Does anyone have an opinion or review on Dome9 vs. Evident.IO for visibility and security in AWS?

Security & GRC
28.4k viewscircle icon3 Upvotescircle icon19 Comments
Sort by:
Advisor | Investor | Former CIO in Services (non-Government)6 years ago

Check out Fugue.io as an alternative ask they catch drift in your configs, and if need be, can automate restoration to baseline among other things

Lightbulb on1
Chief Information Officer in Finance (non-banking)6 years ago

Demo 9 is more expensive but easier to implement with API based integration. However if the workload requirement is simple, secure devOps then default cloud security monitoring provided by AWS/Azure is good enough. For more stringent PCI or other compliance it is perhaps better to leverage automated compliance solutions like demo 9 or evident. 

Lightbulb on2
Director, Technology Infrastructure Operations in Transportation6 years ago

I was considering evident, but now am hesitant given the acquisition.  Echoing what a few others have commented, I think the best approach is to wait this out for a while to see what happens.

Lightbulb on3 circle icon1 Reply
no title6 years ago

You can contact any of these companies and ask for access to the product to evaluate their capabilities. I evaluated , Netscape, Symantec, McAfee, and a few more about a year ago. 

Director in Manufacturing6 years ago

Not specific to these applications, but anytime a company is acquired, they are off my short list for at least 1-2 years.  Too often the talent that made the product attractive either leaves or is sidelined.  Once I see the new feature set after 1-2 years post integration, the company can get back on the potential vendor list.

CISO in Education6 years ago

We evaluated both and preferred Dome9. Unclear what Dome9's future is given PA owns both Dome9 and Redlock. Redlock is a cool product.

Lightbulb on1

Content you might like

We have been predicting the demise of mainframes for the past 20 years now. In your opinion, will they finally die with the move to the cloud or will they continue to hold on for the next ten (10) years or more?

Mainframes will be replaced with cloud based resources in 10 years or less79%

Mainframes will continue to survive for at least 10 more years.20%

Seeking advice on integrating embedded AI agents into Workday/SAP/etc. How do you handle integration across HRIS, ATS, and LMS? Do you rely on vendor-native tools or build your own in-house registries?

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Read More Comments

To your knowledge, does your current board of directors include at least one person with a cyber background?

Yes, more than one23%

Yes, one49%

No, but we plan to add someone with a cyber background16%

No10%

I don’t know

View Results

Has anyone drafted an SOW for a cloud-based SIEM with setup, migration, and maintenance? I’m working on a FedRAMP-authorized SIEM SOW, migrating from on-prem Splunk, covering data, searches, alerts, dashboards, and models.  Scope includes Environment Setup:  Cloud provisioning, configuration, testing. Connectors/Parsers: Custom data source integration. Content Development: Rules, use cases, threat feeds. Performance Tuning: Query/index optimization. Runbooks: Operational procedures. Also required: 24x7 support, maintenance, lifecycle and application management, role-based training, and documentation.  Must comply with NIST SP 800-53, CJIS, and FedRAMP Moderate+. Goal: Secure, scalable SIEM for rapid deployment. I may be missing elements, so suggestions are welcome. Please share redacted SOWs or tips if possible.