Fleet logo
Menu An icon indicating that interacting with this button will open the navigation menu.
Fleet logo An 'X' icon indicating that this can be interacted with to close the navigation menu.
Solutions A small chevron
Device management

Device management

Remotely manage, and protect laptops and mobile devices.

Orchestration

Orchestration

Automate tasks across devices, from app installs to scripts.

Software management

Software management

Inventory, patch, and manage installed software.

GitOps

Infrastructure as code

See every change, undo any error, repeat every success.

Extend Fleet

Extend Fleet

Integrate your favorite tools with Fleet.

Customers Pricing
More A small chevron
Try it yourself Get a demo
{{thisPage.meta.articleTitle}}
search

Fleet user stories — Schrödinger

{{articleSubtitle}}

Last updated on |
The author's GitHub profile picture

Mike Thomas

Share

Share this article on Hacker News Share this article on LinkedIn Share this article on Twitter
Docs Docs REST API REST API Guides Guides Get a demoGet a demo

Fleet user stories — Schrödinger

{{articleSubtitle}}

Last updated on | The author's GitHub profile picture

Mike Thomas

Fleet user stories

Jason Walton — Director of information security @ Schrödinger

Four speech bubbles and four stars emanating from the Fleet logo

Jason Walton gives us some insight into how his team uses Fleet and osquery at Schrödinger.

How did you first get started using osquery?

I became aware of osquery a number of years ago — maybe 2017 when a colleague mentioned it. I experimented with it locally, and it was very interesting, but I never invested much time until I discovered Fleet (then Kolide Fleet) I believe around 2018.

Why are you using Fleet?

It’s easy to deploy and use in combination with Launcher. It provides me with a single source of truth about endpoints in my organization, and provides a separate “reporting plane” independent of tools used to configure or manage systems. Aggregating data across platforms is also extremely helpful.

How do your end users feel about Fleet?

Our end users don’t notice it’s there — and we have extremely technical end users. This differs from other tools like our EDR solution which can occasionally cause performance issues. It’s a very lightweight tool.

How are you dealing with alert fatigue and false positives from your SIEM?

We actually don’t use a SIEM for this reason. We rely on alerts and signals from individual tools that have high fidelity.