The Picus Security Validation Platform
Picus SecurityReviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
222 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Highly Recommended for all IT Leaders
What do you like best about the product?
great solution overall, SCV,DRV,APV and EXM is the one i use. Perfect for finding gaps and vuln. management
What do you dislike about the product?
It takes a little time to adjust to the variety of tests but it's nothing a mid level pro can't handle.
What problems is the product solving and how is that benefiting you?
Automated the tests we do quarterly, now we can do it daily. Remediations are also very useful.
About the Picus
What do you like best about the product?
The Picus, assessing the security score of organizations and providing them with improvement recommendations.
What do you dislike about the product?
The Picus' reporting capabilities need to be improved.
What problems is the product solving and how is that benefiting you?
Picus addresses gaps in organisations' defences by continuously simulating real-world cyberattacks in order to validate their prevention, detection and response controls.
Best EXM Platform so far
What do you like best about the product?
It's the best platform among all we tested and it's a pioneer in the market. Our users are getting great value from it. Easy to deploy and use.
What do you dislike about the product?
Nothing i can think of right now. There is always room for improvement.
What problems is the product solving and how is that benefiting you?
EDR mitigations as custom rules
Problems with firewall stability.
Problems with firewall stability.
Picus is a excellent platform that covers a wide range of attack and highly accurate simulations.
What do you like best about the product?
The platform is well-developed, offering a highly accurate attack simulations across many modules. We really like the clear, traceable actions and detailed simulation steps, which provide a good insights. The vendor-specific mitigation recommendations are really helpful. Our customers' feedback from POCs has been positive, consistently highlighting their satisfaction with the platform and its ease of use including the Integration.
What do you dislike about the product?
A minor point mentioned is that sometime we are not always informed when documentation in the knowledge base is updated. So, It is hard for us to know wheter the newer Document is update and fix the issue or not.
What problems is the product solving and how is that benefiting you?
Customer they've encountered issues where their existing security tools, while generally good, sometimes don't seem to operate at their full potential. And they also want to know if their organization can effectively handle new and emerging threats or not. Using Picus helps them answer these questions exceptionally well. Picus allow us to simulate the emerging threat, and deep drive in to which technique that the attack may uses to take control of the machine. Each phase of the simulation is very clear of how each action happen on the endpoint machine.
From Security Theater to Operational Cyber Truth – Picus Makes the Difference
What do you like best about the product?
What makes Picus Security stand out is its ability to continuously validate an organization's cyber defense posture in real-world conditions. The platform provides a proactive and measurable approach to threat simulation, helping us to identify configuration gaps, evaluate detection capabilities, and prioritize mitigation actions across both IT and OT environments.
Picus seamlessly integrates with our existing Cyber ecosystem, providing actionable insights rather than generic scoring. Its Attack Path Validation and Security Control Validation modules have drastically improved our CYBER FUSION CENTER -CROCvisibility into exposure and control effectiveness.
Moreover, the dashboard is intuitive and the ability to generate executive-level reports that translate technical risks into business impact is a major plus when communicating with leadership and board-level stakeholders.
Picus seamlessly integrates with our existing Cyber ecosystem, providing actionable insights rather than generic scoring. Its Attack Path Validation and Security Control Validation modules have drastically improved our CYBER FUSION CENTER -CROCvisibility into exposure and control effectiveness.
Moreover, the dashboard is intuitive and the ability to generate executive-level reports that translate technical risks into business impact is a major plus when communicating with leadership and board-level stakeholders.
What do you dislike about the product?
While the platform offers great technical depth, there is room for improvement in the customization of reporting templates and API flexibility for large-scale automation use cases.
That said, the Picus team is highly responsive, and we have already seen improvements in these areas through roadmap updates.
That said, the Picus team is highly responsive, and we have already seen improvements in these areas through roadmap updates.
What problems is the product solving and how is that benefiting you?
Picus Security is solving a fundamental challenge: how to continuously validate the effectiveness of our security controls and translate technical risk into actionable business insights.
Traditional cybersecurity programs often rely on static assessments and assumptions. Picus shifts this paradigm by enabling continuous security validation through automated Breach and Attack Simulations (BAS) and Attack Path Validation. This approach ensures that our defenses are not only in place but actually working — 24/7.
Thanks to Picus, we’ve been able to:
Quantify exposure and security gaps across our environment .
Prioritize remediation actions based on real threat scenarios rather than theoretical CVEs.
Optimize our detection rules and SIEM content, reducing false positives and improving mean time to detect/respond.
Justify investments in security controls with real data, which has strengthened our communication with business stakeholders and supported more informed budget allocation.
The strategic benefit is clear: Picus helps move our cybersecurity from a reactive to an antifragile, intelligence-driven posture — improving both operational readiness and executive confidence in our cyber risk management program.
Traditional cybersecurity programs often rely on static assessments and assumptions. Picus shifts this paradigm by enabling continuous security validation through automated Breach and Attack Simulations (BAS) and Attack Path Validation. This approach ensures that our defenses are not only in place but actually working — 24/7.
Thanks to Picus, we’ve been able to:
Quantify exposure and security gaps across our environment .
Prioritize remediation actions based on real threat scenarios rather than theoretical CVEs.
Optimize our detection rules and SIEM content, reducing false positives and improving mean time to detect/respond.
Justify investments in security controls with real data, which has strengthened our communication with business stakeholders and supported more informed budget allocation.
The strategic benefit is clear: Picus helps move our cybersecurity from a reactive to an antifragile, intelligence-driven posture — improving both operational readiness and executive confidence in our cyber risk management program.
Friendly interface, successful product, great support
What do you like best about the product?
I like the way of using gui- which is so easy to use/has understandable menu's. With Fast/non-problematic integrations. Threats are always up to date almost daily basis and dynamic threat scheduling feature discards the need of the frequent care. After implementing the system correctly, you only need follow up the reports and take actions afterwise.
The other thing that i like about picus security is customer support. I don't remember anytime that i waited more than 1-2 hours for a response from picus, and support engineers are really skilled about the product. If any bug or some problem appears which r&d should take care; this procedure also are so fast comparing the other vendor's support teams.
We can ask for a new feature via the portal and somebody from Picus always returns our input.
The other thing that i like about picus security is customer support. I don't remember anytime that i waited more than 1-2 hours for a response from picus, and support engineers are really skilled about the product. If any bug or some problem appears which r&d should take care; this procedure also are so fast comparing the other vendor's support teams.
We can ask for a new feature via the portal and somebody from Picus always returns our input.
What do you dislike about the product?
On prems systems may have new features a bit late than cloud systems.
Integrations are working well after you configured correctly but while trying to first time implementing; fail logs are not so clear to troubleshoot the issue.
Integrations are working well after you configured correctly but while trying to first time implementing; fail logs are not so clear to troubleshoot the issue.
What problems is the product solving and how is that benefiting you?
I am consultant, not the product admin so answer is not clear for me.
Easy to use and vendor specific mitigation very helpfull
What do you like best about the product?
Easy to use and vendor specific mitigation very helpfull
What do you dislike about the product?
Vendors which give mitigation number can increase
What problems is the product solving and how is that benefiting you?
We can identified our security gaps.
A Unique Experience for Cyber Security
What do you like best about the product?
It quickly becomes apparent that the product is significantly superior compared to similar competitors. It is far above its peers.
Its functionality, admin-friendly design, stability, and the many features that competitors lack make it truly unique
Its functionality, admin-friendly design, stability, and the many features that competitors lack make it truly unique
What do you dislike about the product?
The product needs to hold more organizational and vendor-partner meetings and expand its advertising efforts.
What problems is the product solving and how is that benefiting you?
It implements Red-Team applications in the field of Cyber Security in an up-to-date and stable manner on my behalf.
A useful and well-designed software. User-friendly and practical.
What do you like best about the product?
User-friendly and practical.It behaves like an attacker, allowing malicious files to be uploaded during the process, and then removes those files after the test — these are well-designed features.Integrations are done very quickly and easily, and their technical consultancy is excellent.
What do you dislike about the product?
The tests conducted have not fully embraced the principles of white-box and black-box testing. I would have preferred them to be effective in both approaches.
What problems is the product solving and how is that benefiting you?
We can identify configuration errors made in the environment. In addition, it helps me analyze the movements of a hacker group and use the products I have to ensure maximum security.
The Gold Standard in Security Validation
What do you like best about the product?
What I like best about Picus Security is that it has completely transformed the way we measure and strengthen our cyber defenses. The platform delivers exceptionally realistic and constantly updated attack simulations, ensuring we are always prepared for the latest threats.
Its intuitive, beautifully designed interface makes running simulations, reviewing insights, and implementing improvements effortless — even for complex environments. The reporting is world-class, providing clear, actionable intelligence that not only improves our security posture but also impresses management and simplifies compliance audits.
Most importantly, Picus empowers us to move from a reactive stance to a truly proactive, intelligence-driven security strategy, giving us unmatched confidence in our ability to defend against evolving cyber threats. Simply put, it’s one of the most impactful security solutions we have ever implemented.
Its intuitive, beautifully designed interface makes running simulations, reviewing insights, and implementing improvements effortless — even for complex environments. The reporting is world-class, providing clear, actionable intelligence that not only improves our security posture but also impresses management and simplifies compliance audits.
Most importantly, Picus empowers us to move from a reactive stance to a truly proactive, intelligence-driven security strategy, giving us unmatched confidence in our ability to defend against evolving cyber threats. Simply put, it’s one of the most impactful security solutions we have ever implemented.
What do you dislike about the product?
Honestly, there’s very little to dislike about Picus Security.
If I had to mention something, it would be that the platform offers so many capabilities and features that it can feel overwhelming at first. However, this is more a sign of its depth and power than a real drawback — and the excellent onboarding resources and responsive support team make the learning curve short and manageable.
If I had to mention something, it would be that the platform offers so many capabilities and features that it can feel overwhelming at first. However, this is more a sign of its depth and power than a real drawback — and the excellent onboarding resources and responsive support team make the learning curve short and manageable.
What problems is the product solving and how is that benefiting you?
Picus Security is addressing one of the most critical challenges in cybersecurity today — ensuring that security controls are actually effective against real-world threats. By continuously simulating cyberattacks in production environments, Picus helps identify gaps in prevention and detection capabilities before attackers can exploit them.
This proactive approach not only strengthens our security posture but also provides measurable insights that help us prioritize and optimize our defense strategies. The platform’s ease of use, comprehensive threat library, and detailed mitigation guidance make it a valuable tool for both red and blue teams.
Thanks to Picus, we can validate our security controls with confidence and respond to evolving threats much faster. It adds real, measurable value to our cybersecurity operations.
This proactive approach not only strengthens our security posture but also provides measurable insights that help us prioritize and optimize our defense strategies. The platform’s ease of use, comprehensive threat library, and detailed mitigation guidance make it a valuable tool for both red and blue teams.
Thanks to Picus, we can validate our security controls with confidence and respond to evolving threats much faster. It adds real, measurable value to our cybersecurity operations.
showing 141 - 150