66 Expel Reviews
We’ve had a fantastic experience with Expel, and it has become an invaluable part of our security operations. From the start, the onboarding process was smooth and efficient, making it easy to get up and running without unnecessary complexity.
The platform itself is intuitive and user-friendly, allowing our team to quickly access insights, investigate alerts, and take action with minimal friction. The visibility and transparency Expel provides into security events make it far easier to understand what’s happening in our environment.
One of the standout aspects of working with Expel is the level of support they offer. Their team is responsive, knowledgeable, and genuinely invested in helping us succeed. Whether it’s answering questions, providing guidance, or proactively identifying potential issues, the support we receive is top-notch.
Overall, Expel has been a great fit for our needs. It simplifies security operations, provides valuable insights, and offers a seamless user experience. We highly recommend it to any organization looking for a reliable and well-supported security operations solution. Review collected by and hosted on G2.com.
One small limitation we’ve noticed with Expel is that while it offers GitHub integration, it currently doesn’t support Bitbucket. Since our team uses Bitbucket, having native integration would be a great addition. That said, the platform still provides excellent coverage, and we’ve been able to work around this gap with other security measures. Hopefully, Bitbucket support will be considered in future updates! Review collected by and hosted on G2.com.
The function perfectly as a external SOC. Super easy portal with actionable information. They have been very responsive in the creating of custom rules for our environment and handle support tickets quickly. Review collected by and hosted on G2.com.
They are still working on many integrations for some of our tools, they have been transparent in timelines to achieve those goals. Review collected by and hosted on G2.com.
Expel is extremely communicative letting us know what they are seeing in our environment within a very short timeframe. Their representatives and engineers are always eager to assist and get the right people on calls so that an issue can be resolved promptly. Review collected by and hosted on G2.com.
I have not had any downfalls or issues with Expel at this time. My only small complaint is that sometimes after they have been notified of something they still report on it and open another ticket when we have already verified the issue and acknowledged it with them. Review collected by and hosted on G2.com.
The SOC is excellent, very responsive and accurate. They filter out stuff that is safe or expected. Expel's Workbench is easy to deploy and use. They have a large library of integrations ready to go and adapt to integrations we need. We work with Expel on a daily basis and have not been disappointed. Review collected by and hosted on G2.com.
Some of our integrations require a SIEM and we are working to get those integrations up to speed. This is not really a dislike and was expected. Working with Expel to get these integrations has been great. Review collected by and hosted on G2.com.
Expel analysts are very prompt in response. Whenever I have a query, I always say @Ruxie and the analysts provide accurate information. 24/7 coverage is also very helpful.
It is easy to navigate around the platform. Easy to implement and there are enough guidelines to work on the integrations.
Customer support is prompt and easy to contact Review collected by and hosted on G2.com.
When it comes to resolving or troubleshooting, it takes a very long time. Review collected by and hosted on G2.com.
But what grab my attention is the quick detection and response to security threats Expel provides. It’s saved a bunch of time in monitoring threats and even in incident response. This has also integrated nicely with our existing SIEM tools, so we haven’t had to make major changes to how we currently run. Furthermore their team insights and recommendations have allowed us to be a bit more proactive about security management. Review collected by and hosted on G2.com.
Expel is a kind of reliable solution, however, there are some aspects which deserve better mentioning. For example, alerting system has no customization, certain alerts are general, so it is challenging to prioritize the alerts received. Still, it is superb for overall security management, but there are some particular security issues that it doesn’t describe comprehensively, so we have to use some other tools to fill the gaps. Review collected by and hosted on G2.com.
Without a doubt, I like Expel because it provides quite detailed actionable insights in order to make fast decisions. It is integrated with our other systems well enough so we have all our security related information in one place. I like how it’s able to deliver automatic threat detection, fast updates. In addition, being easy to use, the platform enables less experienced team members to handle it without requiring much training. Review collected by and hosted on G2.com.
What I’ve seen as a drawback with Expel is that the way it reports could be more customizable. The default reports cover the basics, but options are few and far between when you want a little more specific or in depth insight. However, it can be a little hand limited, and if I need something slightly different, I wind up spending additional time tinkering with formatting and manually manipulating reports to work. It can slow down decision making and reduce workflows efficiencies. Review collected by and hosted on G2.com.
Expel's workbench MDR platform is an extensive and feature rich service offering. It has out of the box integrations available for all major service offerings like AWS, Azure, Gsuite, Okta, GitHub, Office365, Crowdstrike and many more. You can easily implement detection and response capabilities for your computing infrastructure irrespective of on-prem, cloud or hybrid architectures. Expel's 24X7 advance SOC team is highly responsive and effcient in detection and response activities. Their Service support team is extremely attentive and responsive for any sort of issues raised by customer. Review collected by and hosted on G2.com.
They don't have any major downsides which I'm aware. The only thing which can be added to improve the offerings are automated workflows which can be helpful for remediation. Review collected by and hosted on G2.com.
The Expel team has a solid set of skills that span a reasonable breadth of what you would expect to find in a Security Operations organization and delivered via a technology platform that is both flexible and powerful. While implementation isn't necessarily simple, it is fairly straight-forward and what you would expect when looking at a service that needs to ingest things like various security platform logs. The documentation can be a mixed bag - some of the articles are fantastic and provide great details about the topics, while others feel outdated as a result of changes outside of Expel's control (e.g. when Google makes changes to how logging works, there is a lag to when Expel's documentation is updated to reflect those changes). Overall, Expel has done a great job of keeping up with our environment in terms of triaging and dispositioning alerts that come into the service. They have been responsive to additional context and information provided by our team as well.
One of the key areas of strength for Expel historically has been their responsiveness to support requests from our team. In the past, these requests were quickly acknowledged and the appropriate support resources are deployed to help. More recently, this experience has been less consistent and less straightforward, in part due to changes in how support gets engaged. That said, Expel has observed and identified the unexpected downsides to some of the recent changes, and they have made a point of working directly with customers to improve it. That is a promising approach that will, hopefully, lead to a more seamless and easier support experience. Review collected by and hosted on G2.com.
Despite the capabilities of the technical platform and the strength of the analysts providing the service, there is still a limit to the environmental/organizational knowledge inherent in the service. This leads to a fairly frequent need for engagement with our internal team to get clarification and verification. While seeking that verification is not necessarily a downside (some of these requests are absolutely necessary), they can become repetitive as a result of the lack of organizational knowledge retention within Expel specific to the customer environments.
More recently, there has been some shift in the thoroughness or evidence of human analysis prior to escalation/engagement with our internal team by Expel. While the automation capabilities of Expel are impressive, they often fall short of correlating with concurrent or historic activity, which is often a rich source of context. This may not always eliminate the need for direct engagement, but it would likely cut down on the frequency and limit it to higher-impact instances. Review collected by and hosted on G2.com.
What I like best about Expel is that it provides me with security alerts and ways for me to contact support in situations where I need assistance. Review collected by and hosted on G2.com.
There are times when I receieve alerts where I have provided instructions that someone will be working in another country and so suppress those alerts but Expel still alerts about it. Support has been helpful where we follow up with those alerts to supress them. Review collected by and hosted on G2.com.
