Lacework Reviews & Insights

Score7.1 out of 10

7 Reviews and Ratings

Community insights

TrustRadius Insights for Lacework are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.

Pros

Ease of Implementation: Users have found it easy to set up the agent in their cloud workloads, indicating that the implementation process is straightforward and hassle-free. This sentiment was expressed by multiple reviewers.

Comprehensive Visibility: Reviewers highly value the product's ability to provide detailed visibility of all container workloads across multiple accounts. This feature allows users to have comprehensive insights into their container environment, facilitating effective monitoring and management. Several users have mentioned this as a key advantage.

Threat Detection Capabilities: The product's detection of threats and utilization of machine learning models has been praised by users. This shows that the advanced technologies employed by the product enable proactive identification of potential security issues and anomalies, allowing for efficient resource allocation. A number of reviewers have highlighted this aspect as valuable.

Reviews

7 Reviews

Lacework - Coud native UEBA platform

Rating: 9 out of 10

Incentivized

January 18, 2023

Use Cases and Deployment Scope

We mainly use Lacework for User and Entity Behavior Analytics. It allows us to be aware of any anomalies in our systems, be it a process, a user or a connection coming from an unusual location etc. The beauty of it is that the platform takes care of establishing a baseline of what is usual behavior in the systems, and once that is done, it becomes humanly possible to sift through the incoming alerts of what is considered out of the norm.

Pros

installation at the OS level and containers.
Queries for the latest vulns (e.g log4j, ksmbd...) to scan the systems.
Alerts and notifications

Cons

The Web GUI could be more user friendly
The information fetched from AWS services (like CloudTrail specifically) could be more verbose.

Likelihood to Recommend

Lacework is cloud native. If you have workloads running in any of the major cloud providers, I think it would make security management and compliance easier.

For on-prem environments, it would definitely work. But I think it would be an overkill, as you would not be using all it has to offer.

Verified User

Technician in Information Technology (501-1000 employees)

Vetted Review

1 year of experience

Lacework - good for the Enterprise

Rating: 5 out of 10

Incentivized

January 18, 2023

Use Cases and Deployment Scope

We used Lacework as a service that performed behavioral analysis of the AWS Infrastructure layer (Cloudtrail, AWS Config), the server host processes, and user activities within AWS and the server itself. We also used Lacework Container Security to deliver end-to-end visibility of Docker container images by providing vulnerability assessments and malware detection. Vulnerability scanning for production instances with centralized logging and event analysis is a ‘must-have’ for customers from any product in the Commercial/GxP state.

Pros

Easy to implement in our environments
Good with alert handling
Good with compliance
Assurance of protection against the latest vulnerabilities and threats

Cons

Improve product support
Improve alert handling

Likelihood to Recommend

Lacework is well suited for behavioral analysis. One thing to consider thought is in the early stages there will be quite a bit of noise generated by Lacework. There will be a higher volume alerts generated initially - until a good baseline is generated. Overall Lacework is good with alert handling - integration with Slack is good.

Dan Soble

VP Engineering in Engineering at Veeva Systems (5001-10,000 employees)

Vetted Review

5 years of experience

Best security solution to protect your cloud environment easily

Rating: 10 out of 10

December 25, 2021

Use Cases and Deployment Scope

Lacework solutions help our company improve significantly our security posture in our cloud environment. We were looking for an easy-to-use solution and covered all our cloud assets. The tool is used on a daily basis to monitor vulnerabilities, threats in our environment, our posture against CIS benchmark... Security and DevOps teams are using the solution every week.

Pros

Detection of threats and Machine learning model
Ease of use
Support and contact with vendor

Cons

Alerting capabilities
Roles and permissions for Lacework users

Likelihood to Recommend

This solution is perfect to protect your cloud environment, especially if you have difficulties with AWS services. To handle a scalable environment and give exhaustive visibility of our environment to our DevOps team. The solution is really plugging and playing for vulnerability detection and compliance. You need to wait a few days or weeks to have good detection capabilities to detect threats on your assets and network

Verified User

C-Level Executive in Information Technology (501-1000 employees)

Vetted Review

1 year of experience

Lacework - The Road to Security Risk Reduction and Partners that we all have been looking for

Rating: 10 out of 10

December 23, 2021

Use Cases and Deployment Scope

We utilize Lacework to monitor and alert on Security Risk and Compliance issues within our Cloud Infrastructure environments. Similar to a SIEM in functionality without the overhead in resources of a traditional solution, Lacework provides the function that our team needs to protect the systems and data our company depends on daily.

Pros

Ease of deployment
Log and event correlation and alerting
Vulnerability & Compliance scanning

Cons

Addition of scanning of on-prem[ise] assets
Addition of SaaS resource scanning

Likelihood to Recommend

Lacework is a wonderful solution for assets located in public cloud hosting environments, however not suited for those assets in private datacenters or on premises.

Richard Russell

Director of Information Security & IT Infrastructure in Information Technology at Built Technologies (201-500 employees)

Vetted Review

1 year of experience

View profile

Solid Product

Rating: 10 out of 10

December 18, 2021

Use Cases and Deployment Scope

We are using Lacework to keep an eye on our cloud environments. Lacework gives us a single pane of glass to see across all of our cloud workloads. It also helps baseline to determine if there is an anomaly in our network. Daily alerts helps our Incident response team prioritize and tackle urgent issues.

Pros

Single pane of glass for all cloud instances.
Easy to use UI
Seamless integration

Cons

Windows Agent still missing

Likelihood to Recommend

Lacework easily integrates with all the major cloud platforms to provide you an overall health picture. The user interface is easy to navigate, and provides actionable data. They are constantly updating and improving the over all experience. The machine learning allows Lacework to "learn" what a baseline is for our environment, and can then provide alerts when an anomaly occurs.

Verified User

Manager in Information Technology (10,001+ employees)

Vetted Review

1 year of experience

Lacework makes it easy to monitor malicious behaviour within our multi-cluster cloud environment!

Rating: 8 out of 10

Incentivized

December 10, 2021

Use Cases and Deployment Scope

We are using Lacework's Intrusion Detection capabilities to monitor our cloud workloads (mostly k8s clusters) for malicious behaviour. Lacework is integrated with our ticketing system and automatically creates tickets when anomalous behaviour is detected. Because alerting is based on anomaly detection, we are able to focus our efforts on alerts that have a higher probability of being malicious, compared to other IDS solutions we used before.

Pros

Easy to set-up the agent in cloud workloads.
Easy integration with ticketing and messaging tools.
Detailed visibility of all our container workloads across multiple accounts.

Cons

Not all runtime behaviour alerts offer enough data to decide whether or not something is malicious. Having even more data (e.g., what process is doing a specific action) would help.

Likelihood to Recommend

Lacework is working great when you have multiple workloads running on different cloud environments, especially because deploying the agent is very easy. The Lacework interface then gives a great overview of all workloads being monitored and will create automated alerts when it detects anomalous behaviour. The integrations with ticketing and messaging then allow you to make these alerts actionable.

Verified User

Contributor in Information Technology (201-500 employees)

Vetted Review

1 year of experience

Help improve your cloud security

Rating: 8 out of 10

December 8, 2021

Use Cases and Deployment Scope

The detailed visibility of all our containers across multiple accounts is great. Anomaly-based detection allows us to focus our efforts and time on other events. Integrations with Jira, Slack, etc. are very easy to set up. The lacework team is very helpful before and during purchase.

Pros

The detailed visibility of all our container across multiple accounts is great.
Anomaly-based detection allows us to focus our efforts and time on other events. Integrations with Jira, Slack, etc. are very easy to set up.
The lacework team is very helpful before and during purchase.

Cons

UI can be complicated and hard to know where to click to find information.
Ability to create and manage cases or tickets from events that trigger.

Likelihood to Recommend

As a SOC, Lacework enables us to filter millions of events down to actionable items, which in turn frees up our time for more important activities.

Verified User

Engineer in Information Technology (1001-5000 employees)

Vetted Review

1 year of experience

Loading Reviews List....