u/Which-Shame-1420

The MDR demo red flag

just sat through a demo with another big name MDR vendor and i'm exhausted.

we're evaluating new MDR vendors because our current setup is basically an expensive ticketing machine right now.

we asked what happens to alert volume in the first week after it goes live, before tuning and they came up with some version of ‘it varies by environment’ and a promise to follow up with numbers.

follow up? That wasn't a hard question. If you've onboarded fintech clients before you roughly know what week 1 looks like.

feels like a lot of these guys have a great slide deck and a shaky answer when you ask something operational.

is everyone just buying these pitches?

reddit.com
u/Which-Shame-1420 — 5 days ago

Evaluating MDR vendors in UAE. Three demos in, and they all sound the same.

We're a fintech in UAE. around 180 endpoints, no in-house SOC, and the regulatory pressure is real here. Especially around data residency and incident response SLAs.

We've spoken to three MDR vendors so far, and every pitch has started to blur together.

What I actually want to know is -

What actually helped you choose one MDR vendor over another?

Was it something you uncovered during the POC? Reference calls? Escalation process? Analyst quality? Something else entirely?

We're not a huge org but we're not small either from a compliance standpoint.

Would appreciate input from people who've actually been through this.

reddit.com
u/Which-Shame-1420 — 17 days ago