Lacework Professional, Scientific, and Technical Services Reviews & Insights

Score7.1 out of 10

7 Reviews and Ratings

Community insights

TrustRadius Insights for Lacework are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.

Pros

Ease of Implementation: Users have found it easy to set up the agent in their cloud workloads, indicating that the implementation process is straightforward and hassle-free. This sentiment was expressed by multiple reviewers.

Comprehensive Visibility: Reviewers highly value the product's ability to provide detailed visibility of all container workloads across multiple accounts. This feature allows users to have comprehensive insights into their container environment, facilitating effective monitoring and management. Several users have mentioned this as a key advantage.

Threat Detection Capabilities: The product's detection of threats and utilization of machine learning models has been praised by users. This shows that the advanced technologies employed by the product enable proactive identification of potential security issues and anomalies, allowing for efficient resource allocation. A number of reviewers have highlighted this aspect as valuable.

Lacework Reviews

3 Reviews

Professional, Scientific, and Technical ServicesInformation Technology & Services3

Lacework - Coud native UEBA platform

Rating: 9 out of 10

Incentivized

January 18, 2023

Use Cases and Deployment Scope

We mainly use Lacework for User and Entity Behavior Analytics. It allows us to be aware of any anomalies in our systems, be it a process, a user or a connection coming from an unusual location etc. The beauty of it is that the platform takes care of establishing a baseline of what is usual behavior in the systems, and once that is done, it becomes humanly possible to sift through the incoming alerts of what is considered out of the norm.

Pros

installation at the OS level and containers.
Queries for the latest vulns (e.g log4j, ksmbd...) to scan the systems.
Alerts and notifications

Cons

The Web GUI could be more user friendly
The information fetched from AWS services (like CloudTrail specifically) could be more verbose.

Likelihood to Recommend

Lacework is cloud native. If you have workloads running in any of the major cloud providers, I think it would make security management and compliance easier.

For on-prem environments, it would definitely work. But I think it would be an overkill, as you would not be using all it has to offer.

Verified User

Technician in Information Technology (Information Technology & Services company, 501-1000 employees)

Vetted Review

1 year of experience

Lacework - good for the Enterprise

Rating: 5 out of 10

Incentivized

January 18, 2023

Use Cases and Deployment Scope

We used Lacework as a service that performed behavioral analysis of the AWS Infrastructure layer (Cloudtrail, AWS Config), the server host processes, and user activities within AWS and the server itself. We also used Lacework Container Security to deliver end-to-end visibility of Docker container images by providing vulnerability assessments and malware detection. Vulnerability scanning for production instances with centralized logging and event analysis is a ‘must-have’ for customers from any product in the Commercial/GxP state.

Pros

Easy to implement in our environments
Good with alert handling
Good with compliance
Assurance of protection against the latest vulnerabilities and threats

Cons

Improve product support
Improve alert handling

Likelihood to Recommend

Lacework is well suited for behavioral analysis. One thing to consider thought is in the early stages there will be quite a bit of noise generated by Lacework. There will be a higher volume alerts generated initially - until a good baseline is generated. Overall Lacework is good with alert handling - integration with Slack is good.

Dan Soble

VP Engineering in Engineering at Veeva Systems (Information Technology & Services, 5001-10,000 employees)

Vetted Review

5 years of experience

Lacework makes it easy to monitor malicious behaviour within our multi-cluster cloud environment!

Rating: 8 out of 10

Incentivized

December 10, 2021

Use Cases and Deployment Scope

We are using Lacework's Intrusion Detection capabilities to monitor our cloud workloads (mostly k8s clusters) for malicious behaviour. Lacework is integrated with our ticketing system and automatically creates tickets when anomalous behaviour is detected. Because alerting is based on anomaly detection, we are able to focus our efforts on alerts that have a higher probability of being malicious, compared to other IDS solutions we used before.

Pros

Easy to set-up the agent in cloud workloads.
Easy integration with ticketing and messaging tools.
Detailed visibility of all our container workloads across multiple accounts.

Cons

Not all runtime behaviour alerts offer enough data to decide whether or not something is malicious. Having even more data (e.g., what process is doing a specific action) would help.

Likelihood to Recommend

Lacework is working great when you have multiple workloads running on different cloud environments, especially because deploying the agent is very easy. The Lacework interface then gives a great overview of all workloads being monitored and will create automated alerts when it detects anomalous behaviour. The integrations with ticketing and messaging then allow you to make these alerts actionable.

Verified User

Contributor in Information Technology (Information Technology & Services company, 201-500 employees)

Vetted Review

1 year of experience

Loading Reviews List....