Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Lacework is a must-have tool in Security and Compliance team's portfolio
What do you like best about the product?
The interface is straightforward and intuitive. The most recent update provides a lot more features for Security and Compliance teams. Once integrated, the platform provides great visibility, alerts and notifications.
What do you dislike about the product?
The start-up and integration steps can be bumpy, requiring extensive knowledge in and around the Cloud environment. When performing a Security and Compliance analysis, the deep dive into the events can be hard to navigate.
What problems is the product solving and how is that benefiting you?
Lacework is a single pane of glass for Security and Compliance events. It helps us to identify inventory gaps and improve security posture. Being a small team, Lacework is one of the main tools to monitor activities in our relatively large Cloud environment.
- Leave a Comment |
- Mark review as helpful
Great tool to help secure your cloud environment with a small security team
What do you like best about the product?
Lacework is very easy to deploy and they provide good documentation to do so. Their Customer Success team is very friendly, available and open to customer feedback and requests. I suggested a couple of UI/feature improvements during our monthly call and they were quickly implemented into the platform. It's also useful as a one-stop for a lot of security needs (container image scanning, compliance reports, CloudTrail, etc.)
What do you dislike about the product?
The CloudTrail event search sometimes leaves things to be desired. We end up using the default CloudTrail console to find what we're looking for. It's important to take a look at the documentation detailing the "secret sauce" behind the events that are generated following the smart baselining of your environments. You might expect some things to generate events but the engine has a different opinion. You can write your own queries using the Lacework Query Language to generate events based on what you think is important but that kind of defeats the purpose if you expect a fully "no rule writing" experience.
What problems is the product solving and how is that benefiting you?
Lacework provides a nice UI to address most of your security needs (compliance, events, container scanning, etc.) It's very useful when you have a security team that is on the smaller side.
Lacework is amazing
What do you like best about the product?
The Polygraph is the feature I like the best.
What do you dislike about the product?
There is still no "single-pane of glass" to check on all the various clouds.
What problems is the product solving and how is that benefiting you?
Yes, as Lacework helps you navigate the security of various clouds and compliance requirements.
Great Visibility into our Cloud Estate with Lacework
What do you like best about the product?
I like how I can get a good high level understanding of our inventory within AWS and GCP
What do you dislike about the product?
There are no issues I have found up until now with Lacework
What problems is the product solving and how is that benefiting you?
Lacework is solving problems of improving our organization's cloud security profile
Very good
What do you like best about the product?
It works well and the UI is pretty good. They are actively developing and improving it.
What do you dislike about the product?
Email alerts could use some work - they are inconsistent.
What problems is the product solving and how is that benefiting you?
Lacework found a bunch of security issues in our accounts.
Lacework: A review
What do you like best about the product?
Very informative and detailed - easy to use
What do you dislike about the product?
High price of logging - implementation could be easier
What problems is the product solving and how is that benefiting you?
Compliance with certifications and Security
Lacework is a great tool for implementing a secure cloud environment
What do you like best about the product?
We're able to identify vulnerabilities and scan our cloud environments according to an automated schedule. They provide helm charts for deploying the lacework agent as a daemonset. They provide cloud formation templates for deploying. IaC options for deployment are great.
What do you dislike about the product?
The reports that you can run using the tool do not typically have remediation steps to perform. It's also my personal opinion there are too many critical vulnerabilities that could be classified as medium or low.
Include remediation steps in the report.
Include remediation steps in the report.
What problems is the product solving and how is that benefiting you?
Lacework is helping us scan our cloud infrastructure and provides CIS benchmark reports on the state of our infrastructure. The lacework agent reports when our EC2s need package updates.
Lacework: A Comprehensive Review of the Cloud Security Platform
What do you like best about the product?
Lacework is a cloud security platform that offers a range of features and capabilities to help organizations secure their cloud workloads. One of the things that customers often like about Lacework is its ability to provide comprehensive security coverage across multiple cloud environments and platforms, including AWS, Azure, Google Cloud Platform, and Kubernetes.
Lacework offers features such as workload protection, compliance automation, threat detection, and incident response, all of which work together to provide a holistic approach to cloud security. The platform also uses machine learning and behavioral analytics to help identify and mitigate potential security risks and threats.
Lacework offers features such as workload protection, compliance automation, threat detection, and incident response, all of which work together to provide a holistic approach to cloud security. The platform also uses machine learning and behavioral analytics to help identify and mitigate potential security risks and threats.
What do you dislike about the product?
One potential concern is the pricing model of Lacework, which may be considered relatively expensive compared to other cloud security solutions. Some users have also noted that while the platform offers many features and capabilities, it may be overwhelming for users who are not familiar with cloud security.
Another criticism is that the platform may generate a high number of false positive alerts, which can be frustrating for users who need to spend time investigating and addressing them. However, Lacework has made efforts to address this issue by providing more granular controls over the types of alerts generated and refining their machine learning algorithms.
Another criticism is that the platform may generate a high number of false positive alerts, which can be frustrating for users who need to spend time investigating and addressing them. However, Lacework has made efforts to address this issue by providing more granular controls over the types of alerts generated and refining their machine learning algorithms.
What problems is the product solving and how is that benefiting you?
Lacework is solving numerous problems by adhering to the different security compliances. Container vulnerability scan and integrations with different third-party vendors are a plus.
Image scanning, map of the containers using an image, and AMI scanning are some of its core features for addressing any security vulnerabilities.
Image scanning, map of the containers using an image, and AMI scanning are some of its core features for addressing any security vulnerabilities.
Compliance Summary feature is useful when it comes to reshaping our AWS security assessment process
What do you like best about the product?
Before using Lacework, our legacy tools weren't able to keep up with the on-demand changes & handling various CSPM involved. Event categorization effectively identifies each event timeline and summary so that we obtain operational visibility while working with these changes. We can also add exceptions in our vulnerabilities dashboard and all items present in the exception list can be exported as CSV based on customer demands.
What do you dislike about the product?
At the initial stage, we had difficulties in setting up branch protection rules for our GitHub repository. Later we came to understand how we can enforce workflows for performing multiple pull requests which made it easy to regulate branch protection rules. Gradually we are learning its compliance features to coexist with the requests given by our clients.
What problems is the product solving and how is that benefiting you?
Lacework offers automated anomaly detection with which we get instantly notified about any irregular events in our AWS environment. We establish fine-tuning rules which aid in accurately alerting us whenever there are challenges in business critical events. We can also utilize its codeless approaches to remove our rule-writing elements which consume a lot of time & has high possibilities of misconfigurations.
Lacework helps InfoSec people sleep at night!
What do you like best about the product?
Lacework learns your environment and then monitors it for changes. And, you can test your compliance with the major frameworks, like SOC 2, instantly. Of course, it drops alerts to Slack or PagerDuty so you don't have to always be monitoring it.
What do you dislike about the product?
When you suppress a vulnerability that is identified that you know it not an issue, there is no notes field to record why you have suppressed it. Additionally, I wish that you could customize the dashboard to display what is important to you and that you could save that customization.
What problems is the product solving and how is that benefiting you?
Monitoring our environment for old and new vulnerabilities and meeting compliance goals.
Recommendations to others considering the product:
No recommendations
showing 321 - 330