Product(s): Picus Security Validation Platform
Overall Comment:"We have been using Picus Security Validation Platform for over 3 years now and overall, the experience has been quite positive. From the initial deployment to day-to-day operations, it's been pretty smooth. One of the standout benefits is the ability to countinuously validate the effectiveness of our existing security controls -- something we couldn't do reliably before. What worked well for us was how quickly we were able to operationalize platform. The integrations with our existing SIEM and EDR tools were more straightforward than expected. We got actionable insights almost immediately. That said, repoting granularity could be better -- especially for executive-level stakeholders. Also, the learning curve for configuring custom attack scenarios was a bit steep at first, but their support team helped bridge that gap fairly quickly."
1- Continuous Security Control Validation: Being able to run simulated attacks against our environment and get real-time validation of control effectiveness has been a game changer. It's no longer a one-and-done test. 2- Extensive Attack Library: The breadth and frequency of attack updates is impressive. It keps pace with the threat landscape and that gives us confidence we're validating against relevant threats. 3- Ease of Integration: We had concerns about how well it would work with our existing tools like QRadar and Carbon Black, but integration was smooth, with minimal effort required on our side.
1- Reporting for Non-Technical Audiences: The default dashboards and reports are great for security analyst but not well-suited for business stakeholders. We had to build some custom views. 2- Custom Attack Chain Creation: While powerful, the UI for building custom scenarios could be more intuitive. There's a lot of capability there, but it's not easy to access without guidance. 3-Initial Tuning Required: Reght after deployment, we had quite a few false positives and irrelevant signals. It took a couple of weeks to fine-tune for our environment.