We just raised a $30M Series A: Read our story
2020-09-01T13:08:16Z

When evaluating Extended Detection and Response (XDR), what aspect do you think is the most important to look for?

44

Let the community know what you think. Share your opinions now!

ITCS user
Guest
45 Answers

author avatar
Top 5LeaderboardReal User

Threat Hunting, Threat Feed and Analytics. 
Visibility and Co-Relation of Threats


Cloud Based Management

2020-10-05T19:35:33Z
author avatarRony_Sklar
Community Manager

@E.ABDUL Thanks for weighing in :)

author avatar
Top 5LeaderboardReal User

The rapid support and confidence of an expert team that is always there monitoring for potential unusual activity in our environment with numerous predefined playbooks that can take automated actions or the ability to create our own for unique situations. Incident view to see from beginning to end of an event and the process that prevented it from becoming an issue in our environment. Ability to use honeypots across files, users, networks, and devices to capture an attacker in the act. 

2020-12-03T13:44:27Z
author avatar
Top 5Real User

From investment protection point of view, it would be better to go for a XDR solution that allows feeds from security products of multiple vendors. Many of the XDR solutions can correlate feeds from their own security products only.


Second most important thing would be how reputed and rich threat feeds are and form multiple sources.


Third would a top notch response team that can detect anomalies 

2021-05-18T08:40:00Z
author avatar
Top 5Real User

The correlation of data over a variety of security layers as endpoints, email, servers, cloud workloads, and the general network. XDR must also strive to visualize the entire attack lifecycle.

2021-05-18T05:34:07Z
Find out what your peers are saying about Palo Alto Networks, Microsoft, Cynet and others in Extended Detection and Response (XDR). Updated: November 2021.
555,358 professionals have used our research since 2012.