A | B | C | D | E | F | G | H | I | J | K | L | M | N | |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
1 | Factor | [redacted] | Perch Security | [redacted] | [redacted] | [redacted] | [redacted] | |||||||
2 | Instructions: Add relevant items to the "Factors" column; Adjust the "Weight" column to how important each factor is (the multiplier); then add a number from 0-3 into the yellow "Rating" boxes. The spreadsheet calculates the score based on the weight and rating, then tallies the scores to their respective sections and sums them at the top. | Scale of 0-3 | 0=Does not satisfy;1-2=Partial; 3=Fully Satisfies | ||||||||||||
3 | Weight | 208 | 254 | 164 | 218 | 191 | 164 | |||||||
4 | Rating | Score | Rating | Score | Rating | Score | Rating | Score | Rating | Score | Rating | Score | ||
5 | Integrations (your core technology stack) | 17 | 17 | 5 | 17 | 17 | 11 | |||||||
6 | Active Directory | 3 | 3 | 9 | 3 | 9 | 0 | 3 | 9 | 3 | 9 | 3 | 9 | |
7 | Office 365 (user and object-based monitoring) | 3 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||
8 | G Suite (user and object-based monitoring) | 3 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||
9 | Fortinet | 3 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||
10 | Scan/Monitor cloud services (IaaS: AWS, GCP, Azure) | 3 | 2 | 6 | 2 | 6 | 1 | 3 | 2 | 6 | 2 | 6 | 0 | 0 |
11 | Atera | 2 | 1 | 2 | 1 | 2 | 1 | 2 | 1 | 2 | 1 | 2 | 1 | 2 |
12 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
13 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
14 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
15 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
16 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
17 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
18 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
19 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
20 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
21 | Specific Features/Functionality | 75 | 80 | 57 | 60 | 86 | 36 | |||||||
22 | Multitenancy (not separate setup & maint per client) | 4 | 0 | 0 | 3 | 12 | 0 | 3 | 12 | 3 | 12 | 2 | 8 | |
23 | Syslog: capture/store/accept | 3 | 3 | 9 | 3 | 9 | 3 | 9 | 0 | 0 | 3 | 9 | 0 | 0 |
24 | Alert SLA (how quickly we're notified) | 3 | 3 | 9 | 3 | 9 | 2 | 6 | 3 | 9 | 3 | 9 | 1 | 3 |
25 | Alert quality (few false positives; helpfulness of content/context) | 3 | 3 | 9 | 3 | 9 | 3 | 9 | 2 | 6 | 3 | 9 | 1 | 3 |
26 | 24/7/365 SOC | 3 | 3 | 9 | 3 | 9 | 3 | 9 | 2 | 6 | 3 | 9 | 0 | 0 |
27 | Remediation: Full-service | 1 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 2 | 2 | 0 | 0 |
28 | Remediation: Partial (auto-interrupt, escalates to us for remediation) | 3 | 0 | 0 | 0 | 0 | 0 | 0 | 3 | 9 | 1 | 3 | 0 | 0 |
29 | Remediation: Guidance-only (but reachable for assistance) | 2 | 2 | 4 | 3 | 6 | 3 | 6 | 2 | 4 | 2 | 4 | 1 | 2 |
30 | Supports Linux (whether agent or agentless) | 1 | 1 | 1 | 1 | 1 | 0 | 0 | 1 | 1 | 1 | 1 | 1 | 1 |
31 | Supports Mac (whether agent or agentless) | 1 | 1 | 1 | 1 | 1 | 0 | 0 | 1 | 1 | 1 | 1 | 1 | 1 |
32 | Supports Windows (whether agent or agentless) | 3 | 3 | 9 | 3 | 9 | 0 | 0 | 1 | 3 | 3 | 9 | 2 | 6 |
33 | SIEM component | 3 | 3 | 9 | 1 | 3 | 1 | 3 | 0 | 0 | 3 | 9 | 0 | 0 |
34 | Monitors firmware versions | 1 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
35 | Monitors host-based vulnerabilities (not indicators of compromise) | 1 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 |
36 | Vulnerability scanning (internal) | 2 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 2 | 4 |
37 | Vulnerability scanning (external IPs/services/apps) | 1 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 0 | 2 | 2 |
38 | Compliance reporting (HIPAA, PCI, etc) | 3 | 3 | 9 | 2 | 6 | 3 | 9 | 1 | 3 | 3 | 9 | 2 | 6 |
39 | North American based SOC team | 2 | 3 | 6 | 3 | 6 | 3 | 6 | 3 | 6 | 0 | 0 | 0 | 0 |
40 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
41 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
42 | Cost/Value | 46 | 66 | 50 | 46 | 22 | 53 | |||||||
43 | Fit for <25 users | 3 | 2 | 6 | 3 | 9 | 3 | 9 | 1 | 3 | 0 | 0 | 3 | 9 |
44 | Fit for 26-300 users | 3 | 3 | 9 | 3 | 9 | 2 | 6 | 2 | 6 | 1 | 3 | 3 | 9 |
45 | Fit for >300 users | 1 | 1 | 1 | 3 | 3 | 3 | 3 | 3 | 3 | 3 | 3 | 2 | 2 |
46 | Fit for low-maturity customers | 3 | 3 | 9 | 3 | 9 | 3 | 9 | 3 | 9 | 0 | 0 | 3 | 9 |
47 | Fit for high-maturity customers | 2 | 1 | 2 | 3 | 6 | 3 | 6 | 1 | 2 | 3 | 6 | 1 | 2 |
48 | Low upfront cost (I could finance it for them) | 2 | 3 | 6 | 3 | 6 | 3 | 6 | 2 | 4 | 0 | 0 | 3 | 6 |
49 | Low recurring cost (adding a service they're not used to paying for) | 4 | 2 | 8 | 3 | 12 | 1 | 4 | 2 | 8 | 0 | 0 | 3 | 12 |
50 | Demo / Proof of Value (Is there one? How long does it last?) | 2 | 0 | 0 | 3 | 6 | 3 | 6 | 3 | 6 | 0 | 0 | 0 | |
51 | Completeness of offering / "single-source-provider" | 2 | 1 | 2 | 0 | 0 | 0 | 0 | 0 | 0 | 3 | 6 | 0 | 0 |
52 | Customer Admin capabilities to self-manage | 1 | 0 | 0 | 3 | 3 | 0 | 3 | 3 | 1 | 1 | 2 | 2 | |
53 | Vendor Longevity/Stability/Vision | 1 | 3 | 3 | 3 | 3 | 1 | 1 | 2 | 2 | 3 | 3 | 2 | 2 |
54 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
55 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
56 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
57 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
58 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
59 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
60 | Use, Administration | 8 | 11 | 0 | 12 | 11 | 9 | |||||||
61 | Minimal complexity for what it is (maintenance, upgrades, changes) | 3 | 2 | 6 | 3 | 9 | 0 | 3 | 9 | 3 | 9 | 2 | 6 | |
62 | Standardized billing output (CSV acceptable; API preferred) | 1 | 2 | 2 | 2 | 2 | 0 | 0 | 3 | 3 | 2 | 2 | 3 | 3 |
63 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
64 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
65 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
66 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
67 | MSP Friendliness | 62 | 80 | 52 | 83 | 55 | 55 | |||||||
68 | Ease of deployment / Simple client network configuration | 2 | 2 | 4 | 3 | 6 | 2 | 4 | 3 | 6 | 1 | 2 | 2 | 4 |
69 | Quality of partner portal / sales training resources / marketing content | 2 | 3 | 6 | 1 | 2 | 1 | 2 | 2 | 4 | 1 | 2 | 1 | 2 |
70 | Quality of technical training materials and mediums | 3 | 2 | 6 | 3 | 9 | 1 | 3 | 3 | 9 | 1 | 3 | 2 | 6 |
71 | Sales collaboration (someone to help make the sale / presentations) | 3 | 3 | 9 | 3 | 9 | 3 | 9 | 3 | 9 | 3 | 9 | 0 | 0 |
72 | Channel-only | 1 | 1 | 1 | 0 | 0 | 3 | 3 | 0 | 0 | 0 | 0 | 0 | 0 |
73 | Flexibility to scale up/down (month-to-month over annual contracts) | 2 | 3 | 6 | 3 | 6 | 1 | 2 | 3 | 6 | 2 | 4 | 3 | 6 |
74 | Time to deploy (how fast can it be stood up?) | 3 | 2 | 6 | 3 | 9 | 3 | 9 | 3 | 9 | 1 | 3 | 2 | 6 |
75 | Layers synergistically with an incumbent IT group or MSP | 4 | 0 | 0 | 2 | 8 | 1 | 4 | 3 | 12 | 1 | 4 | 2 | 8 |
76 | Generates customer touch-points (adviser status) | 2 | 3 | 6 | 3 | 6 | 2 | 4 | 2 | 4 | 2 | 4 | 3 | 6 |
77 | Simple pricing model (not nickel-and-diming for myriad components) | 2 | 1 | 2 | 3 | 6 | 2 | 4 | 2 | 4 | 3 | 6 | 3 | 6 |
78 | Whitelabeling (co-branding = point) | 1 | 1 | 1 | 1 | 1 | 3 | 3 | 3 | 3 | 3 | 3 | 3 | 3 |
79 | Can reach real person for support (phone preferred) | 3 | 3 | 9 | 3 | 9 | 0 | 3 | 9 | 3 | 9 | 1 | 3 | |
80 | Onboarding (quality, completeness) | 2 | 3 | 6 | 3 | 6 | 2 | 4 | 3 | 6 | 3 | 6 | 1 | 2 |
81 | Option for customer to manage / co-manage the service | 1 | 0 | 0 | 3 | 3 | 1 | 1 | 2 | 2 | 0 | 0 | 3 | 3 |
82 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
83 | 0 | 0 | 0 | 0 | 0 | 0 | ||||||||
84 | 0 | 0 | 0 | 0 | 0 | 0 |