We changed our name from IT Central Station: Here's why

When evaluating Extended Detection and Response (XDR), what aspect do you think is the most important to look for?

Let the community know what you think. Share your opinions now!

ITCS user
45 Answers

author avatar
Top 5LeaderboardReal User

Threat Hunting, Threat Feed and Analytics. 
Visibility and Co-Relation of Threats

Cloud Based Management

author avatarRony_Sklar
Community Manager

@E.ABDUL Thanks for weighing in :)

author avatar
Top 5LeaderboardReal User

The rapid support and confidence of an expert team that is always there monitoring for potential unusual activity in our environment with numerous predefined playbooks that can take automated actions or the ability to create our own for unique situations. Incident view to see from beginning to end of an event and the process that prevented it from becoming an issue in our environment. Ability to use honeypots across files, users, networks, and devices to capture an attacker in the act. 

author avatar
Top 5Real User

From investment protection point of view, it would be better to go for a XDR solution that allows feeds from security products of multiple vendors. Many of the XDR solutions can correlate feeds from their own security products only.

Second most important thing would be how reputed and rich threat feeds are and form multiple sources.

Third would a top notch response team that can detect anomalies 

author avatar
Top 5Real User

The correlation of data over a variety of security layers as endpoints, email, servers, cloud workloads, and the general network. XDR must also strive to visualize the entire attack lifecycle.

Find out what your peers are saying about Palo Alto Networks, Microsoft, Cynet and others in Extended Detection and Response (XDR). Updated: January 2022.
563,780 professionals have used our research since 2012.