Vigilance Security Reviews — Practitioner Ratings & Deployment Stories

Deployed across 12,000 endpoints in our retail banking division over 14 months. Detection accuracy consistently above 93% in our environment — we measured this against our internal red team exercises and compared against our previous EDR solution. The AI-native approach genuinely reduces alert fatigue. Our analysts went from triaging 400+ alerts per day to focusing on the 15-20 that actually matter. The founding team is hands-on: Dan Lasker personally walked us through architecture decisions during our initial deployment. For a company of ~18 people, the support responsiveness is remarkable. My one concern is long-term scalability of that support model as they grow their customer base.

Detection engine is impressive — we're seeing accuracy in the mid-90s percentage range which is better than the two other tools we evaluated in parallel. However, the integration story is the weak point. We spent three weeks building custom connectors for our Splunk SOAR workflows because the native integration wasn't mature enough. The API is solid and well-documented, which made the custom work feasible, but I shouldn't have needed to do it. Support was responsive when we hit issues, with turnaround typically under 2 hours. For a mid-market SaaS company, the value proposition is strong on detection but you need to budget engineering time for integration work.

We're still in pilot phase across our ambulatory care network — 1,200 endpoints so far — but the early results are promising enough that we're planning full deployment. HIPAA compliance was our primary concern and Vigilance's data handling architecture passed our third-party audit. Detection rates for healthcare-specific threat patterns (ransomware targeting medical devices, lateral movement from IoT) have been notably strong. The team provided dedicated support during our compliance review, which was critical. I'm rating 4.5 rather than 5 because we haven't stress-tested at full scale yet, and the integration with our Epic-adjacent security tooling required manual configuration. Still in pilot, so this review reflects early-stage experience.

MTTR dropped from 6 hours to under 2 minutes — that's not a typo. Our SOC team went from firefighting mode to proactive threat hunting within the first quarter of deployment. We run a 24/7 SOC across three global manufacturing facilities and the consistency of detection across OT and IT environments is what sold us. The AI engine adapts to our specific network patterns after about 3 weeks of baseline learning, and false positive rates dropped to under 4% after that tuning period. The team is small but they clearly understand enterprise SOC workflows. Naor Haziz joined two of our architecture review sessions and the technical depth was evident. This is our primary detection layer now.

I want to be transparent: the detection technology is genuinely good, possibly best-in-class for an early-stage vendor. Our evaluation showed accuracy around 94% against our test scenarios. However, for a government contractor, there are real blockers. No FedRAMP authorization — and with a team of roughly 18 people, I don't see that coming soon. Our compliance team flagged vendor risk concerns around the company's size and maturity. We need vendors that can guarantee 5+ year continuity and have dedicated GovCloud environments. The technology deserves a higher rating, but I'm scoring based on our actual procurement reality. If you're not in the federal space, your experience will likely be better than mine.

As a VP Engineering at a fintech, I was looking for something API-first that our DevSecOps team could integrate into CI/CD pipelines. Vigilance delivered exactly that. The API documentation is excellent, the webhooks are reliable, and we've built automated response playbooks that trigger remediation in our Kubernetes clusters within seconds of detection. Runtime security monitoring across 340 microservices with meaningful signal-to-noise ratio. The platform handles our PCI DSS scoping requirements cleanly. At our scale, the pricing is very competitive versus CrowdStrike or SentinelOne. The founders clearly built this for engineering-led security teams.

Our e-commerce platform processes 2M+ transactions daily and the security stack needs to keep pace without adding latency. Vigilance's detection runs asynchronously so there's zero performance impact on our transaction pipeline — that was the deciding factor. Detection quality is strong, particularly for API abuse patterns and credential stuffing attempts that our WAF was missing. Support team is responsive and knowledgeable. The reason I'm at 4.5 instead of 5: we needed a custom connector for our homegrown SIEM and it took 4 weeks to get it working properly. The integration ecosystem is the clear area for improvement. Once they mature the connector library, this will be a 5/5 product for our use case.

As a regional bank, we don't have CrowdStrike budgets but we need CrowdStrike-level detection. Vigilance is that rare product where the pricing works for a smaller institution without compromising on capability. We deployed across all 800 endpoints including 23 branch locations and detection accuracy has been consistently in the 93-95% range against our monthly penetration tests. The response time — under 90 seconds on average — means our two-person security team can actually manage incidents instead of discovering them days later in logs. Dan and Naor have been personally available for quarterly business reviews, which gives me confidence despite the small team size. For a budget-conscious security team that refuses to compromise on detection, this is the answer.