Bitdefender enhances Its Managed Detection & Response

Bitdefender has unveiled the newest evolution of its Managed Detection & Response Services now offered in two distinct tiers (MDR and MDR PLUS) tailored for a customer’s specific needs, environments, and risk factors such as industry, geography, supply chains and more.

  • Wednesday, 17th April 2024 Posted 7 months ago in by Phil Alsop

“The growing attack surface spanning networks, applications, cloud, and supply chains, poses extreme challenges for internal security teams who often lack needed technology and personal resources to keep up and effectively implement layered defense strategies,” said Andrei Florescu, president and general manager of Bitdefender Business Solutions Group. “Bitdefender MDR Services eliminates that complexity through an ‘always-on’ service that that integrates our industry-leading native endpoint protection technologies and global threat intelligence, with eyes-on-glass monitoring from elite security analysts to stops attacks fast.”

In a report by Gartner®, it states that, “The cyberthreat landscape is in constant movement, and the complexity of attacks are escalating against organizations. Most organizations lack the resources, budget or appetite to build and run their own 24/7 SOC function, which is required to help them protect and defend against attacks that increasingly cause more impact and damage to operations. MDR services enable organizations to mature their threat detection and response coverage.”¹

Bitdefender MDR Services provides continuous threat monitoring, detection and response, threat hunting, analyst-led recommendations, and security consulting. Services are managed from a single point using the Bitdefender GravityZone Platform, a unified security and risk analytics platform that provides advanced endpoint protection including endpoint detection and response (EDR), extended detection and response (XDR) and cloud security which includes GravityZone CSPM+, a powerful solution combining Cloud Security Posture Management (CSPM) and Cloud Infrastructure Entitlement Management (CIEM).

Bitdefender MDR services are delivered from the company’s security operation centers (SOCs) located in North America, Europe and Asia. The SOCs are interconnected to share real-time threat intelligence derived from Bitdefender’s extensive network of hundreds of millions of sensors continuously collecting threat data worldwide, cybersecurity partners, and global law enforcement collaboration. Each SOC is staffed with highly skilled security analysts, threat hunters, and investigators and have Level-1 to Level-3 support capabilities to detect, verify, contain and eliminate threats as they occur.

Overview and Key Benefits of Bitdefender MDR Services

Bitdefender MDR:

· Complete Security Coverage 24x7 – Bitdefender MDR delivers threat monitoring, detection and response around-the-clock to any region across the globe leveraging its network of SOCs. Bitdefender security analysts utilize a comprehensive array of pre-approved actions to take quick and decisive response measures if a threat is found including containment, further investigations, and elimination. Each customer has a dedicated Security Account Manager (SAM) who is in constant communication until the incident is solved.

· Effective Threat Hunting – Bitdefender threat hunters are adept at seeking out and removing advanced persistent threats (APTs) silently residing in systems and spotting anomalous behaviors linked to users, applications, and third parties such as partners or supply chains. The hunters utilize real-time threat intelligence and cross-team collaboration with Bitdefender Labs to bolster their activities and ensure customer environments have up-to-the-minute protection.

· Industry-leading Security Platform/Robust Reporting – Bitdefender MDR Services and endpoint protection technologies are run from a single platform recognized by leading industry analysts and independent testing organizations as number one in several key categories including threat prevention. Intuitive real-time dashboards give analytics and insights into the security posture of environments. Frequent reporting provides a detailed overview of the service while postmortem reports give detailed information to understand incidents, potential impact to the business, and steps to help prevent similar events in the future.

Bitdefender MDR PLUS adds:

· Comprehensive Security Baselining and Tailored Threat Modeling – Unique to most MDR offerings, Bitdefender MDR PLUS tailors threat modeling based on multiple factors including company size, industry, market sector, geography and more. A thorough onboarding process is initiated to build a complete company profile on specific security challenges and then used to monitor against a set baseline based on the distinct profile.

· Global Threat Intelligence Feeds and Analysis – Bitdefender MDR PLUS utilizes a comprehensive threat intelligence lifecycle to analyze cyber threats, geopolitical activity, and industry-specific trends applying the gained knowledge to customer security. Bitdefender utilizes multiple sources of intelligence (in addition to its own) such as cybersecurity partners and global law enforcement agencies to provide superior coverage including the dark web.

· Dark Web and Priority Target Monitoring – Bitdefender MDR PLUS takes threat monitoring and protection beyond traditional customer environments to the dark web. A specialized group called Cyber Intelligence Fusion Cell (CIFC) actively monitors areas of the dark web where threat actors (including nation-state adversaries) sell stolen organizational data and intellectual property, chatter about security weaknesses and plan attacks against organizations. MDR PLUS features Priority Target monitoring that uses real-time threat intelligence and tailored detection

techniques based on industry, market position or high-value assets to identify specific threats targeting the organization.

Guardz expands in EMEA

Posted 3 days ago by Phil Alsop
Through a new partnership with Infinigate Cloud, Guardz will help to secure SMBs and support the MSP community across EMEA.
Channel partners can now use customised AI assistants, powered by ArrowSphere AI, to reinvent the way they manage business operations and engage with...
Global system integrator won over by simplicity, security and speed of the Cloudbrink service.
This global service forms part of the recently launched Intelligent Security portfolio and increases Logicalis' proactive threat-hunting capabilities...
Cybersecurity expert recognised for its continued innovation and dedication to application security management with double award win.

Pax8 unveils Pax8 Voyager Alliance

Posted 5 days ago by Phil Alsop
Pax8, the cloud commerce marketplace, has introduced Pax8 Voyager Alliance, its new partner programme that provides global partners with a modern...

Exclusive Networks and Druva partner

Posted 1 week ago by Phil Alsop
Exclusive Networks, the trusted global cybersecurity specialist, has signed an EMEA wide partnership with Druva, a leading provider of data security...
UK Connect will be offering Ericsson Enterprise 5G, including private 5G and enterprise coverage across the UK. As a member of Ericsson’s five-star...