine out of ten.

Positive

The initial deployment of Radware Cloud WAF Service was very easy. It took less than 45 minutes.

Just one person was required for the deployment from our end.

I would rate Radware Cloud WAF Service a ten out of ten. Everything is working efficiently with Radware Cloud WAF Service, and it is truly a good product.

My use case for the Radware Cloud WAF Service involves checking the WAF related to DDoS traffic from the public IP to the organization, which outlines how much impact there is on the WAF. We check the traffic to see what fluctuations occur from the outside and inside, particularly in regards to DDoS types of attacks as mentioned my basic monitoring workflow. 

Monitoring Workflow:

• Traffic Analysis: I monitor traffic from public IPs to your organization, focusing on fluctuations that may indicate DDoS attacks.
• Impact Assessment: We evaluate how these attacks affect the WAF, especially in terms of utilization and attack surface.
• Escalation: If anomalies or high-impact events are detected, we raise a case with Redware support.
• Integration with SIEM: We already done, integrating with a SIEM tool can help correlate WAF data with other security logs for deeper insights.
• Historical Trend Analysis: Compare current traffic with historical data to identify patterns or recurring threats.
• Trends and Dashboard: We have creating a dashboard or report template to visualize the traffic and attack trends on live monitoring use.

The Radware's combination of negative and behavioral based positive security models is beneficial. This behavior is good for timely checks against threats utilizing live monitoring during attack surfaces from public environments, particularly for ISP-relevant traffic or recognizing malicious abnormal activities, which is effective in our environment.

In the Radware Cloud WAF Service, the best features I find are that it's easy to use and that it's easy to identify what procedures are ongoing within this environment. We can see live data regarding the public IP's impact on our organization and what actions we can check. 

We also find the dashboard helpful; we can monitor multiple business units in Adani from the same page through the Radware dashboard services and its other functions. We feel safe using Radware, and we are happy with it.

We use the API Discovery feature. Regarding how Radware Cloud WAF Service has helped with compliance efforts, compliance actions are done by other tools for the Adani Group, however, we check WAF integrations with our domains through the Radware portal.

We have created a small dashboard monitoring various group-wise applications and domains, including corporate business units, ensuring all websites and public IPs are accounted for. The compliance processes are predefined. We remain compliant. We use additional tools alongside Radware and BITs; both tools provide similar functionalities, and we check Radware for risk mitigation related to any threat intel.

This has quite an impact on our business; all applications and domains are mapped via API with Radware Cloud WAF Service. We receive scores, alerts about impacts, and informational notifications via email for necessary follow-up actions. 

To make the solution a ten out of ten, we need improvements in AI capabilities, which Radware Cloud WAF Service currently has yet it still has room for integration. Considering what can be improved, customization could be enhanced, and support could be a tad faster; more reporting capabilities or additional intuitive AI features would also be constructive. 

Honestly, I currently do not face any challenges that I can articulate for improvement; everything functions according to the service we have.

I have been using the Radware Cloud WAF Service for about 1.6 years now.

For stability, I can give it a score of nine out of ten, with a possibility of considering it a ten due to its reliability. 

Regarding stability, I would rate it a nine out of ten; we've received notifications when maintenance is ongoing, usually informed timely, which is commendable.

About scalability, we haven't examined it at a full 100%, however, for our current needs, it meets 100% of them without pressing requirements for enhancement.

Support for Radware Cloud WAF Service is good; I'm using it on a daily basis and receive 24/7 support, timely reminders, and assistance. However, where improvements could be made includes aspects like API calls and related tasks; daily improvements are noted along with suggestions from our team.

Deployment of Radware Cloud WAF Service is easy, and we regularly use it. It provides an intuitive understanding of how to raise API calls and integrate other requirements. We map our dashboards easily, reviewing and utilizing its functionality effectively.

The Radware solution requires maintenance which our R team oversees. As for regular maintenance, there are no current issues, and the upgrading part is managed by the team who provides the necessary updates based on our needs.

Regarding pricing, I don't find it expensive; it's reasonably priced and aligns with our requirements, so I see it as fair compared to other more expensive tools.

The learning capacity is good, and every feature provided is available; we just haven't fully utilized all aspects of Radware's offerings. 

I would rate the Radware Cloud WAF Service a nine out of ten; it is solid and efficient from my perspective.

We are using Radware Cloud WAF Service to prevent our applications from attacks, such as DDoS and other attacks.

Using Radware Cloud WAF Service has saved us considerable time. It provides good visualization and traffic information, saving around four to six hours for investigating logs whenever we try to pull logs from any other tools.

Radware Cloud WAF Service is quite effective for blocking unknown threats and attacks. We have 10 to 15 applications onboarded with Radware, and it has proven to be good at blocking threats from external sources. 

Radware Cloud WAF Service is able to protect against zero-day attacks. They are committed to preventing any potential attacks. It has the capability to analyze behavioral patterns, which allows them to implement preventive measures. I have received notifications from Radware confirming that they are fully optimized to address zero-day vulnerabilities at this time.

Radware Cloud WAF Service allow us to directly filter the data from whatever attack was performed, so we can directly filter the attack details from the event viewer section, which is very helpful to us. Another module that I appreciate about Radware Cloud WAF Service is that it provides custom port security. The other tools are not providing the custom port feature where Radware Cloud WAF Service is providing, and it will be very helpful to us.

The automated analytics for looking at events in Radware Cloud WAF Service are working for us; the automatic event correlation is very beneficial to analyze how the alerts and events occur and visualize the patterns of network traffic and other traffic going in and out from the application via Radware Cloud WAF Service. 

The combination of negative and behavioral-based positive security models is important for our security strategy; since most of our applications work internally, behavioral-based analytics helps us address issues where methods such as POST and GET are not functioning, so we raise concerns with our internal team to whitelist applications, thus helping reduce blocking of traffic in our environment.

Radware Cloud WAF Service is effective, particularly in the custom service it provides and its capabilities in DDoS protection and bot manager facilities, making it effective for validating the correlation part of incidents.

Regarding areas in Radware Cloud WAF Service that have room for improvement, one thing we observed was that we received a notification where Radware Cloud WAF Service stopped working properly in our cloud environment without any prior notification. We got the alert around one and a half hours after the event occurred, so I would suggest that they should notify customers in such scenarios.

I have been using Radware Cloud WAF Service for three to four years.

The stability of the Radware Cloud WAF Service rates around nine out of ten.

The scalability of the Radware Cloud WAF Service deserves a full ten, as it is definitely scalable.

Organization-wise, we have more than 100 users using the service currently.

The technical support for Radware Cloud WAF Service rates 10 out of 10; whenever we require support, it is perfectly timely.

Positive

The deployment method of the Radware Cloud WAF Service is very easy; since most of our applications operate on custom ports, it helps us integrate and onboard them securely.

The solution does not require any maintenance from our side.

I am not directly looking into the integration aspect of the Radware Cloud WAF Service, but I have discussed it with other team members who might be using the integration part to collect logs from Radware Cloud WAF Service to get correlation and alert triggers for incident management tools such as ServiceNow and Sentinel, but they are not using it frequently or fully optimized currently.

We have discovered bot traffic involving attacks such as SQL injection. Radware's Bot Manager is working to prevent such attacks, especially with SQL injection and XSS attempts from outside entities. Regarding compliance with PCI DSS, we don't have any issues currently; we are also compliant with ISO 27001, and our applications onboarded on the Radware Cloud WAF Service operate without compliance issues.

We are using the web DDoS protection such as HTTP, L7 in the Radware Cloud WAF Service, and it is effective for us; we experienced an attack from the external side last month, which Radware Cloud WAF Service effectively prevented. 

Overall, I would rate the Radware Cloud WAF Service a nine out of ten.

My use cases for Radware Cloud WAF Service in my current organization, where I serve as a Cyber Security expert and SOC analyst, involve deeply investigating live network traffic from both inside and outside our organization to improve security through real-time threat monitoring and live data analysis. For example, when a new application was set up in the Adani Group, which is a very big organization, we received significant traffic that day; we used Radware Cloud WAF Service to check the indicators and investigate accordingly, based on the rules we had set. This not only helps during predefined activities but also during unexpected high traffic instances, allowing us to enhance security effectively.

While there are many features of Radware Cloud WAF Service that I appreciate, one standout feature is the integration of seven applications of Adani for analysis, which provides a separate dashboard to monitor various domains effortlessly. 

The user experience is designed to be straightforward, allowing easy preferences and interactions. Radware Cloud WAF Service effectively handles zero-day attacks by rapidly identifying vulnerabilities before they can affect our organization, which enhances our proactive measures through collaboration with various teams, such as the VA team, to address vulnerabilities and apply necessary patches.

Although I don't consider it to have significant downsides, I believe the UI could be improved to be more user-friendly, especially for new joiners in SOC who might struggle to understand the traffic based on numerical data. For instance, a tree chart feature available in other platforms, such as CrowdStrike, could simplify the understanding of traffic flow and save time on analysis.

I have been using Radware Cloud WAF Service for approximately 1.5 years, as I joined the Adani Group three months ago after working at N10 TechnoSoft, which involved development and cyber security.

I have not experienced any significant downtime or crashing with Radware Cloud WAF Service, although I have noticed occasional issues with logging in through SSO that cause redirects to a 404 page, which I resolve by restarting my browser.

I find the scalability of Radware Cloud WAF Service to be very good and would rate it a 9 or a 9.5 on a scale of 1 to 10.

I have contacted the technical support and customer support multiple times due to the need for clarification on functionality in our 24/7 SOC environment, where understanding various features is crucial for analysis. They have been responsive and helpful, reaching out within a day or two. If I were to score the support on a scale from 1 to 10, I would give it an 8.5. I would round that score up to a 9.

Positive

The initial deployment of Radware Cloud WAF Service was easy; however, it required some time to understand fully. I estimate it took around two months to fully deploy Radware Cloud WAF Service for the first time, based on what I've heard from colleagues, as I recently joined the company where Radware Cloud WAF Service has been in use for more than three to four years.

Regarding current pricing, it is managed by our higher authorities, but I believe the price is reasonable for our organization. If we expand our services in the future, the current pricing doesn't pose an issue for us, especially as it opens opportunities for profitability based on the services we utilize from Radware Cloud WAF Service.

While I haven't used direct alternatives to Radware Cloud WAF Service, I can mention that we consider CSPM in our cloud segment. The company is exploring the possibility of providing services to other companies, signaling future growth and deeper integration of Radware Cloud WAF Service.

In terms of API usage, I focus on using the bot management and API security functionalities of Radware Cloud WAF Service, which protect against automated threats such as DDoS attacks created by bots. 

Overall, I would rate Radware Cloud WAF Service an 8.8; while there are strong features present, there is room for improvement, particularly concerning end-user analytics, which would justify a higher score.

My use case for Radware Cloud WAF Service is that we have Radware as one of our products for security protocols that we have established at our organization. Whenever there is a cloud security alert, we check Radware services so that we can mitigate the alerts.

What I appreciate the most about Radware Cloud WAF Service is the API management. The API information that they provide is excellent. The hidden and non-discoverable APIs information available with Radware Cloud WAF Service is really great.

I cannot share some important details of the incident that we received. That said, thanks to this feature, we were able to mitigate a threat. The information they provide and the discovery they do really help us out in some incidents.

They also help us meet compliance requirements. Being a big organization, we have to meet certain compliance standards, and for the PCI DSS, this product really helps us out.

Radware Cloud WAF Service is a comprehensive tool, and my functionality with it is limited as I'm working on multiple things at a time as a security consultant. In our organization, only specific tasks are assigned to a single individual. That's why I'm primarily focused on API security and sometimes DDoS attacks.

Radware Cloud WAF Service integrates very well with other applications and services; we have Microsoft TI tool with us, and it's integrated efficiently. We receive the alerts on time.

Regarding zero-day attacks, we are fortunate that we haven't received any as of now. For API security, I have closely seen how Radware Cloud WAF Service has helped us twice this year.

We use Radware Cloud WAF Service for our security purposes. We have a symbiotic relationship with Radware Cloud WAF Service. They provide us with information and necessary security steps, and we use it for our investigation or threat hunting.

As for the downsides of Radware Cloud WAF Service, I would surely appreciate some AI integration with report management. Whenever we handle an incident, we have to generate many reports. We have to get data, information, and screenshots on multiple things. A future feature in Radware Cloud WAF Service that could give us a presentable report for our stakeholders would be a really great addition.

I have been using Radware Cloud WAF Service for about 18 months.

I have never seen any lagging, crashing, or downtime with Radware Cloud WAF Service.

The cloud engineering team has told us it's really scalable. Whenever we deploy something or integrate this, it's really flexible with the DevOps and DevSecOps teams.

I have never contacted the technical support or customer support. We have communication through emails; nothing very technical.

Positive

The learning curve for using Radware Cloud WAF Service is very easy. There is nothing too complex about it.

We have these Radware information sessions and emails coming up to tell us the latest about what's happening in the cyber environment. They provide information on basic concepts and where to find it in the emails. Even a beginner can learn it within ten days.

Radware Cloud WAF Service does not require any maintenance on my end.

I have never used any alternatives to Radware Cloud WAF Service. In my previous company and currently at our company, it has been Radware Cloud WAF Service.

The source blocking feature is not utilized here as we use a different solution for source blocking. My colleague handles the Bot Manager aspects. Everyone here has different tasks, roles, and responsibilities, and we get assigned to specific incidents.

I rate Radware Cloud WAF Service nine out of ten.

My use case for Radware Cloud WAF Service is to block all IPs and geo-locations that are not required in the organization.

Blocking based on geolocation is very helpful.

The automated analytics for analyzing events are beneficial for automation and make it easier for analysts working in the SOC. It is useful for analytical purposes as it helps us understand how we can perform various activities that Radware Cloud WAF Service belongs to.

Radware Cloud WAF Service has reduced our false positive rate by more than 50%. Regarding the blocking feature, Radware Cloud WAF Service is one of the best tools as we can easily block and reduce our alerts through IP blocking. We utilize CDN services with Radware Cloud WAF Service, and although it was initially challenging to understand, once we grasped it, it became easy for us.

I am using web DDoS protection with Radware Cloud WAF Service, and it is a very good product for protecting our businesses. The WAF protection is excellent and does not require any improvements as it is already working effectively and is executable. Radware Cloud WAF Service is really good for protecting against zero-day attacks as it protects our organization and businesses effectively. For patching purposes, once a zero-day attack has been exploited, we can block some geo-locations to prevent other attackers from targeting us.

Compared to other Cloud WAFs, Radware Cloud WAF Service is one of the best since it blocks for protection purposes within 15 to 20 minutes when we raise an incident, while it takes longer for others to implement geo-fencing and related protections.

The area that can improve with Radware Cloud WAF Service is the speed at which they block geo-fencing and IP for P1 cases, which currently takes about an hour. If they could reduce that to ten to 15 minutes, it would be easier for us.

I have been using Radware Cloud WAF Service for one and a half years.

I rate the stability of Radware Cloud WAF Service as ten out of ten, as there are no glitches, and when they occasionally happen, they notify us, making it easier than other services.

More than 500 users are using Radware Cloud WAF Service.

I would rate the technical support as ten out of ten.

Positive

I find the solution easy to deploy.

The pricing is moderate, making it affordable for any business and not overly costly.

I definitely recommend Radware Cloud WAF Service products to other users as it is comparatively good, not very costly, and the service they provide is among the best. 

I rate this solution ten out of ten.