EDR/XDR/NDR solutions
1.
EDR (Endpoint Detection and Response)Designed not only to protect, but also to analyse the endpoints of your IT infrastructure. Unlike conventional antivirus software, which only identifies malicious code from known attack signatures, EDR solutions are able to detect, report and prevent zero-day and sophisticated hacker attacks. EDR solutions are great helpers for SOC teams as they not only prevent malicious code, but also report potentially harmful actions and anomalies.
2.
XDR (Extended Detection and Response)XDR (Extended Detection and Response) solutions have a broader functionality, focusing not only on endpoint monitoring and protection, but also collecting the data needed for analysis from a wider range of sources (e.g. email platform, network traffic, cloud, network devices, etc.).
3.
NDR (Network Detection and Response)NDR is intended to monitor and analyse network traffic and activity in real time to detect any suspicious activity, both outside and inside the network, that may identify a known or unknown cyber threat. NDR solutions make a strong contribution to the visibility required by SOC teams in on-premises, cloud and hybrid network environments.
We work with several manufacturers of EDR/XDR/NDR solutions
MDR (Managed Detection and Response)
The MDR service is an ongoing process that monitors an organisation’s network for suspicious activity and responds to threats in real time to protect against cybersecurity attacks. We provide MDR on the basis of EDR/XDR/NDR solution(s). Within the scope of the service, we provide: maintenance and configuration of the tool according to your needs, analysis of reports on identified security events, and, in agreed scenarios, action to prevent threats when the tool does not do it automatically.
